by Since the start of the Ukraine war, there have been reports of Russian hackers using data destruction software (wiper) to launch attacks from time to time, and there have been related incidents recently. Different from previous data destruction software, the new malicious program can also destroy important files of the Windows system, and can even destroy the entire AD domain. The vulnerability CVE-2023-24055 of the open source password management software KeePass is also quite noticeable. Once hackers successfully exploit it, they will be able to obtain plaintext account data, and a proof-of-concept attack program has been circulated. However, the development team believes that this is not a loophole, and the follow-up development remains to be seen. A researcher found that the customer database of iRent, a car-sharing service in Taiwan, had been exposed on the Internet for as long as 9 months, but what is outrageous is that the technology media TechCrunch asked Hetai Automobile and never got a response. It was not until contacting the Digital Development Department that TWCERT was obtained. /CC has intervened to process claims.
