中國駭客升高全球攻擊,台灣首當其衝、韓國亦在列;鎖定外交官員寄假美國政策檔案,開啟即遭駭入
中央通訊社 2026-02-04 09:54:00 CST中國國家級駭客組織數量居全球之首,其攻擊已從資料竊取,轉向對關鍵基礎設施的長期滲透,台灣為主要目標。攻擊結合 AI 自動化與匿蹤技術,手法日益進化,構成結構性及戰略性威脅。
New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows
📢 Forescout piège le groupe TwoNet avec un honeypot imitant un réseau d’eau néerlandais
📝 Selon The Record, Forescout indique qu’un groupe de pirates nommé **TwoNet** s’est fait piéger par un **honeypot** conçu pour...
📖 cyberveille : https://cyberveille.ch/posts/2025-10-10-forescout-piege-le-groupe-twonet-avec-un-honeypot-imitant-un-reseau-deau-neerlandais/
🌐 source : https://therecord.media/fake-water-utility-honeypot-hacked-pro-russian-group
#Forescout #TwoNet #Cyberveille
Yet another example of a “security product” causing more harm than good 🤦
CVE-2025-4660: #Forescout SecureConnector #RCE
https://www.netspi.com/blog/technical-blog/red-teaming/cve-2025-4660-forescout-secureconnector-rce/
CVE‑2025‑4660: Forescout SecureConnector RCE vulnerability
Remote code execution in Windows SecureConnector via misconfigured named pipe allows Red team attackers to control agent as C2.
#Solarkomponenten angreifbar: 35.000 #Admin-Panels frei zugänglich im #Netz
Ein Großteil der ungeschützten Admin-Panels entfällt auf Deutschland. Betroffen sind #Wechselrichter, #Datenlogger und andere #Solarkomponenten.
#Sicherheitsforscher von #Forescout haben unter Einsatz der #Suchmaschine #Shodan öffentlich zugängliche #Admin-Panels von weltweit mehr als 35.000 #Solarkomponenten entdeckt.
Zwecks Auffindbarkeit ein paar Hastags dazu:
Untersuchte Hersteller: #Huawei #Sungrow #GinlongSolis #Goodwatt #GoodWe #SMA
Allgemein: #PV #WR #Wechselrichter #Solar #Inverter #SunDown #Forescout #China #Hacker #SmartHome #IoT
https://www.forescout.com/research-labs/sun-down-a-dark-side-to-solar-energy-grids/
@bsi
Recommendations
Manufacturers
Development • Devices: holistic security architecture including secure boot, binary hardening, anti-exploitation features, permission separation etc
• Applications: proper authorization checks on web applications, mobile applications and cloud backends
Testing • Regular penetration testing on applications and devices • Consider bug bounty programs
Monitoring Web Application Firewalls Remember that a WAF does not protect against logical flaws
Users
Residential and commercial users • Change default passwords and credentials • Use role-based access control • Configure the recording of events in a log • Update software regularly • Backup system information • Disable unused features • Protect communication connections
Commercial and utility installations (in addition) •
Include security requirements into procurement considerations
• Conduct a risk assessment when setting up devices • Ensure network visibility into solar power systems • Segment these devices into their own sub-networks • Monitor those network segments
"🔍 Blind Spots in IP Networking: A Forescout Study 🌐"
Forescout researchers shed light on overlooked vulnerabilities in the Border Gateway Protocol. A must-read for all network security enthusiasts!
Source: [Dark Reading](https://www.darkreading.com/)
Tags: #IPNetworking #Cybersecurity #Forescout #BGP #Vulnerabilities 🌐🔍
Forescout Gets 4th CEO Since 2020
https://www.bankinfosecurity.com/forescout-gets-4th-ceo-since-2020-hires-barry-mainz-a-21007 Former Malwarebytes COO and MobileIron CEO Barry Mainz to take over as its top leader. Michael Novinson #cybersecurity #forescout
Старая проблема безопасности все еще угрожает миллионам IoT-устройств #Forescout, #Number:Jack, #TCP/IP, #IoT https://t.co/uDf8AmzB5m https://t.co/1pXR2IAf1o
Источник: https://twitter.com/SecurityLabnews/status/1359499875428220932
Опасные уязвимости в миллионах IoT-устройств никогда не будут исправлены #IoT, #уязвимость, #протокол, #TCP/IP, #Amnesia:33, #Forescout https://www.securitylab.ru/news/514621.php https://twitter.com/SecurityLabnews/status/1336218997411500034/photo/1
Convergence : #forescout et Belden sécurisent l’IoT industriel #silicon https://www.silicon.fr/convergence-forescout-belden-iot-industriel-223491.html
