2024.09.28 보안 이슈

==2024.09.28==

# 취약점 / 악성코드 

- New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities

https://thehackernews.com/2024/09/new-octo2-android-banking-trojan.html

- Necro Android Malware Found in Popular Camera and Browser Apps on Play Store

https://thehackernews.com/2024/09/necro-android-malware-found-in-popular.html

- Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers

https://thehackernews.com/2024/09/critical-nvidia-container-toolkit.html

- New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users

https://thehackernews.com/2024/09/new-html-smuggling-campaign-delivers.html

- Critical Linux CUPS Printing System Flaws Could Allow Remote Command Execution

https://thehackernews.com/2024/09/critical-linux-cups-printing-system.html

- Crypto Scam App Disguised as WalletConnect Steals $70K in Five-Month Campaign

https://thehackernews.com/2024/09/crypto-scam-app-disguised-as.html

- 지오서버 익스플로잇 하는 중국 공격자들, 이글도어 퍼트려

https://boannews.com/media/view.asp?idx=133058&page=9&kind=1

https://thehackernews.com/2024/09/chinese-hackers-exploit-geoserver-flaw.html

- 마르코폴로, 차원이 다른 정보 탈취 캠페인을 진행해 전 세계 위협

https://boannews.com/media/view.asp?idx=133073&page=8&kind=1

- 2013년 이후에 만들어진 기아의 자동차들, 대부분 원격 해킹 가능하다

https://boannews.com/media/view.asp?idx=133186&page=2&kind=1

https://thehackernews.com/2024/09/hackers-could-have-remotely-controlled.html

- 롬콤의 새로운 변종 스닙봇, 광범위한 정보 탈취 공격에 활용되고 있어

https://boannews.com/media/view.asp?idx=133187&page=2&kind=1

- NX도메인 헌터 해킹그룹의 서브 도메인 스캔 공격, 어떻게 대응해야 하나

https://boannews.com/media/view.asp?idx=133216&page=1&kind=1

- 오이스터 백도어, MS 팀즈 설치파일로 위장해 감염된 PC 정보 수집·전송

https://boannews.com/media/view.asp?idx=133205&page=1&kind=1

# 국가지원 해킹그룹

- 또 다시 사이버 공격에 노출된 미국의 수도 시스템

https://boannews.com/media/view.asp?idx=133095&page=7&kind=1

https://securityaffairs.com/168871/hacking/arkansas-city-water-treatment-facility-cyberattack.html

- Chinese Hackers Infiltrate U.S. Internet Providers in Cyber Espionage Campaign

https://thehackernews.com/2024/09/chinese-hackers-infiltrate-us-internet.html

- Cloudflare Warns of India-Linked Hackers Targeting South and East Asian Entities

https://thehackernews.com/2024/09/cloudflare-warns-of-india-linked.html

- Watering Hole Attack on Kurdish Sites Distributing Malicious APKs and Spyware

https://thehackernews.com/2024/09/watering-hole-attack-on-kurdish-sites.html

- U.S. Charges Three Iranian Nationals for Election Interference and Cybercrimes

https://thehackernews.com/2024/09/us-charges-three-iranian-nationals-for.html

- N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks

https://thehackernews.com/2024/09/n-korean-hackers-deploy-new-klogexe-and.html

- 북한의 글리핑피시즈, 맥OS용으로 개발된 새 멀웨어 유포 중

https://boannews.com/media/view.asp?idx=133055&page=9&kind=1

- 위장 취업으로 700만 달러 버는 북한 해커들, 어떻게 파악해야 하는가

https://boannews.com/media/view.asp?idx=133056&page=9&kind=1

- 북한 IT 노동자들, 서방 국가들에 위장 취업 러시 실시해 미사일 만들어

https://boannews.com/media/view.asp?idx=133075&page=7&kind=1

- 이스라엘, 레바논 통신망 오래 전부터 해킹한 것으로 보여

https://boannews.com/media/view.asp?idx=133093&page=7&kind=1

# 랜섬웨어 / 정보유출

- 인기 없었던 랜섬웨어, 무료로 풀리자 변종들 나타나기 시작해

https://boannews.com/media/view.asp?idx=133057&page=9&kind=1

- [주말판] 전성기 갱신한 2024년 전반기 랜섬웨어 산업 현황

https://boannews.com/media/view.asp?idx=132188&page=1&kind=1

# 다크웹 / OSINT / 계정 / 피싱

- 랜섬웨어 공격자들, 다중인증 점점 더 능숙하게 뚫어낸다

https://boannews.com/media/view.asp?idx=133012&page=11&kind=1

- 전 세계 ‘딥페이크 스캠 및 피싱’ 공격 확산... 투자 유혹해 자산 탈취 중

https://boannews.com/media/view.asp?idx=133133&page=5&kind=1

#AI 

- ChatGPT macOS Flaw Could've Enabled Long-Term Spyware via Memory Function

https://thehackernews.com/2024/09/chatgpt-macos-flaw-couldve-enabled-long.html

# 공급망

- New PondRAT Malware Hidden in Python Packages Targets Software Developers

https://thehackernews.com/2024/09/new-pondrat-malware-hidden-in-python.html

# 클라우드 

- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks

https://thehackernews.com/2024/09/microsoft-identifies-storm-0501-as.html

# 기타

- [단독] 軍 보안사고, 이번에도 국정원이 잡아내…'내부망이라 유출 없었다'지만 "100% 장담 못해"

https://news.tvchosun.com/site/data/html_dir/2024/09/26/2024092690206.html

- 중국 음란사이트에 노출된 당신의 사생활... 중국산 IP캠 80% 이상 해킹에 노출

https://weekly.chosun.com/news/articleView.html?idxno=37306

- 북-중-러, 멕시코 타깃 사이버 공격에 왜 ‘혈안’이 되어 있나

https://boannews.com/media/view.asp?idx=133006&page=10&kind=1

- 독일 경찰이 정말로 토르 네트워크를 뚫었을까?

https://boannews.com/media/view.asp?idx=133023&page=10&kind=1

- APJ 지역 금융 서비스 업계, 전체 디도스 공격의 34% 차지하며 가장 취약

https://boannews.com/media/view.asp?idx=133054&page=9&kind=3

- 러스트로 바꾼 구글, 3년 만에 메모리 취약점이 크게 줄어

https://boannews.com/media/view.asp?idx=133141&page=4&kind=1