{"id":75827,"date":"2023-01-10T09:00:00","date_gmt":"2023-01-10T01:00:00","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=75827"},"modified":"2022-12-21T17:30:38","modified_gmt":"2022-12-21T09:30:38","slug":"%e5%9b%9b%e7%a8%ae%e7%b6%b2%e8%b7%af%e7%8a%af%e7%bd%aa%e9%9b%86%e5%9c%98","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=75827","title":{"rendered":"\u56db\u7a2e\u7db2\u8def\u72af\u7f6a\u96c6\u5718"},"content":{"rendered":"\n<h1 class=\"wp-block-heading\"><\/h1>\n\n\n\n<p>\u672c\u6587\u63a2\u8a0e\u7576\u4eca\u6700\u4e3b\u8981\u7684\u56db\u7a2e\u7db2\u8def\u72af\u7f6a\u96c6\u5718\uff1a\u5b58\u53d6\u670d\u52d9\u3001\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9\u3001\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\uff0c\u4ee5\u53ca\u7fa4\u773e\u5916\u5305\uff0c\u4e26\u63d0\u4f9b\u4e00\u4e9b\u5354\u52a9\u60a8\u5f37\u5316\u9632\u79a6\u7b56\u7565\u7684\u7955\u8a23\u3002<\/p>\n\n\n\n<p>\u6240\u8b02\u300c\u773e\u5fd7\u6210\u57ce\u300d\uff0c\u540c\u6a23\u7684\u9053\u7406\u4e5f\u9069\u7528\u65bc\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u3002\u70ba\u4e86\u63d0\u9ad8\u7db2\u8def\u653b\u64ca\u7684\u6210\u529f\u7387\uff0c\u5c08\u7cbe\u4e0d\u540c\u9818\u57df\u7684\u99ed\u5ba2\u96c6\u5718\u5df2\u7d93\u958b\u59cb\u806f\u5408\u8d77\u4f86\u7d44\u6210\u6240\u8b02\u7684\u300c\u7db2\u8def\u72af\u7f6a\u670d\u52d9\u300d(Cybercrime as a Service\uff0cCaaS)\u3002<\/p>\n\n\n\n<p>\u6211\u5011\u770b\u5230\u99ed\u5ba2\u5011\u6b63\u958b\u59cb\u5206\u5de5\u5408\u4f5c\uff0c\u5404\u81ea\u8ca0\u8cac\u6574\u500b\u653b\u64ca\u7a0b\u5e8f\u7684\u4e0d\u540c\u968e\u6bb5\u3002\u9019\u610f\u5473\u8457\uff0c\u6211\u5011\u5c07\u770b\u5230\u99ed\u5ba2\u66f4\u5c11\u56e0\u70ba\u72af\u932f\u800c\u88ab\u902e\u5230\uff0c\u6b64\u5916\u4e5f\u9810\u6599\uff0c\u5728\u4e00\u500b\u53d7\u611f\u67d3\u7684\u7db2\u8def\u7576\u4e2d\uff0c\u5c07\u51fa\u73fe\u591a\u500b\u72af\u7f6a\u96c6\u5718\u540c\u6642\u5b58\u5728\u7684\u60c5\u6cc1\u3002<\/p>\n\n\n\n<p>\u76ee\u524d\uff0cCaaS \u5927\u81f4\u4e0a\u53ef\u7d30\u5206\u6210\u56db\u7a2e\uff1a<\/p>\n\n\n\n<ul>\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/k\/cyber-crime-group-types.html#access\">\u5b58\u53d6\u670d\u52d9<\/a><\/strong><\/li>\n\n\n\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/k\/cyber-crime-group-types.html#ransomware\">\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9<\/a><\/strong><\/li>\n\n\n\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