Massive Ransomware Cyberattack Hits Nearly 100 Countries Worldwide
勒索病毒攻擊全球近百個國家
刊登日期:2017-05-16
 |
上週五發生的大型勒索病毒網路攻擊使得共99個國家至少4萬5千台電腦中毒,甚至癱瘓了英國的醫院。 這個名為Wannacry或Wanna Decryptor的惡意軟體,4月14日由一個名為「影子掮客」(Shadow Brokers)的組織發佈到網路上,該組織去年宣稱從美國國家安全局(NSA)那竊取到大量「網路攻擊武器」。 |
|
Massive Ransomware Cyberattack Hits Nearly 100 Countries Worldwide 勒索病毒攻擊全球近百個國家 A massive ransomware cyberattack last Friday has infected at least 45,000 computers in 99 countries and even crippled hospitals in England. 上週五發生的大型勒索病毒網路攻擊使得共99個國家至少4萬5千台電腦中毒,甚至癱瘓了英國的醫院。 The malware, going by the names “WannaCry or “Wanna Decryptor”, was launched online on April 14th by a group called Shadow Brokers, which claimed last year to have stolen an arsenal of “cyber weapons” from the National Security Agency (NSA). 這個名為Wannacry或Wanna Decryptor的惡意軟體,4月14日由一個名為「影子掮客」(Shadow Brokers)的組織發佈到網路上,該組織去年宣稱從美國國家安全局(NSA)那竊取到大量「網路攻擊武器」。 The malware, also known as a “worm”, spreads quietly from machine to machine by exploiting a flaw in some older versions of Windows. Then it reveals itself as so-called ransomware, telling users that all their files have been encrypted with a key known only to the attacker and demanding that they pay $300 worth of cryptocurrency Bitcoin to retrieve their files. The demand rises to $600 after a few days and if no ransom is paid after 7 days, the hacker (or hackers) will make the data permanently inaccessible. 這個惡意軟體是一種「蠕蟲」程式,利用某些舊版Windows作業系統的漏洞,悄悄地在不同的電腦間散播。接著這個軟體會以所謂「勒索軟體」的面目現身,告訴使用者他們所有的檔案都已經被加密,且密碼只有攻擊者才知道,要求他們支付價值300美金的虛擬貨幣比特幣(Bitcoin)才能取回檔案。過了幾天後,要求款項將會提高到600美金,如果7天後還未支付贖金,該名駭客(或幾位駭客)將會使得檔案永久無法被取得。 Although Microsoft had already issued a software patch to fix the vulnerability in certain versions of Windows, the patch had not been installed as widely as it should have been. In Britain, the National Health Service was badly hit because many hospitals seem to have been using a version of Windows that is no longer supported by Microsoft. 雖然微軟已經釋出軟體修補程式,修補某些Windows作業系統版本的漏洞,許多用戶並未按照指示下載修補檔。英國的國家醫療保健服務(NHS)遭到嚴重攻擊,因許多醫院似乎還在使用不再受到微軟維護的舊版Windows作業系統。 Microsoft president Brad Smith blasted the NSA Sunday for its role in weaponizing the weakness in Windows and allowing it to be stolen and used by hackers against the general public. “This attack provides yet another example of why the stockpiling of vulnerabilities by governments is such a problem,” Smith wrote in a blog post following the cyberattack. He added that this most recent attack represents a link between the two most serious forms of cybersecurity threats in the world today: nation-state action and organized criminal action. 微軟公司總裁史密斯週日抨擊美國國家安全局,將Windows的系統漏洞變成武器,使其被駭客竊取,用來對付大眾。勒索病毒的網路攻擊事件發生後,史密斯在部落格文章中寫道:「此次攻擊是好例子,再次證明了政府囤積作業系統漏洞情報是一大問題。」他補充道,這起最近發生的攻擊代表了當今世界最嚴重的兩種網路安全威脅形式之間的連結:國家行為和組織犯罪行為。 |
《重要聲明》版權歸屬智擎數位科技股份有限公司所有,其內容不得作為其它及商業用途之公開展示、示範、使用、編輯及重製分享等。
讀者留言
▲Top
