{"id":10232,"date":"2014-11-03T09:00:12","date_gmt":"2014-11-03T01:00:12","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=10232"},"modified":"2016-01-25T16:52:26","modified_gmt":"2016-01-25T08:52:26","slug":"%e8%b3%87%e6%96%99%e5%a4%96%e6%b4%a9%e8%88%87%e9%8a%b7%e5%94%ae%e6%ab%83%e5%8f%b0%e7%b3%bb%e7%b5%b1-pos-%e8%a8%98%e6%86%b6%e9%ab%94%e6%93%b7%e5%8f%96%e7%a8%8b%e5%bc%8f%e7%88%86%e7%82%b8%e6%80%a7","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=10232","title":{"rendered":"\u8cc7\u6599\u5916\u6d29\u8207\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71 (PoS) \u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u7206\u70b8\u6027\u6210\u9577"},"content":{"rendered":"

\u5728\u96f6\u552e\u696d\u4e00\u8d77\u53ef\u80fd\u662f\u6709\u53f2\u4ee5\u4f86\u898f\u6a21\u6700\u5927\u7684\u8cc7\u6599\u5916\u6d29<\/a>\u4e8b\u4ef6\u7576\u4e2d\uff0c\u5c0e\u56e0\u65bc\u6b79\u5f92\u6210\u529f\u5165\u4fb5\u4e86\u6578\u5341\u5e74\u5982\u4e00\u65e5\u7684\u8001\u820a\u92b7\u552e\u6ac3\u53f0 (POS) \u7cfb\u7d71\u7db2\u8def\u3002<\/span><\/p><\/blockquote>\n

2013 \u5e74\u5c07\u5728\u8cc7\u8a0a\u5b89\u5168\u7522\u696d\u7559\u4e0b\u6c38\u9060\u7684\u70d9\u5370\uff0c\u56e0\u70ba\u8a72\u5e74\u7f8e\u570b\u767c\u751f\u4e86\u6709\u53f2\u4ee5\u4f86\u6700\u5927\u7684\u4e00\u5b97\u8cc7\u6599\u5916\u6d29\u4e8b\u4ef6\u3002\u7f8e\u570b\u5927\u578b\u9023\u9396\u8d85\u5e02Target \u5728\u8036\u8a95\u8cfc\u7269\u5b63\u7bc0\u906d\u5230\u4e00\u9805\u4f7f\u7528 BlackPOS \u60e1\u610f\u7a0b\u5f0f (\u4e00\u7a2e\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f) \u7684\u9396\u5b9aAPT\u653b\u64ca\/\u76ee\u6a19\u653b\u64ca<\/a>\uff0c\u5c0e\u81f4\u56b4\u91cd\u7684\u8cc7\u6599\u5916\u6d29<\/a>\u3002\u64da\u4f30\u8a08<\/a>\uff0c\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u5077\u8d70\u4e86\u5927\u7d04 4000 \u842c\u7b46\u4fe1\u7528\u5361\u8207\u73fe\u91d1\u5361 (debit card) \u5361\u865f\u4ee5\u53ca 7000 \u842c\u7b46 Target \u6d88\u8cbb\u8005\u7684\u500b\u4eba\u8cc7\u6599\u3002\u8acb\u53c3\u8003:\u95dc\u65bc\u7f8e\u570b\u96f6\u552e\u696d\u696d\u8005 Target \u8cc7\u6599\u5916\u6d29\u5e38\u898b\u554f\u984c\u96c6<\/a><\/p>\n

\"\"<\/p>\n

\u81ea\u5f9e Target \u8cc7\u6599\u5916\u6d29\u4e8b\u4ef6\u66dd\u5149\u4ee5\u4f86\uff0c\u4e00\u9023\u4e32\u7684\u5546\u5bb6\u53ca\u96f6\u552e\u5546\u5e97\u4fbf\u9678\u7e8c\u8df3\u51fa\u4f86\u627f\u8a8d\u81ea\u5df1\u767c\u751f\u8cc7\u6599\u5916\u6d29\u3002\u5728\u9019\u4e9b\u5916\u6d29\u4e8b\u4ef6\u7576\u4e2d\uff0c\u6b79\u5f92\u591a\u4f7f\u7528\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f (PoS RAM scraper)\u3002\u672c\u6708\u7a0d\u65e9\uff0c\u7368\u7acb\u8a18\u8005 Brian Krebs \u4e5f\u63ed\u9732\u4e86\u53e6\u4e00\u5bb6\u7f8e\u570b\u96f6\u552e\u696d\u9f8d\u982d Home Depot \u6240\u767c\u751f\u7684\u5927\u578b\u8cc7\u6599\u5916\u6d29\u4e8b\u4ef6\uff0c\u6b79\u5f92\u63a1\u7528\u4e86 BlackPOS<\/a>\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u3002\u5e7e\u4e4e\u7f8e\u570b\u5883\u5167\u6240\u6709 Home Depot \u5e97\u9762\u61c9\u8a72\u90fd\u53d7\u5230\u5f71\u97ff\uff0c\u800c\u4e14\u5176\u5931\u7aca\u7684\u8cc7\u6599\u91cf\u4e5f\u61c9\u8a72\u8d85\u8d8a\u4e86 Target \u5916\u6d29\u4e8b\u4ef6\u7684\u898f\u6a21\u3002<\/p>\n

