¾È³çÇϼ¼¿ä!
·£¼¶¿þ¾î´Â ³ª¶û »ó°ü¾ø´Â°ÇÁÙ ¾Ë¾Ò´õ´Ï.. ¤Ð
- Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices
- A massive ransomware campaign targeting QNAP devices worldwide is underway, and users are finding their files now stored in password-protected 7zip archives.
https://www.bleepingcomputer.com/news/security/massive-qlocker-ransomware-attack-uses-7zip-to-encrypt-qnap-devices/
À§ÀÇ ·£¼¶¿þ¾î¿¡ °É·È½À´Ï´Ù. ÃÖ±Ù¿¡ ³ª¿Â ¾ÆÁÖ µû²öµû²öÇÑ ·£¼¶¿þ¾î¿¹¿ä.
Å¥³À ³ª½º¸¦ ÁßÁ¡ÀûÀ¸·Î °ø°ÝÇÏ°í QNAP ¿î¿µÃ¼Á¦ÀÇ ¾Æ·¡ Ãë¾à¼ºÀ» ÅëÇØ °¨¿°µÈ´Ù°í ÇÕ´Ï´Ù.
CVE-2020-2509 : QTS ¹× QuTS heroÀÇ ¸í·É »ðÀÔ Ãë¾à¼º
CVE-2020-36195 : ¸ÖƼ¹Ìµð¾î ÄÜ¼Ö ¹× ¹Ìµð¾î ½ºÆ®¸®¹Ö Ãß°¡ ±â´ÉÀÇ SQL »ðÀÔ Ãë¾à¼º
À§ÀÇ Ãë¾à¼ºÀ» °³¼±ÇÑ ¿î¿µÃ¼Á¦°¡ 4¿ù 16ÀÏ¿¡ ¹èÆ÷µÇ¾ú´Âµ¥, ¾ÆÁ÷ Çѱ¹ ¼¹ö¿¡¼´Â ¾÷µ¥ÀÌÆ®°¡ ¾ÈµË´Ï´Ù.
Å¥³À ³ª½º¸¦ ¾²½Ã´Â ºÐµéÁß ¾ÆÁ÷ ¾È°É¸®¼Ì´Ù¸é »õ·Î¿î ¿î¿µÃ¼Á¦°¡ ¹èÆ÷µÉ¶§±îÁö ÁÖÀÇÇϼ¼¿ä. (³×Æ®¿öÅ©¿¡¼ ºÐ¸® ¶Ç´Â ²¨µÎ´Â°Ô ÁÁÀ»°Í °°½À´Ï´Ù.)
°É·ÈÀ¸¸é ¸®¼Ò½º ¸ð´ÏÅ͸¦ ÅëÇØ 7z°¡ ³» ÆÄÀϵéÀ» ¿½ÉÈ÷ ¾ÏÈ£È ÇÏ°í ÀÖ´Â °ÍÀ» º¼ ¼ö ÀÖ½À´Ï´Ù¤Ð
»õ·Î¿î ¿î¿µÃ¼Á¦´Â ·£¼¶¿þ¾î¿¡ °É¸®Áö ¾Ê´Â´Ù°í ÇÕ´Ï´Ù. (¾ÏÈ£ÈµÈ ÆÄÀÏÀÌ º¹±¸µÇÁö´Â ¾ÊÀ½)
µ¿¿µ»óÀ» Á¦¿ÜÇÑ ¸ðµç ÆÄÀÏÀÌ .7z·Î ¾ÏÈ£È µÆ±¸¿ä, º¹È£Å°¸¦ ¹ÞÀ¸·Á¸é 0.01 ºñÆ®ÄÚÀÎ (~60¸¸¿øÁ¤µµ)¸¦ ³»¾ßÇÕ´Ï´Ù¤¾¤¾
õ¸¸ ´ÙÇàÀ롂 À̹ø¿¡ ³ª½º¸¦ »õ·Î »ç¸é¼ µ¥ÀÌÅ͸¦ ¿Å±â·Á°í 97%Á¤µµ ¹é¾÷ÁßÀ̾ú´Ù´Â°Çµ¥.. ¹é¾÷ÀÌ 3% ³²¾Ò´Âµ¥ ¹«¼¿ö¼ Æ÷±âÇÏ°í ¹é¾÷µå¶óÀ̺ê´Â ºÐ¸®Çß¾î¿ä.
USB·Î ¿¬°áµÈ ¹é¾÷¿ë µå¶óÀ̺갡 2°³ ÀÖ¾ú´Âµ¥ ¿©±â¿¡´Â ¾È°É¸°°Í °°¾Æ¿ä. (ÃÖ¼ÒÇÑ ¾Ïȣȴ ¾ÈµÆ½À´Ï´Ù.)
Áö±ÝÀº ¹é¾÷¿ë µå¶óÀ̺긦 ¸ðµÎ ºÐ¸®ÇØ ³õÀº »óÅÂÀä, Ȥ½Ã ·£¼¶¿þ¾î°¡ ¹é¾÷¿ë µå¶óÀ̺꿡µµ µé¾îÀÖ´ÂÁö ¾Ë ¼ö ÀÖ´Â ¹æ¹ýÀÌ ÀÖÀ»±î¿ä?
ÀÌ°É È®ÀÎÇÑ´Ù°í ÄÄÇ»ÅÍ¿¡ ¿¬°áÇß´Ù°¡ ÄÄÇ»ÅͱîÁö °É¸®´Â°Å ¾Æ´ÑÁö °ÆÁ¤ÀÌ µË´Ï´Ù.
|
È®ÀÎÇغ¸´Ï ´ÙÇàÈ÷ ÇöÀç ÃֽŹöÀüÀ¸·Î ÆÐÄ¡ÇÏ¸é ¹®Á¦°¡ ´Ù ÇØ°áµÈ°Í °°½À´Ï´Ù.
Àú´Â ¾Û ¾÷µ¥ÀÌÆ®´Â ¼öµ¿À¸·Î Çسù´Âµ¥¤Ð ±×·¡¼ °É¸°°Í °°¾Æ¿ä¤Ð