{"id":66669,"date":"2020-12-23T09:00:00","date_gmt":"2020-12-23T01:00:00","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=66669"},"modified":"2021-01-12T17:44:06","modified_gmt":"2021-01-12T09:44:06","slug":"%e5%b0%88%e6%94%bb%e6%93%8a%e7%9f%a5%e5%90%8d%e4%bc%81%e6%a5%ad%e7%9a%84%e3%80%8c%e9%9b%99%e9%87%8d%e5%8b%92%e7%b4%a2%e3%80%8degregor%e5%8b%92%e7%b4%a2%e7%97%85%e6%af%92%e4%b8%8d%e5%8f%aa%e5%8a%a0","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=66669","title":{"rendered":"\u5c08\u653b\u64ca\u77e5\u540d\u4f01\u696d\u7684\u300c\u96d9\u91cd\u52d2\u7d22\u300dEgregor\u52d2\u7d22\u75c5\u6bd2\u4e0d\u53ea\u52a0\u5bc6\u8cc7\u6599,\u9084\u6703\u4e3b\u52d5\u901a\u77e5\u5a92\u9ad4,\u8b93\u88ab\u99ed\u4f01\u696d\u6d88\u606f\u66dd\u5149"},"content":{"rendered":"\n<p><\/p>\n\n\n\n<p>Egregor\u662f\u4e00\u7a2e\u8907\u96dc\u7684<a href=\"http:\/\/blog.trendmicro.com.tw\/?p=12412\">\u52d2\u7d22\u75c5\u6bd2 Ransomware<\/a> (\u52d2\u7d22\u8edf\u9ad4\/\u7d81\u67b6\u75c5\u6bd2)\uff0c\u57282020\u5e749\u6708\u9996\u6b21\u51fa\u73fe\uff0c\u63a5\u8457\u53c3\u8207\u8a31\u591a\u77e5\u540d\u7684\u653b\u64ca\uff0c\u76ee\u6a19\u5305\u62ec\u4e86\u5927\u578b\u96f6\u552e\u696d\u8005\u53ca\u5176\u4ed6\u7d44\u7e54\u3002<\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/www.trendmicro.com\/content\/dam\/trendmicro\/global\/en\/research\/20\/l\/egregor-ransomware-launches-string-of-high-profile-attacks-to-end-2020--\/Egregor-641.png\" alt=\"\"\/><\/figure>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>\u57282020\u5e74\u5e95\uff0cMaze\u52d2\u7d22\u75c5\u6bd2\uff08\u8fd1\u671f\u6700\u60e1\u540d\u662d\u5f70\u7684\u52d2\u7d22\u75c5\u6bd2\u5bb6\u65cf\u4e4b\u4e00\uff09\u80cc\u5f8c\u7d44\u7e54\u5ba3\u5e03<a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/maze-ransomware-is-shutting-down-its-cybercrime-operation\/\">\u95dc\u9589\u904b\u4f5c<\/a>\u3002\u4e0d\u904e\u5c31\u5728Maze\u9000\u5f79\u5f8c\u4e0d\u4e45\uff0c\u88ab\u7a31\u70baEgregor\u7684\u52d2\u7d22\u75c5\u6bd2\u5c31\u8ddf\u8457\u63a5\u73ed\uff0c\u64da\u7a31\u5df2\u6210\u70ba\u4e4b\u524dMaze\u52d2\u7d22\u75c5\u6bd2\u806f\u76df\u5925\u4f34,\u7e7c\u7e8c\u99ed\u4eba\u7684\u9996\u9078\u52d2\u7d22\u75c5\u6bd2\u3002Egregor\u8ddfMaze\u4e00\u6a23\u4f7f\u7528\u4e86\u300c\u96d9\u91cd\u52d2\u7d22\u300d\u6280\u8853\uff0c\u99ed\u5ba2\u4e0d\u50c5\u5a01\u8105\u53d7\u5bb3\u8005\u4e0d\u652f\u4ed8\u8d16\u91d1\u5c07\u6703\u5931\u53bb\u8cc7\u6599\uff0c\u800c\u4e14\u9084\u6703\u516c\u958b\u5176\u8cc7\u6599\u3002<br><br>&#x25fc;2021\/1\/8 \u66f4\u65b0:<a rel=\"noreferrer