2024.01.27 보안 이슈

==2024.01.27==

# 취약점 / 악성코드 

- ~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation

https://thehackernews.com/2024/01/40000-attacks-in-3-days-critical.html

- "Activator" Alert: MacOS Malware Hides in Cracked Apps, Targeting Crypto Wallets

https://thehackernews.com/2024/01/activator-alert-macos-malware-hides-in.html

- Patch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be Admin

https://thehackernews.com/2024/01/patch-your-goanywhere-mft-immediately.html

- Critical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!

https://thehackernews.com/2024/01/critical-jenkins-vulnerability-exposes.html

- SystemBC Malware's C2 Server Analysis Exposes Payload Delivery Tricks

https://thehackernews.com/2024/01/systembc-malwares-c2-server-analysis.html

- Malicious Ads on Google Target Chinese Users with Fake Messaging Apps

https://thehackernews.com/2024/01/malicious-ads-on-google-target-chinese.html

- 카카오 인증서 위장한 ‘VenomRAT 악성코드’ 발견... 설문조사 문서 파일 형태로 유포

https://www.boannews.com/media/view.asp?idx=125998&page=9&kind=1

- 블랙우드라는 새 APT, 여러 소프트웨어 업데이트에 악성 코드 주입

https://www.boannews.com/media/view.asp?idx=126144&page=2&kind=1

# 국가지원 해킹그룹

- 훔친 돈만 1조3000억... 北, 가상화폐 해킹 `심각`

https://n.news.naver.com/mnews/article/029/0002851615

- LODEINFO Fileless Malware Evolves with Anti-Analysis and Remote Code Tricks

https://thehackernews.com/2024/01/lodeinfo-fileless-malware-evolves-with.html

- 북한의 스카크러프트, 가짜 연구 보고서로 로크랫 백도어 퍼트려

https://www.boannews.com/media/view.asp?idx=126001&page=9&kind=1

https://www.boannews.com/media/view.asp?idx=126014&page=8&kind=1

https://thehackernews.com/2024/01/north-korean-hackers-weaponize-fake.html

- 러시아 해커들, HPE 직원들의 메일함에 침투했다

https://www.boannews.com/media/view.asp?idx=126106&page=4&kind=1

https://thehackernews.com/2024/01/tech-giant-hp-enterprise-hacked-by.html

https://www.bleepingcomputer.com/news/security/microsoft-reveals-how-hackers-breached-its-exchange-online-accounts/

- Microsoft Warns of Widening APT29 Espionage Attacks Targeting Global Orgs

https://thehackernews.com/2024/01/microsoft-warns-of-widening-apt29.html


# 랜섬웨어 / 정보유출

- 역사 상 가장 큰 규모의 데이터 노출 사고 발생...12TB 데이터가 잘 정리돼 있어

https://www.boannews.com/media/view.asp?idx=126000&page=9&kind=1

- 한국거래소, 개인정보 유출 사실은 인정... 세부 내용은 모르쇠 일관

https://www.boannews.com/media/view.asp?idx=126160&page=1&kind=1

- 트리고나 랜섬웨어 공격자, 미믹 랜섬웨어로 MS-SQL 서버 공격

https://www.boannews.com/media/view.asp?idx=126176&page=1&kind=1

# 다크웹 / OSINT / 계정 / 피싱

- "이러니 당할 수 밖에"…초당 200회 무한 로그인 시도하는 해커들

https://www.fnnews.com/news/202401271201412214

- SEC confirms X account was hacked in SIM swapping attack

https://www.bleepingcomputer.com/news/security/sec-confirms-x-account-was-hacked-in-sim-swapping-attack/

- 2023년 4분기 스팸, 전 분기보다 신고 건수 130만건 ‘껑충’

https://www.boannews.com/media/view.asp?idx=126094&page=4&kind=1

- [긴급] ‘임금 수령 통지서’로 위장한 큐싱 메일 유포

https://www.boannews.com/media/view.asp?idx=126177&page=1&kind=1

#AI 

-  ICT규제샌드박스 심의위, 자율주행 인공지능 학습에 영상정보 원본 활용 허용

https://www.boannews.com/media/view.asp?idx=125999&page=1&kind=2

- 미국도 칼 뽑았다…MS·구글·아마존 AI 독과점 조사 착수

https://www.edaily.co.kr/news/read?newsId=01266086638761656&mediaCodeNo=257&OutLnkChk=Y

- 삼성SDS, “올해 사이버 보안 최대 화두 'AI 위협'”

https://www.etnews.com/20240123000183

# 공급망

- MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

https://thehackernews.com/2024/01/hackers-hijack-popular-java-and-android.html

- The Unknown Risks of The Software Supply Chain: A Deep-Dive

https://thehackernews.com/2024/01/the-unknown-risks-of-software-supply.html

- 악성 NPM 패키지 통해 수백 개의 개발자용 SSH키 유출돼

https://www.boannews.com/media/view.asp?idx=126044&page=7&kind=1

https://thehackernews.com/2024/01/malicious-npm-packages-exfiltrate-1600.html

# 클라우드 

- 핀란드의 클라우드 업체, 랜섬웨어에 당해 여러 고객사 마비

https://www.boannews.com/media/view.asp?idx=125945&page=1&kind=1

- Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters

https://thehackernews.com/2024/01/google-kubernetes-misconfig-lets-any.html

# 기타

- [단독]오지스 '1000억 해킹'은 내부 소행?…전 CISO 상대로 소송 제기

https://n.news.naver.com/mnews/article/421/0007314914

- 52% of Serious Vulnerabilities We Find are Related to Windows 10

https://thehackernews.com/2024/01/52-of-serious-vulnerabilities-we-find.html

- 2023년 사이버 위협 결산 키워드 : 디도스, 서버해킹, 랜섬웨어, IP 카메라, 라자루스

https://www.boannews.com/media/view.asp?idx=125957&page=10&kind=2

- 중국발 사이버 위협, 텔레그램 통해 이어져... ‘대만’이 가장 큰 피해 입어

https://www.boannews.com/media/view.asp?idx=126096&page=5&kind=3

- 2024년에 주목해야 할 5가지 사이버 보안 트렌드는?

https://www.boannews.com/media/view.asp?idx=126139&page=3&kind=3

- 새해 벽두 발생했던 가상자산 1,000억대 해킹 사건, 내부자로 화살 돌리나

https://www.boannews.com/media/view.asp?idx=126159&page=1&kind=1