{"id":49175,"date":"2017-04-20T09:00:30","date_gmt":"2017-04-20T01:00:30","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=49175"},"modified":"2018-09-08T13:10:48","modified_gmt":"2018-09-08T05:10:48","slug":"%e5%a4%a7%e5%9e%8b%e8%b7%a8%e5%9c%8b%e7%b6%b2%e8%b7%af%e6%94%bb%e6%93%8a%e3%80%8ccloud-hopper%e3%80%8d%e8%94%93%e5%bb%b6%e8%87%b3%e4%ba%9e%e6%b4%b2-%e4%bb%a5%e6%bb%b2%e9%80%8fit%e4%bb%a3%e7%ae%a1","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=49175","title":{"rendered":"\u5927\u578b\u8de8\u570b\u7db2\u8def\u653b\u64ca\u300cCloud Hopper\u300d\u8513\u5ef6\u81f3\u4e9e\u6d32, \u4ee5\u6ef2\u900fIT\u4ee3\u7ba1\u670d\u52d9\u4f9b\u61c9\u5546\u70ba\u8df3\u677f"},"content":{"rendered":"<blockquote><p>\u56db\u6708\u521d\u570b\u5916\u5b89\u5168\u5a92\u9ad4\u722d\u76f8\u5831\u5c0e,\u4e00\u500b\u5927\u578b\u7684\u8de8\u570b\u7db2\u8def\u653b\u64ca,\u7531\u82f1\u570b\u570b\u5bb6\u7db2\u7d61\u5b89\u5168\u4e2d\u5fc3\uff08NCSC\uff09\u7b49\u55ae\u4f4d\u516c\u5e03\u7684<a href=\"https:\/\/www.pwc.co.uk\/cyber-security\/pdf\/cloud-hopper-report-final-v3.pdf\">\u8cc7\u5b89\u7814\u7a76\u5831\u544a<\/a>\uff0c\u6307\u51fa\u4ee5\u767c\u52d5\u300c\u9032\u968e\u6301\u7e8c\u6027\u6ef2\u900f\u653b\u64ca\u300d\uff08Advanced Persistent Threat\uff0c\u4ee5\u4e0b\u7c21\u7a31 APT\u653b\u64ca\uff09\u60e1\u540d\u662d\u5f70\u7684\u4e2d\u570b\u99ed\u5ba2\u96c6\u5718 APT10,\u6b63\u5165\u4fb5\u5168\u7403\u4f01\u696d\u4e26\u7aca\u53d6\u6a5f\u5bc6\u8cc7\u8a0a\u3002<\/p>\n<p>\u5411\u4f86\u4ee5<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=15888\">\u9b5a\u53c9\u5f0f\u91e3\u9b5a\u653b\u64ca\uff08SPEAR PHISHING\uff09<\/a>\u4f86\u653b\u64ca\u76ee\u6a19\u4f01\u696d\u6216\u653f\u5e9c\u6a5f\u95dc\u7684 APT10\uff0c\u9019\u6ce2\u653b\u64ca\u5f9e\u4f9b\u61c9\u93c8\u5165\u624b,\u85c9\u7531\u6ef2\u900f IT\u4ee3\u7ba1\u670d\u52d9\u4f9b\u61c9\u5546\uff08Managed IT Service Providers\uff0cMSPs\uff09\u9593\u63a5\u5165\u4fb5\u76ee\u6a19\u653b\u64ca\u7684\u5c0d\u8c61\uff0c\u8a72\u653b\u64ca\u884c\u52d5\u88ab\u547d\u540d\u70ba\u300cCloud Hopper\u300d\u3002<\/p>\n<p>\u653b\u64ca\u884c\u52d5\u4e00\u65e6\u5165\u4fb5\u4e00\u5bb6MSP\uff0c\u5c31\u53ef\u80fd\u7372\u5f97\u6578\u5343\u5bb6\u7684\u6f5b\u5728\u653b\u64ca\u5c0d\u8c61\uff0c\u6839\u64da\u8da8\u52e2\u79d1\u6280\u7684\u521d\u6b65\u5206\u6790\u548c\u5075\u6e2c\u986f\u793a\uff0c\u9019\u9805\u653b\u64ca\u884c\u52d5\u81f3\u5c11\u4f7f\u7528\u4e86 70 \u7a2e\u4e0d\u540c\u7684\u5f8c\u9580\u7a0b\u5f0f\u5bb6\u65cf\u548c\u6728\u99ac\u7a0b\u5f0f\u3002<\/p>\n<p>\u672c\u6587\u5c07\u5206\u4eab\u70ba\u4e86\u6301\u7e8c\u8eb2\u5728\u53d7\u611f\u67d3\u7684\u7cfb\u7d71\u7576\u4e2d\uff0c\u99ed\u5ba2\u505a\u4e86\u54ea\u4e9b\u5e03\u5c40?