2014 \u5e74\uff0c\u9664\u4e86\u8cc7\u6599\u5916\u6d29\u4e8b\u4ef6\u6578\u91cf\u589e\u52a0\u4e4b\u5916\uff0c\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u5bb6\u65cf\u7684\u6578\u91cf\u4e5f\u6709\u6240\u6210\u9577\u3002\u4e0b\u5716\u986f\u793a\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u5bb6\u65cf\u7684\u767c\u5c55\u8207\u6f14\u9032\uff1a<\/p>\n

\"\"<\/p>\n

\u5716 1\uff1a\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f (PoS RAM scraper) \u5bb6\u65cf\u767c\u5c55\u8207\u6f14\u9032<\/em><\/p>\n

\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u51fa\u73fe\u7684\u6700\u65e9\u8a18\u9304\u662f\u4fe1\u7528\u5361\u767c\u5361\u6a5f\u69cb Visa \u65bc 2008 \u5e74 10 \u6708 2 \u65e5<\/a>\u767c\u5e03\u7684\u8cc7\u6599\u5b89\u5168\u8b66\u793a (Data Security Alert)\u3002\u7576\u6642\uff0c\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u66fe\u8a66\u5716\u5728\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u4e0a\u5b89\u88dd\u9664\u932f\u5de5\u5177\u4f86\u5f9e\u8a18\u61b6\u9ad4\u5167\u64f7\u53d6\u4fe1\u7528\u5361\u78c1\u689d\u7b2c\u4e00\u8ecc\u548c\u7b2c\u4e8c\u8ecc\u7684\u8cc7\u6599\u30022009 \u5e74\uff0c\u7f8e\u570b\u96fb\u4fe1\u696d\u8005 Verizon \u4e5f\u5728\u4e00\u4efd\u8cc7\u6599\u5916\u6d29\u8abf\u67e5\u5831\u544a<\/a>\u7576\u4e2d\u63d0\u5230\u4e86\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\uff0c\u4e26\u6307\u51fa\u53d7\u5bb3\u8005\u4e3b\u8981\u5206\u5e03\u5728\u96f6\u552e\u548c\u4f4f\u5bbf\u7522\u696d\u3002\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u5bb6\u65cf\u771f\u6b63\u958b\u59cb\u6f14\u9032\u7684\u6642\u9593\u662f\u5728 2011 \u5e74\u5e95\u5de6\u53f3\u3002\u5982\u540c\u4e0a\u5716\u6240\u793a\uff0c\u92b7\u552e\u6ac3\u53f0\u7cfb\u7d71\u8a18\u61b6\u9ad4\u64f7\u53d6\u7a0b\u5f0f\u96a8\u8457\u8cc7\u6599\u7aca\u53d6\u53ca\u5916\u6d29\u6280\u5de7\u7684\u63a8\u9673\u51fa\u65b0\u800c\u4e0d\u65b7\u6f14\u9032\u3002\u4e0d\u904e\u5728\u9019\u5f35\u5716\u7576\u4e2d\uff0c\u7279\u5225\u503c\u5f97\u6ce8\u610f\u7684\u662f\u5149 2014 \u5e74\u5c31\u6709\u5927\u91cf\u7684\u65b0\u8b8a\u7a2e\u51fa\u73fe\u3002\u9019\u985e\u60e1\u610f\u7a0b\u5f0f\u5f9e 2011 \u81f3 2013 \u5e74\u7e3d\u5171\u624d\u51fa\u73fe\u516d\u500b\u8b8a\u7a2e\uff0c\u4f46\u5149 2014 \u5e74\u5c31\u51fa\u73fe\u4e86\u76f8\u540c\u6578\u91cf\u7684\u5168\u65b0\u8b8a\u7a2e\u3002\u5982\u540c\u4e0a\u5716\u7684\u7bad\u982d\u6240\u793a\uff0c\u6709\u4e9b\u8b8a\u7a2e\u7e7c\u627f\u4e86\u524d\u4e00\u4ee3\u7684\u529f\u80fd\uff0c\u6709\u4e9b\u5247\u662f\u76f4\u63a5\u5f9e\u65e9\u671f\u7684\u8b8a\u7a2e\u6f14\u5316\u800c\u4f86\u3002<\/p>\n

\u5728 2014 \u5e74\u767c\u73fe\u7684\u516d\u500b\u65b0\u8b8a\u7a2e\u7576\u4e2d\uff0c\u6709\u56db\u500b\u767c\u73fe\u5728\u516d\u6708\u81f3\u516b\u6708\u4e4b\u9593\u3002<\/p>\n