/k\/cyber-crime-group-types.html#bulletproof\">\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1<\/a><\/strong><\/li>\n\n\n\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/k\/cyber-crime-group-types.html#crowdsourcing\">\u7fa4\u773e\u5916\u5305<\/a><\/strong><\/li>\n<\/ul>\n\n\n\n<p>\u82e5\u5f9e\u4e8b\u4ef6\u56de\u61c9\u5718\u968a\u7684\u89d2\u5ea6\u4f86\u770b\uff0c\u9019\u610f\u5473\u8457\u4ed6\u5011\u5fc5\u9808\u627e\u51fa\u6574\u8d77\u653b\u64ca\u7576\u4e2d\u8ca0\u8cac\u57f7\u884c\u4e0d\u540c\u968e\u6bb5\u7684\u4e0d\u540c\u99ed\u5ba2\u96c6\u5718\uff0c\u9019\u5c07\u4f7f\u5f97\u653b\u64ca\u7684\u5075\u6e2c\u53ca\u6514\u622a\u8b8a\u5f97\u66f4\u96e3\u3002\u6240\u4ee5\uff0c\u5982\u679c\u80fd\u5920\u638c\u63e1\u99ed\u5ba2\u5e38\u7528\u7684\u624b\u6cd5\u3001\u6280\u5de7\u8207\u7a0b\u5e8f (TTP)\uff0c\u5c07\u6709\u5e6b\u52a9\u65bc\u8cc7\u5b89\u9577 (CISO) \u548c\u8cc7\u5b89\u9818\u5c0e\u4eba\u5f37\u5316\u7db2\u8def\u8cc7\u5b89\u7b56\u7565\u4e26\u964d\u4f4e\u98a8\u96aa\u3002<\/p>\n\n\n\n<!--more-->\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u7684\u985e\u578b<\/strong><\/h3>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p><strong>1.\u5b58\u53d6\u670d\u52d9<\/strong><\/p>\n\n\n\n<p>\u8da8\u52e2\u79d1\u6280\u7814\u7a76\u6a5f\u69cb Trend Micro Research \u5206\u6790\u4e86\u4e00\u7a2e\u540d\u70ba\u300c<a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/news\/cybercrime-and-digital-threats\/investigating-the-emerging-access-as-a-service-market\">\u5b58\u53d6\u670d\u52d9<\/a>\u300d(Access as a Service\uff0c\u7c21\u7a31 AaaS) \u7684\u5730\u4e0b\u5546\u696d\u6a21\u5f0f\uff0c\u9019\u662f\u4e00\u7a2e\u5c08\u9580\u8ca9\u552e\u4f01\u696d\u7db2\u8def\u5b58\u53d6\u6b0a\u9650\u7684\u7db2\u8def\u72af\u7f6a\u670d\u52d9\u3002<\/p>\n\n\n\n<p>AaaS \u4e3b\u8981\u662f\u7531\u4e00\u4e9b\u500b\u4eba\u99ed\u5ba2\u6216\u99ed\u5ba2\u96c6\u5718\u5229\u7528\u5404\u7a2e\u65b9\u6cd5\u99ed\u5165\u4f01\u696d\u7db2\u8def\u4e26\u8490\u96c6\u5b58\u53d6\u6b0a\u9650\u4e4b\u5f8c\uff0c\u5c07\u5b58\u53d6\u6b0a\u9650\u62ff\u51fa\u4f86\u8ca9\u552e\u7684\u4e00\u7a2e\u670d\u52d9\u3002AaaS \u7684\u8ce3\u5bb6\u4e3b\u8981\u6709\u4e09\u985e\uff1a<\/p>\n\n\n\n<ol