<\/p>\n<p>\u70ba\u907f\u514d IT \u7cfb\u7d71\u7ba1\u7406\u54e1\u8d77\u7591,APT10 \u99ed\u5ba2\u7d44\u7e54\u7528\u4e86\u54ea\u4e9b\u969c\u773c\u6cd5?<\/p><\/blockquote>\n<h3>\u95dc\u65bc Cloud Hopper \u653b\u64ca\u884c\u52d5,\u4f01\u696d\u8a72\u5982\u4f55\u9632\u7bc4\uff1f<\/h3>\n<h2><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full\" src=\"https:\/\/documents.trendmicro.com\/images\/TEx\/articles\/operation-cloud-hopper.jpg\" width=\"700\" height=\"479\" \/><\/h2>\n<p>\u8cc7\u5b89\u7814\u7a76\u4eba\u54e1\u6700\u8fd1\u767c\u73fe\u4e86\u4e00\u6ce2\u5f71\u97ff\u7bc4\u570d\u6975\u5ee3\u7684<a href=\"https:\/\/www.scmagazine.com\/report-exposes-apt-10s-cloud-hopper-campaign\/article\/648775\/\">\u7db2\u8def\u9593\u8adc\u884c\u52d5<\/a>\uff0c\u5176\u80cc\u5f8c\u662f\u4e00\u500b\u540d\u70ba\u300cAPT10\u300d\u7684\u99ed\u5ba2\u96c6\u5718 (\u53c8\u540d\uff1aMenuPass\u3001POTASSIUM\u3001Stone Panda\u3001Red Apollo \u6216 CVNX)\u3002\u99ed\u5ba2\u7784\u6e96\u7684\u76ee\u6a19\u70ba IT \u4ee3\u7ba1\u670d\u52d9\u5ee0\u5546 (Managed Service Provider\uff0c\u7c21\u7a31 MSP)\uff0c\u4f46\u9019\u53ea\u4e0d\u904e\u662f\u500b\u8df3\u677f\uff0c\u5176\u771f\u6b63\u76ee\u6a19\u70ba MSP \u5ba2\u6236\u7684\u667a\u6167\u8cc7\u7522\u548c\u5546\u696d\u6a5f\u5bc6\u3002\u4ee5\u4e0b\u6574\u7406\u4e86\u6709\u95dc\u9019\u9805\u6700\u65b0\u5a01\u8105\u4f01\u696d\u8a72\u77e5\u9053\u7684\u8a0a\u606f\u4ee5\u53ca\u8a72\u5982\u4f55\u9632\u7bc4\u3002<\/p>\n<h3>\u53d7\u5bb3\u5c0d\u8c61\u5df2\u5ef6\u4f38\u5230\u4e9e\u6d32<\/h3>\n<p>\u8a72\u653b\u64ca\u884c\u52d5\u539f\u672c\u7684<a href=\"https:\/\/www.scmagazine.com\/apt10-tool-toolkit-consists-of-several-backdoor-and-a-rat\/article\/649388\/\">\u53d7\u5bb3\u76ee\u6a19<\/a>\u4e3b\u8981\u662f\u5317\u7f8e\u3001\u6b50\u6d32\u3001\u5357\u97d3\u53ca\u4e9e\u6d32\u7684\u4f01\u696d\u6a5f\u69cb\uff0c\u4f46\u6700\u8fd1\u4e5f\u8513\u5ef6\u5230\u4ee5\u4e0b\u5730\u5340\u7684 MSP\uff1a<a href=\"https:\/\/www.bbc.com\/news\/technology-39478975\">\u82f1\u570b<\/a>\u3001\u7f8e\u570b\u3001<a href=\"https:\/\/www.telegraph.co.uk\/news\/2017\/04\/04\/uk-firms-targeted-china-based-systematic-global-hacking-operation\/\">\u65e5\u672c<\/a>\u3001\u52a0\u62ff\u5927\u3001\u5df4\u897f\u3001\u6cd5\u570b\u3001\u745e\u58eb\u3001\u632a\u5a01\u3001\u82ac\u862d\u3001\u745e\u5178\u3001\u5357\u975e\u3001\u5370\u5ea6\u3001\u6cf0\u570b\u3001\u5357\u97d3\u4ee5\u53ca\u6fb3\u6d32\u3002<!