自動化資安情報收集與分析系統 https://security.weiqi.kids Thu, 26 Mar 2026 13:36:39 +0800 Thu, 26 Mar 2026 13:36:39 +0800 Jekyll v4.4.1 2026-03-20 至 2026-03-26 資安威脅週報：FBI/CISA 警告俄羅斯情報機構鎖定 Signal/WhatsApp 帳號釣魚、TeamPCP 透過 Trivy CI/CD 管線入侵 LiteLLM 套件供應鏈（三階段攻擊鏈）、Tycoon2FA PhaaS 平台於 Europol 打擊後數日即復原營運、東南亞詐騙園區系統性整合 AI 深偽視訊詐騙、GSocket 後門透過惡意 Bash 腳本傳播、北韓遠端工作者使用 IP KVM 規避偵測、CISA KEV 新增 7 筆含 Cisco FMC 確認勒索軟體利用、本週 90 份漏洞揭露與 1,870 筆新增 IoC。 Thu, 26 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W13-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W13-threat-landscape/ 威脅態勢分析 2026-03-19 至 2026-03-26 資安防禦建議：TeamPCP 供應鏈攻擊入侵 Trivy/LiteLLM CI/CD 管線、FBI/CISA 歸因俄羅斯情報機構 Signal/WhatsApp 大規模帳號劫持、Tycoon2FA PhaaS 平台打擊後數日恢復運作、CISA 新增 7 筆 KEV（Cisco FMC CVE-2026-20131 已逾期 / SharePoint CVE-2026-20963 已逾期 / Apple 三筆 / Craft CMS / Langflow CVE-2026-33017）、Citrix NetScaler CVE-2026-3055 CVSS 9.3、Kubernetes ingress-nginx CVE-2026-4342 Critical、Spring Boot CVE-2026-22731 認證繞過、Langflow CVE-2026-33017 揭露 20 小時遭武器化並列入 KEV、Apple 2026 年 3 月修補涵蓋 85 項漏洞、PolyShell Magento 未認證 RCE、Interlock 勒索軟體鎖定 Cisco 防火牆、LeakNet 勒索軟體浮現、SmartApeSG 多重 RAT 散布、新增 PoC 含 Langflow CVE-2026-21445 / Budibase CVE-2026-31816 / Mastodon CVE-2026-33868。 Thu, 26 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W13-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W13-defense-advisory/ 防禦建議 2026-03-16 至 2026-03-22 資安威脅週報：Interlock 勒索軟體鎖定 Cisco 企業防火牆、Predator 間諜軟體無互動攻擊 iPhone、SharePoint 反序列化 RCE 遭未知攻擊者利用、Aisuru/KimWolf 殭屍網路遭國際執法瓦解、Europol 關閉 37 萬暗網頁面、Langflow CVE-2026-33017 漏洞 20 小時內遭武器化、CISA 新增 7 筆 KEV（Apple/Cisco FMC/SharePoint/Zimbra/Wing FTP）、CERT-FR 發布 37 份公告、MSRC 62 份新公告、GitHub Advisories 96 筆。 Sun, 22 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W12-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W12-threat-landscape/ 威脅態勢分析 2026-03-16 至 2026-03-22 資安防禦建議：Cisco FMC CVE-2026-20131 反序列化 RCE 遭勒索軟體利用（CISA KEV 截止今日）、SharePoint CVE-2026-20963 反序列化 RCE 活躍利用（已到期）、Apple 三筆 KEV 活躍利用、Zimbra CVE-2025-66376 XSS 活躍利用、Interlock 勒索軟體鎖定 Cisco 企業防火牆、Langflow CVE-2026-33017 漏洞 20 小時內遭武器化、Predator 零點擊 iPhone 攻擊、Oracle Identity Manager 緊急 RCE 修補、CERT-FR 37 份公告、MSRC 62 份新公告、Roundcube 關鍵漏洞。 Sun, 22 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W12-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W12-defense-advisory/ 防禦建議 2026-03-06 至 2026-03-13 資安威脅週報：伊朗多面向網路攻擊全面升級（Handala/Void Manticore 破壞性攻擊、Wiper 攻擊 Stryker、入侵阿爾巴尼亞國會、Instagram 影響力操作）、APT28 以 BeardShell+Covenant 攻擊烏克蘭、Camaro Dragon PlugX 攻擊卡達、ShinyHunters Salesforce 百企資料竊取、SocksEscort 代理網路遭國際執法打擊、KadNap DHT-P2P 殭屍網路感染 14,000 台路由器、CISA 新增 n8n RCE 至 KEV、28 筆新增 Critical/High 漏洞。 Fri, 13 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W11-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W11-threat-landscape/ 威脅態勢分析 2026-03-05 至 2026-03-13 資安防禦建議：BeyondTrust CVE-2026-1731 遭勒索軟體積極利用、n8n RCE 新增 CISA KEV、SolarWinds Web Help Desk CVE-2025-26399 活躍利用、VMware Workspace ONE Access SSRF CVE-2021-22054 活躍利用、Cisco FMC/SCC 雙 CVSS 10.0 漏洞、Handala/Void Manticore 伊朗破壞性攻擊升級鎖定美國 7 大科技巨頭、Operation Lightning 住宅代理殭屍網路拆除、Kadnap 殭屍網路感染 14,000 台 ASUS 路由器、Viking Line 供應鏈資料外洩、React 釣魚攻擊、Apple/Fortinet/GitLab/Chrome/Firefox/Cisco IOS XR/Erlang OTP/GLPI/Palo Alto/Splunk/Veeam/F5OS/HPE/Zoom 多產品漏洞群。 Fri, 13 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W11-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W11-defense-advisory/ 防禦建議 2026-03-02 至 2026-03-08 資安防禦建議：CISA KEV 新增 7 個活躍利用漏洞、CVE-2026-21513 MSHTML 零日遭 APT28 利用、Cisco Catalyst SD-WAN 關鍵零日、CVE-2026-22719 VMware Aria Operations 命令注入、CVE-2026-29000 pac4j JWT 認證繞過 CVSS 10.0、CVE-2026-21385 Qualcomm 晶片組記憶體損毀、NPM 大規模供應鏈感染、CrushFTP 暴力破解掃描升級、惡意 AI 瀏覽器擴充功能竊取 LLM 對話、伊朗網路衝突全面升級防禦指引。 