type=\"1\" start=\"1\">\n<li><strong>\u6295\u6a5f\u7684\u99ed\u5ba2\uff1a\u770b\u5230\u5e02\u5834\u51fa\u73fe\u9019\u6a23\u7684\u9700\u6c42\uff0c\u6240\u4ee5\u5c31\u6c7a\u5b9a\u4f86\u5206\u4e00\u676f\u7fb9\u3002<\/strong><\/li>\n\n\n\n<li><strong>\u5c08\u696d\u7684\u8ce3\u5bb6\uff1a\u4ed6\u5011\u7684\u5168\u8077\u5de5\u4f5c\u5c31\u662f\u8490\u96c6\u548c\u8ca9\u8ce3\u9019\u985e\u5b58\u53d6\u6b0a\u9650\uff0c\u4ed6\u5011\u751a\u81f3\u6703\u5ba3\u50b3\u81ea\u5df1\u7684\u670d\u52d9\uff0c\u4e26\u900f\u904e\u5ee3\u5927\u7684\u92b7\u552e\u7db2\u8def\u4f86\u8ca9\u552e\u3002<\/strong><\/li>\n\n\n\n<li><strong>\u7dda\u4e0a\u5546\u5e97\uff1a\u9019\u985e\u5546\u5e97\u901a\u5e38\u53ea\u4fdd\u8b49\u80fd\u5920\u9032\u5165\u67d0\u53f0\u96fb\u8166\uff0c\u800c\u975e\u6574\u500b\u4f01\u696d\u6216\u7db2\u8def\u3002<\/strong><\/li>\n<\/ol>\n\n\n\n<p>\u9019\u7576\u4e2d\u6700\u503c\u5f97\u64d4\u5fc3\u7684\u662f\u5c08\u9580\u76dc\u53d6\u7db2\u8def\u5b58\u53d6\u6b0a\u9650\u7136\u5f8c\u8ce3\u7d66\u5176\u4ed6\u99ed\u5ba2\u4f7f\u7528\u7684\u96c6\u5718\uff0c\u56e0\u70ba\u4ed6\u5011\u6240\u63d0\u4f9b\u7684\u5b58\u53d6\u6b0a\u9650\u901a\u5e38\u6bd4\u8f03\u53ef\u9760\uff0c\u4e26\u4e14\u4fdd\u8b49\u8cb7\u5bb6\u4e00\u5b9a\u80fd\u5920\u9032\u5165\u7cfb\u7d71\u3002\u4e0d\u8ad6\u662f\u54ea\u4e00\u7a2e AaaS \u96c6\u5718\u5c0d\u4f01\u696d\u90fd\u5f88\u9ebb\u7169\uff0c\u4f46\u5f8c\u8005\u80af\u5b9a\u66f4\u70ba\u68d8\u624b\uff0c\u56e0\u70ba\u4f01\u696d\u6703\u5f88\u96e3\u767c\u73fe\u4ed6\u5011\u662f\u5982\u4f55\u7a81\u7834\u4f01\u696d\u7684\u9632\u7dda\u3002<\/p>\n\n\n\n<p>\u5ef6\u4f38\u95b1\u8b80\uff1a<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=71956\">\u7d44\u7e54\u578b\u7db2\u8def\u72af\u7f6a\u6848\u4f8b\uff1aCISO \u8a72\u77e5\u9053\u4e9b\u4ec0\u9ebc<\/a>?<\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p><strong>2.\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9<\/strong><\/p>\n\n\n\n<p>\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9 (Ransomware as a Service\uff0c\u7c21\u7a31 RaaS) \u662f\u52d2\u7d22\u75c5\u6bd2\u653b\u64ca\u4e00\u76f4\u6b77\u4e45\u4e0d\u8870\u7684\u539f\u56e0\u4e4b\u4e00\uff0c\u9019\u985e\u670d\u52d9\u63d0\u4f9b\u4e86\u5fc5\u8981\u7684\u5de5\u5177\u548c\u6280\u5de7\u8b93\u4e00\u4e9b\u6280\u8853\u80fd\u529b\u8f03\u5dee\u7684\u72af\u7f6a\u96c6\u5718\u80fd\u5c0d\u5927\u578b\u4f01\u696d\u767c\u52d5\u653b\u64ca\u4f86\u7d22\u53d6\u9245\u984d\u8d16\u91d1\uff0c\u4f8b\u5982 <a href=\"https:\/\/www.techtarget.com\/whatis\/feature\/SolarWinds-hack-explained-Everything-you-need-to-know\" target=\"_blank\" rel=\"noreferrer noopener\">SolarWinds<\/a> \u7684\u6848\u4f8b\u3002<\/p>\n\n\n\n<p>RaaS \u52d2\u7d22\u96c6\u5718\u5c31\u9760\u8457\u9019\u7a2e\u65b0\u767c\u73fe\u7684\u5546\u696d\u6a21\u5f0f\u5728 