--more--><\/p>\n<p>\u7531\u65bc MSP \u8ca0\u8cac\u5e6b\u4f01\u696d\u4ee3\u7ba1\u5176\u61c9\u7528\u7a0b\u5f0f\u3001\u7db2\u8def\u53ca\u7cfb\u7d71\u57fa\u790e\u67b6\u69cb\uff0c\u56e0\u6b64\u6b79\u5f92\u4e4b\u6240\u4ee5\u5165\u4fb5 MSP\uff0c\u4e3b\u8981\u662f\u70ba\u4e86\u85c9\u6b64\u6ef2\u900f MSP \u5ba2\u6236\u7684\u7db2\u8def\u3002\u76ee\u524d\u53d7\u5bb3\u7684\u7522\u696d\u5305\u62ec\uff1a\u5de5\u7a0b\u3001\u5de5\u696d\u88fd\u9020\u3001\u96f6\u552e\u3001\u80fd\u6e90\u3001\u91ab\u85e5\u3001\u96fb\u4fe1\u4ee5\u53ca\u653f\u5e9c\u6a5f\u95dc\u3002<\/p>\n<p><strong>[\u5ef6\u4f38\u95b1\u8b80\uff1a<\/strong><strong>\u00a0<\/strong><a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cyber-attacks\/targeted-attacks-six-components\"><strong>\u91dd\u5c0d\u6027\u653b\u64ca\u7684\u516d\u5927\u968e\u6bb5<\/strong><\/a><strong>]<\/strong><\/p>\n<h3>\u81f3\u5c11\u4f7f\u7528\u4e86 70 \u7a2e\u5f8c\u9580\u7a0b\u5f0f\u548c\u6728\u99ac<\/h3>\n<p><a href=\"https:\/\/www.telegraph.co.uk\/news\/2017\/04\/04\/uk-firms-targeted-china-based-systematic-global-hacking-operation\/\">\u6839\u64da\u5831\u544a<\/a>\u986f\u793a\uff0c\u9019\u9805\u9593\u8adc\u884c\u52d5\u904b\u7528\u4e86\u591a\u7a2e\u60e1\u610f\u7a0b\u5f0f\uff0c\u5305\u62ec\u597d\u5e7e\u500b\u7248\u672c\u7684<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/definition\/Remote-access-programs-tools\">\u9060\u7aef\u5b58\u53d6\u6728\u99ac\u7a0b\u5f0f<\/a> (RAT)\uff0c\u4f8b\u5982 <a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/plugx-new-tool-for-a-not-so-new-campaign\/\">PlugX<\/a>\u3001<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/bkdr_poison-more-challenges-ahead\/\">Poison Ivy<\/a>\u3001ChChes \u53ca <a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/gizmodo-brazil-compromised-leads-to-backdoor\/\">Graftor<\/a> \u9019\u985e\u8001\u820a\u4f46\u60e1\u540d\u662d\u5f70\u7684\u5bb6\u65cf (\u8da8\u52e2\u79d1\u6280\u5206\u5225\u547d\u540d\u70ba <a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/threat-encyclopedia\/malware\/BKDR_plugx\">BKDR_PLUGX<\/a>\u3001<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/threat-encyclopedia\/malware\/BKDR_POISON\">BKDR_POISON<\/a>\u3001BKDR_CHCHES \u548c TROJ_GRAFTOR)\u3002Cloud Hopper \u653b\u64ca\u884c\u52d5\u76ee\u524d\u5df2\u77e5\u6703\u5229\u7528 ARTIEF \u6728\u99ac\u7a0b\u5f0f (<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/threat-encyclopedia\/malware\/troj_artief\">TROJ_ARTIEF<\/a>) \u4ee5\u53ca\u4e00\u4e9b\u6a21\u4eff