noopener\" href=\"https:\/\/assets.documentcloud.org\/documents\/20444693\/fbi-pin-egregor-ransomware-bc-01062021.pdf\" target=\"_blank\">\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\uff08FBI\uff09\u5c0d\u4f01\u696d\u767c\u51fa\u8b66\u544a<\/a>\uff0c\u8981\u7576\u5fc3 Egregor \u52d2\u7d22\u8edf\u9ad4\u3002<\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u4f7f\u7528<a href=\"https:\/\/www.recordedfuture.com\/egregor-ransomware-attacks\/\">\u5148\u9032\u7684\u6df7\u6dc6\u6280\u8853<\/a> \u7684Egregor<\/strong><\/h3>\n\n\n\n<p><br>Egregor\u662f\u4e00\u7a2e\u8907\u96dc\u7684\u52d2\u7d22\u75c5\u6bd2\uff0c\u57282020\u5e749\u6708\u9996\u6b21\u51fa\u73fe\uff0c\u63a5\u8457\u53c3\u8207\u8a31\u591a\u77e5\u540d\u7684\u653b\u64ca\uff0c\u76ee\u6a19\u5305\u62ec\u4e86\u5927\u578b\u96f6\u552e\u696d\u8005\u53ca\u5176\u4ed6\u7d44\u7e54\u3002<\/p>\n\n\n\n<p>2020 \u5e74\u5e95\u667a\u5229\u6700\u5927\u96f6\u552e\u96c6\u5718 Cencosud \u906d\u5230 Egregor \u52d2\u7d22\uff0c\u6536\u9280\u6a5f\u6a94\u6848\u88ab\u52a0\u5bc6\u5f8c\uff0c\u9084\u4e0d\u65b7\u5370\u51fa\u52d2\u7d22\u8a0a\u606f\u3002(\u5982\u4e0b\u5716)<\/p>\n\n\n\n<blockquote class=\"twitter-tweet\"><p lang=\"es\" dir=\"ltr\">El <a href=\"https:\/\/twitter.com\/hashtag\/ransomware?src=hash&amp;ref_src=twsrc%5Etfw\">#ransomware<\/a> que le peg\u00f3 a Cencosud es <a href=\"https:\/\/twitter.com\/hashtag\/Egregor?src=hash&amp;ref_src=twsrc%5Etfw\">#Egregor<\/a>. La ransom note empez\u00f3 a salir en las impresoras de varios locales de Argentina y Chile <a href=\"https:\/\/t.co\/k1Ps4IDUyq\">pic.twitter.com\/k1Ps4IDUyq<\/a><\/p>\u2014 Irlenys (@Irlenys) <a href=\"https:\/\/twitter.com\/Irlenys\/status\/1327784305465188353?ref_src=twsrc%5Etfw\">November 15, 2020<\/a><\/blockquote> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n\n\n\n\n\n<p>\u9019\u96bb\u52d2\u7d22\u75c5\u6bd2\u901a\u5e38\u6703\u8ddfQAKBOT\u4e4b\u985e\u7684\u9060\u7aef\u8a2a\u554f\u6728\u99ac\uff08RAT\uff09<a href=\"https:\/\/digital.nhs.uk\/cyber-alerts\/2020\/cc-3681\">\u4e00\u8d77\u6d3e\u9001<\/a>\u3002\u800cQAKBOT\u4e4b\u524d\u4e5f\u88ab\u767c\u73fe\u8ddfMegaCortex\u548cProLock\u52d2\u7d22\u75c5\u6bd2\u5bb6\u65cf\u6709\u95dc\uff0c\u9019\u986f\u793aQAKBOT\u548cEgregor\u9593\u53ef\u80fd\u5b58\u5728\u5408\u4f5c\u95dc\u4fc2\uff0c\u6216\u8005\u662fQAKBOT\u7d44\u7e54\u7684\u65b0\u75c5\u6bd2\u3002<\/p>\n\n\n\n<p>\u8ddf Ryuk \u7b49\u65b0\u578b\u52d2\u7d22\u75c5\u6bd2\u5bb6\u65cf\u4f7f\u7528\u7684\u96d9\u91cd\u52d2\u7d22\u6280\u8853\u985e\u4f3c\uff0cEgregor \u5a01\u8105\u8981\u516c\u958b\u88ab\u7aca\u8cc7\u6599\u4f86\u8feb\u4f7f\u53d7\u5bb3\u8005\u4ed8\u6b3e\u3002\u9664\u4e86\u52a0\u5bc6\u8cc7\u6599\u5916\uff0cEgregor\u5e55\u5f8c\u99ed\u5ba2\u4e5f\u5a01\u8105\u8981\u901a\u77e5\u5a92\u9ad4\uff0c\u4f86\u516c\u958b\u4f01\u696d\u906d\u53d7\u5165\u4fb5\u7684\u6d88\u606f\u3002<\/p>\n\n\n\n<!