2022 \u5e74\u7b2c\u4e00\u5b63<a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/news\/ransomware-by-the-numbers\/lockbit-conti-and-blackcat-lead-pack-amid-rise-in-active-raas-and-extortion-groups-ransomware-in-q1-2022\">\u6210\u9577\u4e86 63.2%<\/a>\u3002\u6839\u64da\u8da8\u52e2\u79d1\u6280 <a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/research-and-analysis\/threat-reports\/roundup\/defending-the-expanding-attack-surface-trend-micro-2022-midyear-cybersecurity-report\">2022 \u4e0a\u534a\u5e74\u7db2\u8def\u8cc7\u5b89\u5831\u544a<\/a>\u767c\u73fe\uff0c2022 \u4e0a\u534a\u5e74\u6709\u8d85\u904e 50 \u500b\u6d3b\u8e8d\u7684 RaaS \u8207\u52d2\u7d22\u96c6\u5718\u7e3d\u5171\u8972\u64ca\u4e86 1,200 \u591a\u5bb6\u4f01\u696d\u6a5f\u69cb\u3002<\/p>\n\n\n\n<p>\u5176\u4e2d LockBit\u3001Conti \u548c Blackhat \u662f\u524d\u516d\u500b\u6708\u7576\u4e2d\u6700\u6d3b\u8e8d\u7684 RaaS \u96c6\u5718\uff0c\u4f46\u4e00\u4e9b\u65b0\u7684\u96c6\u5718 (\u5982 Black Basta \u548c SolidBit) \u4e5f\u5728\u6301\u7e8c\u6210\u9577\u3002<\/p>\n\n\n\n<p>\u5ef6\u4f38\u95b1\u8b80\uff1a<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=74348\">\u5982\u4f55\u9632\u7bc4\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9 (RaaS) \u7684\u653b\u64ca<\/a><\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p><strong>3.\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1<\/strong><\/p>\n\n\n\n<p>\u80fd\u5920\u62b5\u64cb\u4f7f\u7528\u8005\u8209\u5831\u8207\u57f7\u6cd5\u55ae\u4f4d\u6383\u8569\u7684\u7a69\u5b9a\u7db2\u7ad9\u4ee3\u7ba1\u670d\u52d9\uff0c\u5c0d\u65bc\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u80fd\u5426\u96b1\u5bc6\u800c\u9806\u66a2\u5730\u904b\u4f5c\u81f3\u95dc\u91cd\u8981\u3002<a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/news\/cybercrime-and-digital-threats\/inside-the-bulletproof-hosting-business-cybercrime-methods-opsec\">\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\u670d\u52d9<\/a>\u57fa\u672c\u4e0a\u5c31\u662f\u51fa\u79df\u7d66\u99ed\u5ba2\u8eb2\u85cf\u7684\u5834\u6240\uff0c\u99ed\u5ba2\u80fd\u5728\u4e0a\u9762\u5132\u5b58\u6a94\u6848\u4ee5\u53ca\u653b\u64ca\u884c\u52d5\u6240\u9700\u7684\u60e1\u610f\u7a0b\u5f0f\u3002<\/p>\n\n\n\n<p>Void Griffin \u662f\u7b2c\u4e00\u500b\u5728 2015 \u5e74\u958b\u59cb\u63d0\u4f9b\u5feb\u901f\u8b8a\u63db (fast-flux) \u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\u670d\u52d9\u7684\u96c6\u5718\uff0c\u4e00\u76f4\u53d7\u5230\u8a31\u591a\u4e0d\u540c