Microsoft \u6a94\u6848\u7c3d\u7ae0\u548c\u5c6c\u6027\u7684\u60e1\u610f\u6a94\u6848 (\u5982 <a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/threat-encyclopedia\/malware\/fakems\">TROJ_FAKEMS<\/a>)\uff0c\u9084\u6709\u5167\u542b\u60e1\u610f\u7a0b\u5f0f\u78bc<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/definition\/exploit\">\u53ef\u653b\u64ca<\/a><a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/definition\/vulnerability\">\u7cfb\u7d71\u6f0f\u6d1e<\/a>\u7684 Microsoft Office \u6587\u4ef6\u3002\u6839\u64da\u8da8\u52e2\u79d1\u6280\u7684\u521d\u6b65\u5206\u6790\u548c\u5075\u6e2c\u986f\u793a\uff0c\u9019\u9805\u653b\u64ca\u884c\u52d5\u81f3\u5c11\u4f7f\u7528\u4e86 70 \u7a2e\u4e0d\u540c\u7684\u5f8c\u9580\u7a0b\u5f0f\u5bb6\u65cf\u548c\u6728\u99ac\u7a0b\u5f0f\u3002<\/p>\n<h3>\u5165\u4fb5\u4ee3\u7ba1\u670d\u52d9\u4f9b\u61c9\u5546,\u7aca\u53d6\u7cfb\u7d71\u7ba1\u7406\u54e1\u7684\u5e33\u865f\u5bc6\u78bc<\/h3>\n<p>\u9019\u4e9b\u60e1\u610f\u7a0b\u5f0f\u662f\u7d93\u7531<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=136\">\u7db2\u8def\u91e3\u9b5a\uff08Phishing\uff09<\/a>\u96fb\u5b50\u90f5\u4ef6\u4f86\u6563\u5e03\uff0c\u99ed\u5ba2\u6703\u5047\u5192\u516c\u5171\u4e8b\u696d\u7684\u540d\u7fa9\u4f86\u6b3a\u9a19\u76ee\u6a19\u3002\u70ba\u4e86\u6301\u7e8c\u8eb2\u5728\u53d7\u611f\u67d3\u7684\u7cfb\u7d71\u7576\u4e2d\uff0c\u99ed\u5ba2\u904b\u7528\u4e86\u4e00\u4e9b\u5de5\u5177\u4f86\u7aca\u53d6\u7cfb\u7d71\u7ba1\u7406\u54e1\u7684\u5e33\u865f\u5bc6\u78bc\uff0c\u7136\u5f8c\u6f5b\u5165 MSP \u548c\u5176\u5ba2\u6236\u5171\u7528\u7684\u7cfb\u7d71\u53ca\u57fa\u790e\u67b6\u69cb\u3002\u9019\u4e5f\u662f\u70ba\u4f55\u6b79\u5f92\u80fd\u5728 MSP \u7db2\u8def\u5167\u90e8\u56db\u8655\u904a\u8d70\uff0c\u4e26\u4e14\u5165\u4fb5\u66f4\u591a\u5ba2\u6236\u7684\u7db2\u8def\u3002\u6b79\u5f92\u6703\u5728\u7cfb\u7d71\u4e2d\u5efa\u7acb\u6392\u7a0b\u5de5\u4f5c\u6216\u5229\u7528\u7cfb\u7d71\u670d\u52d9\u548c\u5de5\u5177\u8edf\u9ad4\uff0c\u8b93\u60e1\u610f\u7a0b\u5f0f\u5373\u4f7f\u5728\u7cfb\u7d71\u91cd\u65b0\u958b\u6a5f\u4e4b\u5f8c\u4f9d\u7136\u80fd\u5920\u5e38\u99d0\u3002<\/p>\n<p>APT10 \u99ed\u5ba2\u5718\u9ad4\u4e0d\u6703\u53ea\u6311\u9ad8\u50f9\u503c\u7684\u7cfb\u7d71\u4f86\u611f\u67d3\uff0c\u4e5f\u6703\u5b89\u88dd\u60e1\u610f\u7a0b\u5f0f\u5230\u975e\u95dc\u9375\u7684\u7cfb\u7d71\u4e0a\uff0c\u5c07\u5b83\u5011\u7576\u6210\u8df3\u677f\u4f86\u9032\u5165\u771f\u6b63\u9396\u5b9a\u7684\u76ee\u6a19\u7cfb\u7d71\uff0c\u9019\u7b97\u662f\u4e00\u7a2e\u907f\u514d