--more-->\n\n\n\n<p>\u5f9e\u8868\u9762\u4e0a\u770b\uff0cEgregor\u4f3c\u4e4e\u662f<a href=\"https:\/\/www.zdnet.com\/article\/as-maze-ransomware-group-retires-clients-turn-to-sekhmet-ransomware-spin-off-egregor\/\">Sekhmet\u52d2\u7d22\u75c5\u6bd2\u7684\u8907\u88fd\u54c1<\/a>\uff0c\u56e0\u70ba\u5b83\u5171\u4eab\u4e86\u5927\u591a\u6578\u7a0b\u5f0f\u78bc\u548c\u884c\u70ba\uff0c\u5176\u4e2d\u6700\u503c\u5f97\u6ce8\u610f\u7684\u662f\u5176\u6df7\u6dc6\u6280\u8853\u3001\u529f\u80fd\u53caAPI\u547c\u53eb\u548c\u5b57\u4e32\u3002\u6b64\u5916\uff0c\u8ddfSekhmet\u4e00\u6a23\uff0c\u5b83\u4e5f\u6703\u7d66\u6bcf\u500b\u6a94\u6848\u52a0\u4e0a\u96a8\u6a5f\u526f\u6a94\u540d\u3002\u4e0d\u904e\u8003\u616e\u5230\u5169\u8005\u4f7f\u7528\u8cc7\u6599\u5916\u6d29\u7db2\u7ad9\u9593\u7684\u4e0d\u540c\uff0cEgregor\u548cSekhmet \u53ef\u80fd\u662f\u7531\u5b8c\u5168\u4e0d\u540c\u7684\u5718\u9ad4\u64cd\u4f5c\u3002<\/p>\n\n\n\n<p>\u5118\u7ba1\u6c92\u6709Egregor\u4e00\u958b\u59cb\u5982\u4f55\u9032\u5165\u4f01\u696d\u5167\u90e8\u7684\u5177\u9ad4\u8cc7\u8a0a\uff0c\u4f46\u5f88\u53ef\u80fd\u662f\u7528\u8ddf\u5176\u4ed6\u91dd\u5c0d\u6027\u52d2\u7d22\u75c5\u6bd2\u76f8\u4f3c\u7684\u6280\u8853\uff0c\u5982RDP\u5165\u4fb5\uff0c\u5165\u4fb5\u7db2\u7ad9\u6216\u88ab\u7aca\u5e33\u865f\u3002<\/p>\n\n\n\n<p>Egregor\u7684\u7279\u5fb5\u4e4b\u4e00\u662f\u4f7f\u7528<a href=\"https:\/\/www.recordedfuture.com\/egregor-ransomware-attacks\/\">\u5148\u9032\u7684\u6df7\u6dc6\u6280\u8853<\/a>\uff0c\u5b83\u9700\u8981\u7528\u7279\u5b9a\u53c3\u6578\u4f86\u89e3\u5bc6\u6709\u6548\u8ca0\u8f09\uff0c\u56e0\u6b64\u5982\u679c\u6c92\u6709\u8a72\u53c3\u6578\uff0c\u5f88\u96e3\u5c0d\u52d2\u7d22\u75c5\u6bd2\u8b8a\u7a2e\u9032\u884c\u975c\u614b\u6216\u52d5\u614b\u5206\u6790\u3002<\/p>\n\n\n\n<p>\u6839\u64da Egregor \u7684\u52d2\u8d16\u901a\u77e5\uff0c\u53d7\u5bb3\u8005\u652f\u4ed8\u8d16\u91d1\u4e0d\u50c5\u80fd\u5920\u8b93\u8cc7\u6599\u89e3\u5bc6\u3002\u653b\u64ca\u8005\u9084\u6703\u63d0\u4f9b\u5efa\u8b70\u4f86\u78ba\u4fdd\u516c\u53f8\u7db2\u8def\u7684\u5b89\u5168\u3002<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"\" alt=\"Figure 1. Egregor ransom