In may of this year, computers in over 150 countries around the world sufferedExtortion virusThe attacks have affected to varying degrees the health, business, electricity, energy, banking, transport, etc. In recent daysEuropeThe country's re-emergence of a new kind of blackmail virus, with the first targets focusedUkraineI don't knowRussiaBusinesses and infrastructure were subsequently spread to germany, turkey and bulgaria。
On the 24th, a new type of blackmail virus — the “bad rabbit” — broke out in eastern european countries. The virus was reportedly the first to attack more than 200 victims, including infrastructure networks such as the kiev subway in ukraine, the odessa airport, business companies and government departments, as well as several media outlets such as the russian international telegraph service. The blackmail virus also attempted to attack the russian banking system, but it failed。
It is worth noting that, similar to the “want to cry” and petya blackmail virus, which had previously engulfed many countries, the bad rabbit virus could spread within the local area network, creating a “one hit, one hit”. As long as the computer opens a shared service and the password setting is not strong, the virus will decipher access by breaking weak passwords. In order to increase the success of the invasion, the bad rabbit virus used a password grabper to achieve a wider range of attacks。
The ransom for the new type of blackmail virus was set at 0. 05 bits (approximately rmb 1700) within 40 hours, while wooden horses were placed in infected computers to collect passwords and other personal sensitive information。
At present, in addition to eastern european countries, a new round of extortion is spreading in western european countries. There have also been cases of infection in germany, but to date the number of reported cases has not been significant。
According to germanyCybersecurityThe company analysed the transmission of the bad rabbit virus through the disguise of the adobe flash player package. When updating adobe flash player, the user will be directed to a virus link by some dns solver, and once updated, the poison kit will be downloaded and executed. In addition to the main purpose of the bad rabbit virus, which is to demand ransoms, a tool has been installed in the infected computer to steal passwords and other personal sensitive information. Researchers at the anti-virus company simon tek said that bad rabbits had the same code as some of the petya virus, which caused major disruption to businesses worldwide in june this year。
Cybersecurity experts argue that bad rabbits are less sophisticated than the previous blackmail virus, that they can defend themselves effectively by turning on security software, and that they are less destructive and do not need to panic too much. However, experts cautioned that the virus was ready to launch attacks and that users needed to be vigilant, such as closing shared services and increasing password intensity. Cybersecurity experts believe that mutations of viruses such as worms, petya and bad rabbit pose great risks and challenges to global cybersecurity, and that countries should collectively face and address cybersecurity。
Countries that have been attacked by the extortion virus are also seeking to address the security threat posed by the virus. The minister of transport, maritime and communications of turkey, ahmad alsran, has indicated that turkey will establish a strong “network force” to deal with the global threat of extortion viruses and other cyber-security threats. He said that there were now 13,000 cyber security personnel in turkey who were employed in the public sector. The government will also increase its investment in cybersecurity and will build a strong “net army” of five teams. He also stated that turkey had not been significantly affected since the spread of the extortion virus in many countries of the world. This was thanks to timely early warning from the supervisory authorities, and all agencies and organizations temporarily shut down the main database when the virus was being blackmailed to target for document encryption。
The turkish information technology and communication agency and the national center for the prevention of hackers have also recently issued an official online statement stating that, in updating computer systems in the near future, users of the network do not choose to update unsafe websites, while not performing unsafe downloads and receiving unsafe mail。
(this is from microcommunication first)
Welcome to comment, and look forward to your insights
A little tip
[long click 2d on "stick the globe" 2d code, store it on the cell phone, then click on a micro-mail sweep, choose "select the 2d code from the album" and select the 2d code that has just been saved, and immediately subscribe to the "stick the globe" public sign]