IT \u7cfb\u7d71\u7ba1\u7406\u54e1\u8d77\u7591\u7684\u969c\u773c\u6cd5\u3002APT10 \u6703\u4f7f\u7528\u4e00\u4e9b\u5ba2\u88fd\u5316\u7684<a href=\"https:\/\/www.scmagazine.com\/apt10-tool-toolkit-consists-of-several-backdoor-and-a-rat\/article\/649388\/\">\u958b\u653e\u539f\u59cb\u78bc\u60e1\u610f\u7a0b\u5f0f\u548c\u99ed\u5ba2\u5de5\u5177<\/a>\u00a0\uff0c\u4e26\u6697\u4e2d\u900f\u904e\u9060\u7aef\u684c\u9762\u901a\u8a0a\u5354\u5b9a (RDP) \u4f86\u9032\u5165\u7cfb\u7d71\uff0c\u6216\u5229\u7528\u9060\u7aef\u5b58\u53d6\u6728\u99ac\u7a0b\u5f0f (RAT) \u4f86\u5c0b\u627e\u60f3\u8981\u7aca\u53d6\u7684\u8cc7\u6599\u3002<\/p>\n<p>\u88ab\u7aca\u53d6\u7684\u8cc7\u6599\u6703\u7d93\u904e\u5f59\u6574\u3001\u58d3\u7e2e\uff0c\u7136\u5f8c\u7d93\u7531 MSP \u7684\u7db2\u8def\u50b3\u9001\u7d66\u99ed\u5ba2\u3002<\/p>\n<p><strong>[\u5ef6\u4f38\u95b1\u8b80\uff1a<\/strong><a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/research-and-analysis\/predictions\/2017\"><strong>\u99ed\u5ba2\u5c07\u767c\u5c55\u51fa\u54ea\u4e9b\u65b0\u7684\u91dd\u5c0d\u6027\u653b\u64ca\u6280\u5de7\uff1f<\/strong><\/a><strong>]<\/strong><\/p>\n<h3>\u8a72\u5982\u4f55\u9632\u7bc4\uff1f<\/h3>\n<p>Cloud Hopper \u7a81\u986f\u51fa\u7db2\u8def\u9593\u8adc\u653b\u64ca\u4e0d\u65b7\u6f14\u8b8a\u7684\u7279\u6027\uff0c\u6700\u65b0\u7684\u767c\u5c55\u662f\u5229\u7528 MSP \u548c\u5ba2\u6236\u4e4b\u9593\u7684\u5bc6\u5207\u95dc\u4fc2\u7576\u6210\u8df3\u677f\u3002\u5c0d\u4f01\u696d\u4f86\u8aaa\uff0c\u9019\u4e5f\u518d\u6b21\u5370\u8b49\u4e00\u9ede\uff1a\u4f01\u696d\u5728\u6311\u9078\u57fa\u790e\u67b6\u69cb\u670d\u52d9\u5ee0\u5546\u6642\uff0c\u52d9\u5fc5\u5be9\u614e\u8a55\u4f30\u4e26\u78ba\u8a8d\u98a8\u96aa\u3002\u6b64\u5916\uff0cMSP \u5728\u7ba1\u7406\u5ba2\u6236\u7684\u7cfb\u7d71\u57fa\u790e\u67b6\u69cb\u6642\u7d55\u4e0d\u80fd\u4fbf\u5b9c\u884c\u4e8b\uff0cCloud Hopper \u653b\u64ca\u884c\u52d5\u544a\u8a34\u6211\u5011\uff0c<a href=\"https:\/\/www.trendmicro.com\/en_us\/partners\/managed-service-provider.html\">MSP \u5fc5\u9808\u540c\u6642\u517c\u9867\u6548\u7387\u548c\u5b89\u5168<\/a>\uff0c\u4e0d\u8ad6<a href=\"https:\/\/www.trendmicro.com\/en_us\/business\/products\/user-protection\/sps\/email-and-collaboration\/hosted-email-security.html\">\u4ee3\u7ba1\u5f0f\u96fb\u5b50\u90f5\u4ef6<\/a>\u6216<a href=\"https:\/\/www.trendmicro.com\/en_us\/business\/products\/user-protection\/sps\/email-and-collaboration\/cloud-app-security.html\">\u96f2\u7aef\u61c9\u7528\u7a0b\u5f0f<\/a>\u7686\u7136\u3002<\/p>\n<p>\u9664\u4e86\u96a8\u6642\u4fdd\u6301\u7cfb\u7d71\u66f4\u65b0\u4e4b\u5916\uff0cMSP \u548c\u4f01\u696d\u7686\u61c9<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cyber-attacks\/understanding-targeted-attacks-defensive-measures\">\u63a1\u53d6\u67d0\u4e9b\u9632\u79a6\u63aa\u65bd\u4f86\u9632\u7bc4\u9019\u985e\u5a01\u8105<\/a>\uff0c\u4f8b\u5982\u4e3b\u52d5\u5f0f<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=10601\">\u4e8b\u4ef6\u61c9\u8b8a<\/a>\u63aa\u65bd\u3002IT \u7cfb\u7d71\u7ba1\u7406\u54e1\u82e5\u5c07<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=12484\">\u8cc7\u6599\u5206\u9580\u5225\u985e<\/a>\uff0c\u4e5f\u53ef\u964d\u4f4e\u8cc7\u6599\u5916\u6d29\u7684\u640d\u5bb3\uff0c\u4e26\u4e14\u5728\u8cc7\u6599\u5916\u6d29\u6642\u78ba\u4fdd\u4f01\u696d\u6838\u5fc3\u8cc7\u6599\u7684\u5b89\u5168\u3002<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=12484\">\u9069\u7576\u5207\u5272\u7db2\u8def<\/a>\u4e5f\u6709\u52a9\u65bc\u78ba\u4fdd\u7db2\u8def\u5b89\u5168\uff0c\u4e26\u4e14\u9650\u7e2e\u654f\u611f\u8cc7\u6599\u8207\u4f01\u696d\u7db2\u8def\u7684\u5b58\u53d6\u6b0a\u9650\uff0c\u8b93\u99ed\u5ba2\u66f4\u96e3\u5728\u7db2\u8def\u5167\u56db\u8655\u904a\u8d70\u3002\u7531\u65bc Cloud Hopper \u4e3b\u8981\u662f\u5229\u7528\u9b5a\u53c9\u5f0f\u7db2\u8def\u91e3\u9b5a\u90f5\u4ef6\u4f86\u6ef2\u900f\u4f01\u696d\uff0c\u56e0\u6b64\u4f01\u696d\u52d9\u5fc5\u57f9\u990a\u826f\u597d\u7684\u7db2\u8def\u8cc7\u5b89\u6587\u5316\uff0c\u5c24\u5176\u61c9\u56b4\u9632<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cybercrime-and-digital-threats\/infosec-guide-email-threats\">\u96fb\u5b50\u90f5\u4ef6\u76f8\u95dc\u7684\u5a01\u8105<\/a>\u3002<\/p>\n<h3>\u8da8\u52e2\u79d1\u6280\u89e3\u6c7a\u65b9\u6848<\/h3>\n<p><a href=\"https:\/\/www.trendmicro.tw\/tw\/enterprise\/security-risk-management\/deep-discovery\/\">Deep Discovery<\/a>\u00a0&#x2122; \u80fd\u5373\u6642\u5075\u6e2c\u3001\u6df1\u5165\u5206\u6790\u3001\u4e26\u4e3b\u52d5\u56de\u61c9\u4eca\u65e5\u96b1\u533f\u7684\u60e1\u610f\u7a0b\u5f0f\u8207\u91dd\u5c0d\u6027\u653b\u64ca\u3002\u5b83\u63d0\u4f9b\u4e86\u4e00\u5957\u5c08\u70ba\u4f01\u696d\u91cf\u8eab\u8a02\u505a\u7684\u5b8c\u6574\u9632\u79a6\u4f86\u5c0d\u6297\u91dd\u5c0d\u6027\u653b\u64ca\u548c\u9032\u968e\u5a01\u8105\uff0c\u5229\u7528\u7279\u6b8a\u7684\u5f15\u64ce\u3001\u5ba2\u88fd\u5316\u6c99\u76d2\u6a21\u64ec\u5206\u6790\u4ee5\u53ca\u5bc6\u5207\u7684\u4ea4\u53c9\u95dc\u806f\u5206\u6790\uff0c\u5b8c\u6574\u6db5\u84cb\u653b\u64ca\u7684\u6240\u6709\u968e\u6bb5\uff0c\u751a\u81f3\u4e0d\u9808\u66f4\u65b0\u5f15\u64ce\u6216\u75c5\u6bd2\u78bc\u5c31\u80fd\u5075\u6e2c