宏基集团遭受勒索软件攻击,赎金高达创纪录的5000万美金
发布时间:2021-04-06 16:35:06
<p style=";font-family: 宋体;font-size: 16px;white-space: normal;text-indent: 28px"><span style="font-family: FangSong;font-size: 14px">2</span><span style="font-family: FangSong;font-size: 14px">021</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">年</span>3月底,全球第六大计算机制造企业,以提供笔记本和台式电脑、显示产品集及服务器闻名的</span><span style="font-family: FangSong;font-size: 14px">宏碁</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">集团(</span>ACer)披露了一起安全入侵事件,黑客组织REvil向其索要高达5</span><span style="font-family: FangSong;font-size: 14px">000</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">万美元以提供解密工具和删除窃取的数据,</span>REVil已在其解密网站发布了若干涉及宏基财务报表、银行账户余额、银行交易记录等声称涉及泄密资料的截图。</span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal;text-indent: 28px"><span style="font-family: FangSong; font-size: 14px;"> </span><a href="https://searchsecurity.techtarget.com/news/252498156/Acer-hit-by-apparent-attack-from-REvil-ransomware-group"><span style="font-family: 等线;color: rgb(0, 0, 255);font-size: 14px">LeMagIT</span></a><span style="font-size: 14px;"> </span><span style="font-family: FangSong; font-size: 14px;">报道披露了双方谈判的部分细节,黑客承诺如果</span><span style="font-family: FangSong; font-size: 14px;">宏碁</span><span style="font-family: FangSong; font-size: 14px;">在指定日期前兑付赎金,可得到2</span><span style="font-family: FangSong; font-size: 14px;">0%</span><span style="font-family: FangSong; font-size: 14px;">的优惠。尽管每次勒索事件协商的最终交易赎金不会被披露,但这次REvil的索要金额已经远超2</span><span style="font-family: FangSong; font-size: 14px;">020</span><span style="font-family: FangSong; font-size: 14px;">年该组织敲诈</span><span style="font-family: FangSong; font-size: 14px;">一家总部位于纽约的律师事务所GSMS</span><span style="font-family: FangSong; font-size: 14px;">的4</span><span style="font-family: FangSong; font-size: 14px;">200</span><span style="font-family: FangSong; font-size: 14px;">万美元而创最高纪录。</span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal;text-indent: 28px"><span style="font-family: FangSong;font-size: 14px">在当今众多的勒索软件犯罪集团中,</span><span style="font-family: FangSong;font-size: 14px">REvil (Sodinokibi)</span><span style="font-family: FangSong;font-size: 14px">集团的运作模式和影响力已使得其它勒索犯罪集团相形见绌。采用勒索即服务的软件运营模式(</span><span style="font-family: FangSong;font-size: 14px">RaaS, Ransomware-as-a-Service</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">),</span>REvil可将其勒索软件服务租给其附属犯罪集团(REvil附属集团),后者通过其渠道散布勒索病毒并收取赎金。</span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal"><span style="font-family: FangSong;font-size: 14px"> </span><span style="text-indent: 28px; font-family: FangSong; font-size: 14px;">Advanced Intel</span><span style="text-indent: 28px; font-family: FangSong; font-size: 14px;">通过其智能情报平台检测到曾有REvil的附属渠道利用Exchange的漏洞攻击Acer的Exchange邮件服务器。如果最终能被证实,这表明REvil针对微软Exchange漏洞的攻击将呈现规模化升级的趋势。</span><span style="text-indent: 28px; font-family: FangSong; font-size: 14px;"> </span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal;text-indent: 7px"><span style="font-family: FangSong;font-size: 14px"> </span><span style="font-family: FangSong;font-size: 14px"> <span style="font-family:FangSong">泰和软件</span></span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">在此提醒所有使用</span>Exchange提供邮件服务的企业关注相关的邮件安全风险。</span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal"><span style="font-family: FangSong;font-size: 14px">TigerFort Email UTM 是泰和软件公司开发的邮件安全</span><span style="font-family: FangSong;font-size: 14px">及</span><span style="font-family: FangSong;font-size: 14px">风险管理</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">(邮件安全</span>/审核</span><span style="font-family: FangSong;font-size: 14px">/</span><span style="font-family: FangSong;font-size: 14px">归档加密)</span><span style="font-family: FangSong;font-size: 14px">的一体化解决方案</span><span style="font-family: FangSong;font-size: 14px"><span style="font-family:FangSong">,您可以通过</span>TigerFort的高级恶意软件和未知威胁检测方案提升自身的勒索病毒的侵扰,并且如事先部署归档解决方案实现邮件数据的高级检索备份和数据恢复后,在您不幸遭遇勒索软件攻击,可确保邮件数据安然无恙。</span></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal;border-bottom: 1px solid windowtext;padding: 0 0 1px"><span style="font-family: FangSong; font-size: 14px;"> </span><br/></p><p style=";font-family: 宋体;font-size: 16px;white-space: normal"><span style="font-family: FangSong;font-size: 14px"> </span></p><p><br/></p>
邮件安全管理
+86 136 9356 0495