Sat, 07 Mar 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W10-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W10-defense-advisory/ 防禦建議 2026-02-20 至 2026-02-26 資安威脅週報：Cisco SD-WAN 緊急指令 ED 26-03、RoundCube 雙漏洞持續活躍利用、Dell RP4VMs CVE-2026-22769 零日漏洞、Soliton FileZen OS 指令注入、React2Shell 供應鏈攻擊、波蘭能源 OT/ICS 後續、BeyondTrust 勒索軟體關聯、Mirai 殭屍網路活躍。 Thu, 26 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W09-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W09-threat-landscape/ 威脅態勢分析 2026-02-20 至 2026-02-26 資安防禦建議：CISA 緊急指令 ED 26-03 針對 Cisco SD-WAN（CVE-2026-20127、CVE-2022-20775）、RoundCube Webmail 雙漏洞持續活躍利用、Dell RP4VMs CVE-2026-22769 零日漏洞（修補期限已過）、Soliton FileZen CVE-2026-25108 OS 指令注入、BeyondTrust 勒索軟體關聯漏洞。 Thu, 26 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W09-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W09-defense-advisory/ 防禦建議 2026-02-16 至 2026-02-22 資安威脅週報：RoundCube 雙漏洞遭活躍利用、Dell RP4VMs CVE-2026-22769 UNC6201 利用、VSCode 擴充套件供應鏈風險、Chromium CSS Use-After-Free、波蘭能源基礎設施 OT/ICS 攻擊、Honeywell CCTV 認證繞過、React2Shell 供應鏈威脅。 Sun, 22 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W08-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W08-threat-landscape/ 威脅態勢分析 2026-02-16 至 2026-02-22 資安防禦建議：RoundCube 雙漏洞緊急修補 CVE-2025-49113/68461、Dell RP4VMs CVE-2026-22769 UNC6201 利用、Ivanti EPMM 零日 RCE CVE-2026-1281/1340、Chromium CSS Use-After-Free、VSCode 擴充套件供應鏈漏洞、Honeywell CCTV CVE-2026-1670 CVSS 9.8、波蘭能源基礎設施 OT/ICS 防禦、SmarterMail 勒索軟體漏洞鏈。 Sun, 22 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W08-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W08-defense-advisory/ 防禦建議 2026-02-08 至 2026-02-14 資安威脅週報：APT28 利用 CVE-2026-21509 攻擊烏克蘭、CISA KEV 新增 BeyondTrust CVE-2026-1731、波蘭能源基礎設施遭協調攻擊。 Mon, 16 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W07-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W07-threat-landscape/ 威脅態勢分析 2026-02-08 至 2026-02-15 資安防禦建議：BeyondTrust CVE-2026-1731 緊急修補（今日到期）、SmarterMail 勒索軟體漏洞、Microsoft 6 項零日漏洞修補指南。 Mon, 16 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W07-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W07-defense-advisory/ 防禦建議 2026-02-09 至 2026-02-15 資安威脅週報 Thu, 12 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W06-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W06-threat-landscape/ 威脅態勢分析 2026-02-09 至 2026-02-15 資安防禦建議 Thu, 12 Feb 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W06-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W06-defense-advisory/ 防禦建議 2026-01-22 至 2026-01-28 資安威脅週報 Wed, 28 Jan 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W05-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W05-threat-landscape/ 威脅態勢分析 2026-01-22 至 2026-01-28 資安防禦建議 Wed, 28 Jan 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W05-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W05-defense-advisory/ 防禦建議 2026-01-21 至 2026-01-27 資安威脅週報 Tue, 27 Jan 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W04-threat-landscape/ https://security.weiqi.kids/docs/Narrator/threat_landscape/2026-W04-threat-landscape/ 威脅態勢分析 2026-01-21 至 2026-01-27 資安防禦建議 Tue, 27 Jan 2026 00:00:00 +0800 https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W04-defense-advisory/ https://security.weiqi.kids/docs/Narrator/defense_advisory/2026-W04-defense-advisory/ 防禦建議