note\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/www.trendmicro.com\/content\/dam\/trendmicro\/global\/en\/research\/20\/l\/egregor-ransomware-launches-string-of-high-profile-attacks-to-end-2020--\/egregor-1.jpg\" alt=\"\u57161. Egregor\u52d2\u8d16\u901a\u77e5\"\/><figcaption>\u57161. Egregor\u52d2\u8d16\u901a\u77e5<\/figcaption><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>\u4e0b\u5716\u662f\u5176\u653b\u64ca\u93c8\u7684\u7c21\u5316\u7248\u672c\uff1a<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"\" alt=\"Figure 2. Egregor attack chain\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/www.trendmicro.com\/content\/dam\/trendmicro\/global\/en\/research\/20\/l\/egregor-ransomware-launches-string-of-high-profile-attacks-to-end-2020--\/Egregor-2.png\" alt=\"\u57162. Egregor\u653b\u64ca\u93c8\"\/><figcaption>\u57162. Egregor\u653b\u64ca\u93c8<\/figcaption><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u9664\u4e86\u96f6\u552e\u696d\u8005\/<\/strong><strong>\u66f8\u5e97,<\/strong><strong>\u6700\u8fd1\u7684\u9084\u653b\u64ca\u904a\u6232\u548c\u4eba\u529b\u8cc7\u6e90\u884c\u696d<\/strong><\/h3>\n\n\n\n<p><br>\u8a31\u591aEgregor\u653b\u64ca\u90fd\u662f\u91dd\u5c0d\u9ad8\u77e5\u540d\u5ea6\u7684\u76ee\u6a19\uff0c\u5305\u62ec\u572810\u6708\u653b\u64ca\u4e00\u5bb6\u77e5\u540d\u66f8\u5e97\u548c12\u6708\u653b\u64ca\u4e00\u5bb6\u5927\u578b\u96f6\u552e\u696d\u8005\u3002\u5728\u524d\u8005\uff0cEgregor\u52d2\u7d22\u75c5\u6bd2\u7d44\u7e54\u8072\u7a31<a href=\"https:\/\/threatpost.com\/egregor-responsibility-barnes-noble\/160401\/\">\u6536\u96c6\u4e86\u672a\u52a0\u5bc6\u7684\u8ca1\u52d9\u548c\u7a3d\u6838\u8cc7\u6599<\/a>\uff0c\u5118\u7ba1\u78ba\u5207\u7684\u88ab\u7aca\u8cc7\u6599\u6027\u8cea\u5c1a\u4e0d\u6e05\u695a\u3002<\/p>\n\n\n\n<p>Egregor\u9084\u6703\u5217\u5370\u52d2\u8d16\u901a\u77e5\u3002\u6839\u64da\u6211\u5011\u7684\u5206\u6790\uff0c\u4e26\u975e\u662f\u99ed\u5ba2\u6709\u610f\u53bb<a href=\"https:\/\/www.tripwire.com\/state-of-security\/security-data-protection\/egregor-ransomware-strikes-metro-vancouvers-translink\/\">\u5217\u5370\u52d2\u8d16\u901a\u77e5<\/a>\u3002\u9019\u61c9\u8a72\u662f\u52d2\u7d22\u75c5\u6bd2\u52a0\u5bc6\u52d5\u4f5c\u6240\u9020\u6210\uff0c\u5b83\u6703\u679a\u8209\u4efb\u4f55\u985e\u578b\u7684\u7db2\u8def\u8cc7\u6e90\uff08\u5305\u62ec\u5370\u8868\u6a5f\u8cc7\u6e90\uff09\u3002\u63a5\u8457\u5b83\u6703\u9023\u63a5\u7db2\u8def\u8cc7\u6e90\u4f86\u52a0\u5bc6\u6a94\u6848\u4e26\u690d\u5165\u52d2\u8d16\u901a\u77e5\u3002\u6709\u53ef\u80fd\u662f\u56e0\u70ba\u5370\u8868\u6a5f\u548c\u92b7\u552e\u7aef\u9ede\uff08POS\uff09\u6a5f\u5668\u9023\u63a5\u53d7\u611f\u67d3\u96fb\u8166\uff0c\u5f9e\u800c\u5c0e\u81f4\u52d2\u8d16\u901a\u77e5\u88ab\u5217\u5370\u3002<\/p>\n\n\n\n<p>Egregor\u6700\u8fd1\u7684\u53d7\u5bb3\u8005\u9084\u5305\u62ec\u4e86\u904a\u6232\u548c\u4eba\u529b\u8cc7\u6e90\u884c\u696d\u7684\u4e3b\u8981\u4f01\u696d\u3002<\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u5982\u4f55\u6700\u5c0f\u5316 