APT \u96c6\u5718\u4ee5\u53ca\u4e0d\u5c11\u91cd\u8981\u60e1\u610f\u7a0b\u5f0f\u5bb6\u65cf\u7684\u9752\u775e\u3002<\/p>\n\n\n\n<p>\u5ef6\u4f38\u95b1\u8b80\uff1a<a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/news\/cybercrime-and-digital-threats\/looking-into-the-void-probing-a-top-bulletproof-hosting-service\">\u6df1\u5165\u8abf\u67e5 Void Griffon \u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\u670d\u52d9<\/a><\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p><strong>4.\u7fa4\u773e\u5916\u5305<\/strong><\/p>\n\n\n\n<p>\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u5df2\u7d93\u958b\u59cb\u63a1\u7528\u7fa4\u773e\u5916\u5305\u7684\u65b9\u5f0f\u4f5c\u70ba\u4ed6\u5011\u7684\u7814\u767c\u624b\u6bb5\uff0c\u85c9\u6b64\u767c\u6398\u65b0\u7684\u653b\u64ca\u624b\u6cd5\u3002\u9019\u7a2e\u76f8\u5c0d\u8f03\u65b0\u7684\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u5728\u904e\u53bb\u5169\u5e74\u8d8a\u4f86\u8d8a\u591a\u3002Trend Micro Research \u767c\u73fe\u60e1\u610f\u7a0b\u5f0f\u96c6\u5718\u5728\u5730\u4e0b\u5e02\u96c6\u8209\u8fa6\u4e86\u8a31\u591a\u516c\u958b\u7af6\u8cfd\u4f86\u5c0b\u627e\u4e00\u4e9b\u5168\u65b0\u3001\u6709\u5275\u610f\u7684\u653b\u64ca\u624b\u6cd5\u3002<\/p>\n\n\n\n<p>\u5176\u4e2d\u6709\u4e9b\u7af6\u8cfd\u662f\u70ba\u4e86\u6316\u6398\u4eba\u624d (\u6709\u9ede\u50cf\u300c\u7f8e\u570b\u597d\u8072\u97f3\u300d\u8207\u300c\u7f8e\u570b\u5076\u50cf\u300d\u7684\u6982\u5ff5)\uff0c\u4e0d\u904e\u9019\u7a2e\u8f03\u70ba\u7f55\u898b\u3002\u7d55\u5927\u591a\u6578\u7684\u7af6\u8cfd\u90fd\u662f\u70ba\u4e86\u6316\u6398\u77e5\u8b58\uff0c\u99ed\u5ba2\u8981\u7684\u662f\u6709\u95dc\u65b0\u5f0f\u653b\u64ca\u6280\u5de7\u3001\u6f0f\u6d1e\u4e4b\u985e\u7684\u6280\u8853\u6587\u7ae0\u3002\u7576\u7136\uff0c\u6700\u5f37\u6216\u6700\u6709\u5275\u610f\u7684\u624b\u6cd5\u53ef\u4ee5\u7372\u5f97\u4e00\u7b46\u76f8\u7576\u53ef\u89c0\u7684\u734e\u91d1\u3002\u9019\u985e\u7af6\u8cfd\u7684\u8b70\u984c\u901a\u5e38\u5f88\u5ee3\uff0c\u800c\u975e\u50c5\u9650\u65bc\u7279\u5b9a\u55ae\u4e00\u9818\u57df\u3002<\/p>\n\n\n\n<p>Trend Micro Research \u9810\u6e2c\u9019\u985e\u7fa4\u773e\u5916\u5305\u7684\u7af6\u8cfd\u6703\u8d8a\u4f86\u8d8a\u591a\uff0c\u4f7f\u5f97\u7db2\u8def\u72af\u7f6a\u5275\u65b0\u901f\u5ea6\u52a0\u5feb\u3002\u800c\u4e14\u9019\u6a23\u7684\u5275\u65b0\u4e5f\u4e0d\u4e00\u5b9a\u5fc5\u9808\u662f\u4ec0\u9ebc\u91cd\u5927\u767c\u73fe\uff0c\u5373\u4f7f\u662f\u4e00\u4e9b\u5c0f\u5c0f\u7684\u7a81\u7834\uff0c\u4e5f\u8db3\u4ee5\u8b93\u72af\u7f6a\u96c6\u5718\u907f\u958b\u4e00\u4e9b\u73fe\u6709\u7684\u9632\u79a6\u3002<\/p>\n\n\n\n<p>\u5ef6\u4f38\u95b1\u8b80\uff1a<a href=\"https:\/\/www.trendmicro.com\/vinfo\/tmr\/?