Cloud Hopper \u653b\u64ca\u884c\u52d5\u7576\u4e2d\u7684\u5404\u7a2e\u5a01\u8105\u3002<\/p>\n<p>\u8da8\u52e2\u79d1\u6280 \u00a0<a href=\"https:\/\/www.trendmicro.tw\/tw\/business\/cloud-data\/\">Hybrid Cloud Security \u6df7\u5408\u5f0f\u96f2\u7aef\u89e3\u6c7a\u65b9\u6848<\/a> \u89e3\u6c7a\u65b9\u6848\u662f\u4ee5\u8da8\u52e2\u79d1\u6280 XGen&#x2122; \u9632\u8b77\u70ba\u5f8c\u76fe\u4e26\u5305\u542b\u8da8\u52e2\u79d1\u6280 Deep Security&#x2122; \u89e3\u6c7a\u65b9\u6848\uff0c\u63d0\u4f9b\u4e86\u8de8\u4e16\u4ee3\u878d\u5408\u7684\u5a01\u8105\u9632\u79a6\u6280\u5de7\uff0c\u5c08\u70ba\u4fdd\u8b77\u5be6\u9ad4\u3001\u865b\u64ec\u53ca\u96f2\u7aef\u5de5\u4f5c\u8ca0\u8f09\u548c\u4f3a\u670d\u5668\u800c\u6700\u4f73\u5316\u3002<\/p>\n<p>\u8da8\u52e2\u79d1\u6280\u7684<a href=\"https:\/\/www.trendmicro.tw\/tw\/business\/saas\/\">\u8a17\u7ba1\u670d\u52d9\u4f9b\u61c9\u5546\u65b9\u6848<\/a>\u80fd\u70ba MSP \u5e36\u4f86\u9632\u8b77\u7ba1\u7406\u81ea\u52d5\u5316\u7684\u6548\u76ca\uff0c\u518d\u52a0\u4e0a\u80fd\u8207\u7522\u696d\u6a19\u6e96\u61c9\u7528\u7a0b\u5f0f\u90e8\u7f72\u5e73\u53f0\u9ad8\u6548\u7387\u6574\u5408\u7684\u4f01\u696d\u5167\u9632\u8b77\u3002<\/p>\n<p>TippingPoint \u5ba2\u6236\u53ef\u5229\u7528\u4e0b\u5217 ThreatDV \u904e\u6ffe\u689d\u4ef6\u4f86\u9632\u7bc4\u9019\u9805\u5a01\u8105\uff1a<br \/>\nThreatDV 27813: TCP: Backdoor.Win32.Redleavy.A (RedLeaves) Checkin<\/p>\n<p>\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cyber-attacks\/operation-cloud-hopper-what-you-need-to-know\">Operation Cloud Hopper: What You Need to Know<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u56db\u6708\u521d\u570b\u5916\u5b89\u5168\u5a92\u9ad4\u722d\u76f8\u5831\u5c0e,\u4e00\u500b\u5927\u578b\u7684\u8de8\u570b\u7db2\u8def\u653b\u64ca,\u7531\u82f1\u570b\u570b\u5bb6\u7db2\u7d61\u5b89\u5168\u4e2d\u5fc3\uff08NCSC\uff09\u7b49\u55ae\u4f4d\u516c\u5e03\u7684\u8cc7\u5b89\u7814\u7a76\u5831\u544a [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[10,1268,179],"tags":[45,358,357,3165,3164],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/49175"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=49175"}],"version-history":[{"count":0,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/49175\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=49175"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=49175"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=49175"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}