Egregor \u53ca\u5176\u4ed6\u52d2\u7d22\u75c5\u6bd2\u7684\u5f71\u97ff\uff1f<\/strong><\/h3>\n\n\n\n<p><br>\u96d6\u7136\u76ee\u524d\u4ecd\u6c92\u6709\u5177\u9ad4\u8b49\u64da\u986f\u793aEgregor\u4e00\u958b\u59cb\u662f\u5982\u4f55\u9032\u5165\u5167\u90e8\u7cfb\u7d71\uff0c\u4f46\u5df2\u77e5Maze\u7b49\u5176\u4ed6\u52d2\u7d22\u75c5\u6bd2\u6703\u5229\u7528\u6f0f\u6d1e\u4f86\u9032\u884c\u653b\u64ca\u3002\u6240\u4ee5\u91cd\u8981\u7684\u662f\u4f01\u696d\u9700\u8981\u4fee\u88dc\u548c\u66f4\u65b0\u7cfb\u7d71\u8edf\u9ad4\u4f86\u89e3\u6c7a\u53ef\u80fd\u88ab\u5229\u7528\u7684\u6f0f\u6d1e\u3002\u6b64\u5916\u4e5f\u5efa\u8b70\u4f01\u696d\u8981\u4fdd\u6301\u96fb\u8166\u548c\u7cfb\u7d71\u66f4\u65b0\uff0c\u9632\u6b62\u9019\u985e\u60c5\u6cc1\u767c\u751f\u3002<\/p>\n\n\n\n<p>\u4f01\u696d\u9084\u61c9\u8a72\u5b9a\u671f\u5c0d\u7cfb\u7d71\u9032\u884c\u5b89\u5168\u7a3d\u6838\u4f86\u78ba\u4fdd\u76e1\u53ef\u80fd\u5730\u53d7\u5230\u5b89\u5168\u9632\u8b77\u3002\u53ea\u8981\u53ef\u4ee5\uff0c\u516c\u53f8\u8cc7\u6599\u61c9\u8a72\u5b9a\u671f\u9032\u884c\u5099\u4efd\uff0c\u6700\u597d\u662f\u9075\u5faa<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=52832\">3-2-1 \u5099\u4efd\u539f\u5247<\/a><\/p>\n\n\n\n<p>\uff0c\u4e5f\u5c31\u662f\u4ee5\u5169\u7a2e\u4e0d\u540c\u683c\u5f0f\u5132\u5b58\u4e09\u4efd\u526f\u672c\uff0c\u4e26\u4e14\u81f3\u5c11\u6709\u4e00\u4efd\u5132\u5b58\u5728\u7570\u5730\u3002<\/p>\n\n\n\n<p>\u540c\u6642\uff0c\u61c9\u8a72\u70ba\u54e1\u5de5\u9032\u884c\u9069\u7576\u7684\u6559\u80b2\u8a13\u7df4\uff0c\u8b93\u4ed6\u5011\u4e86\u89e3\u7db2\u8def\u5b89\u5168\u7684\u6700\u4f73\u5be6\u4f5c\uff0c\u5c24\u5176\u662f\u95dc\u65bc\u52d2\u7d22\u75c5\u6bd2\u5e38\u7528\u4f86\u4fb5\u5165\u4f01\u696d\u7684\u65b9\u6cd5\uff0c\u5982<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=57421\">\u96fb\u5b50\u90f5\u4ef6\u76f8\u95dc\u653b\u64ca<\/a>\u548c\u5165\u4fb5\u7db2\u7ad9\u3002<\/p>\n\n\n\n<p>\u60f3\u5c0d\u52d2\u7d22\u75c5\u6bd2\u505a\u5230\u66f4\u5f37\u5927\u3001\u66f4\u4e3b\u52d5\u7684\u9632\u79a6\uff0c\u6211\u5011\u5efa\u8b70\u4f7f\u7528\u4e0b\u5217\u8da8\u52e2\u79d1\u6280\u89e3\u6c7a\u65b9\u6848\uff1a<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/t.rend.tw\/?i=Nzk0NA\">\u8da8\u52e2\u79d1\u6280XDR for