勒索软件 WannaCry 全球為虐

最新ubuntu/linux/开源新闻或者其它IT相关资讯
回复
头像
Ping-Wu
帖子: 1822
注册时间: 2012-11-14 9:34
系统: Debian 12

Re: 勒索软件 WannaCry 全球為虐

#16

帖子 Ping-Wu » 2017-06-22 15:47

poloshiao 写了:勒索软件 又上新聞頭條
南韓網路提供主機服務公司已同意付出超過一百萬美元給駭客以恢復受到勒索软件感染的 153 個網站的存取權
這些感染發生於 2017/06/10
這些網站使用 Linux kernel 2.6.24.2
進一步參閱
http://news.softpedia.com/news/web-host ... 6564.shtml
Ransomware is once again making the headlines, this time because a South Korean web hosting provider agreed to pay more than $1 million to hackers to restore access to a total of 153 Linux server compromised by ransomware.
Security company Trend Micro, which analyzed the infection with Erebus, explains that Nayana failed to properly protect its servers, revealing that the website runs on Linux kernel 2.6.24.2, which was compiled in 2008. Furthermore, it runs on Apache version 1.3.36 and PHP version 5.1.4, which were both released in 2006.
有人指出这是内贼搞得事(insider job)。俗语说,暗箭难防。但内贼更难防!

不过今天在日本埼玉県本田汽车工厂发现的 WannaCry 侵袭事件,则纯粹是系统管理人员(SysAdm)没有尽到责任。幸好发现的早,没有被骇到:

http://japanese.engadget.com/2017/06/21 ... y-1000-pc/

(中文) http://m.match.net.tw/pc/news/finance/20170621/4125736
回复