Users<\/a><strong>\u61c9\u7528\u4eba\u5de5\u667a\u6167\uff08AI\uff09\u548c\u5206\u6790\u529f\u80fd\uff0c\u80fd\u5920\u65e9\u671f\u5075\u6e2c\u7aef\u9ede\u53ca\u7cfb\u7d71\u5404\u9632\u8b77\u5c64\u9593\u7684\u60e1\u610f\u5a01\u8105\u3002<\/strong><\/li><\/ul>\n\n\n\n<ul><li><a href=\"https:\/\/www.trendmicro.com\/zh_tw\/business\/products\/user-protection\/sps\/endpoint.html\">\u8da8\u52e2\u79d1\u6280Apex One<\/a><strong>\u63d0\u4f9b\u53ef\u63a1\u53d6\u884c\u52d5\u7684\u5206\u6790\uff0c\u66f4\u8c50\u5bcc\u7684\u8abf\u67e5\u529f\u80fd\u4ee5\u53ca\u5c0d\u6574\u500b\u7db2\u8def\u7684\u96c6\u4e2d\u638c\u63e1\u80fd\u529b\u3002<\/strong><\/li><li>\u8da8\u52e2\u79d1\u6280 <a href=\"https:\/\/www.trendmicro.com\/zh_tw\/business\/products\/user-protection\/sps\/email-and-collaboration\/email-inspector.html\">Deep Discovery Email Inspector <\/a><strong>\u900f\u904e\u5ba2\u88fd\u5316\u6c99\u7bb1\u53ca\u5176\u4ed6\u5075\u6e2c\u6280\u8853\u4f86\u5075\u6e2c\u3001\u5c01\u9396\u548c\u5206\u6790\u60e1\u610f\u90f5\u4ef6\u9644\u4ef6\u6a94<\/strong>\u3002<\/li><\/ul>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>@\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/www.trendmicro.com\/en_us\/research\/20\/l\/egregor-ransomware-launches-string-of-high-profile-attacks-to-en.html\">Egregor  \u00a0Ransomware<\/a> <a href=\"https:\/\/www.trendmicro.com\/en_us\/research\/20\/l\/egregor-ransomware-launches-string-of-high-profile-attacks-to-en.html\">Launches String of High-Profile Attacks to End 2020<\/a><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>&#x25fe;\u5ef6\u4f38\u95b1\u8b80:<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=66507\">\u52d2\u7d22\u75c5\u6bd2\u653b\u64ca\u5982\u4f55\u5c0d\u96f6\u552e\u696d\u9020\u6210\u5f71\u97ff?<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Egregor\u662f\u4e00\u7a2e\u8907\u96dc\u7684\u52d2\u7d22\u75c5\u6bd2 Ransomware (\u52d2\u7d22\u8edf\u9ad4\/\u7d81\u67b6\u75c5\u6bd2)\uff0c\u57282020\u5e749\u6708\u9996\u6b21\u51fa\u73fe\uff0c\u63a5 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[1268,2266],"tags":[4721,4179],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/66669"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=66669"}],"version-history":[{"count":8,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/66669\/revisions"}],"predecessor-version":[{"id":66793,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/66669\/revisions\/66793"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=66669"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=66669"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=66669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}