\/us\/security\/news\/cybercrime-and-digital-threats\/from-bounty-to-exploit-cybercriminals-use-crowdsourcing-for-new-attacks\">\u5f9e\u61f8\u8cde\u5230\u653b\u64ca\uff1a\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u5229\u7528\u7fa4\u773e\u5916\u5305\u958b\u767c\u65b0\u653b\u64ca<\/a><\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u7db2\u8def\u8cc7\u5b89\u9632\u79a6\u7b56\u7565<\/strong><\/h3>\n\n\n\n<p><br>\u90a3\u9ebc\uff0c\u60a8\u8a72\u5982\u4f55\u61c9\u4ed8\u9019\u4e9b\u4e0d\u540c\u985e\u578b\u7684\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u5462\uff1f\u53ef\u60dc\uff0c\u4f01\u696d\u4e0d\u80fd\u76f4\u63a5\u8df3\u9032\u7db2\u8def\u72af\u7f6a\u5730\u4e0b\u5e02\u96c6\u4f86\u963b\u6b62\u7fa4\u773e\u5916\u5305\u884c\u70ba\u3002\u4e0d\u904e\u4f01\u696d\u5012\u662f\u53ef\u4ee5\u52aa\u529b\u9632\u7bc4\u6216\u9650\u5236\u5176\u6d3b\u52d5\uff0c\u5efa\u7acb\u4e00\u5957\u4ee5\u5075\u6e2c\u53ca\u9632\u7bc4\u99ed\u5ba2\u9996\u6b21\u5165\u4fb5\u70ba\u91cd\u5fc3\u7684\u7db2\u8def\u8cc7\u5b89\u9632\u79a6\u7b56\u7565\u3002<\/p>\n\n\n\n<p>\u60a8\u8d8a\u65e9\u5075\u6e2c\u5230\u9996\u6b21\u5165\u4fb5\u6d3b\u52d5\uff0c\u60a8\u5c31\u8d8a\u5bb9\u6613\u9632\u6b62\u653b\u64ca\u6f14\u8b8a\u5230\u5f8c\u7e8c\u968e\u6bb5\uff0c\u4f8b\u5982\u88ab\u99ed\u5ba2\u690d\u5165\u52d2\u7d22\u75c5\u6bd2\u3002\u4ee5\u4e0b\u662f\u60a8\u5728\u5efa\u7acb\u4e00\u5957\u6709\u6548\u7684\u8cc7\u5b89\u7b56\u7565\u6642\u53ef\u4ee5\u8003\u616e\u7d0d\u5165\u7684\u5e7e\u9805\u4f5c\u6cd5\uff1a<\/p>\n\n\n\n<p>1.<strong>\u8207\u5177\u5099\u5168\u7403\u5a01\u8105\u7814\u7a76\u80fd\u529b\u7684\u8cc7\u5b89\u5ee0\u5546\u5408\u4f5c\uff0c<\/strong>\u6301\u7e8c\u76e3\u63a7\u516c\u958b\u8cc7\u5b89\u4e8b\u4ef6\u8207\u72af\u7f6a\u5730\u4e0b\u5e02\u96c6\u4e0a\u7684\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\u670d\u52d9\u3002\u5982\u6b64\u80fd\u78ba\u4fdd\u60a8\u7684\u89e3\u6c7a\u65b9\u6848\u5177\u5099\u6700\u4f73\u5316\u9632\u79a6\u80fd\u529b\u4f86\u5c0d\u6297\u6700\u65b0\u5a01\u8105\u3002\u6b64\u5916\uff0c\u85c9\u7531\u4e3b\u52d5\u627e\u51fa\u4e26\u6514\u622a\u9019\u4e9b\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\u57fa\u790e\u67b6\u69cb\uff0c\u9632\u5b88\u7684\u4e00\u65b9\u5c31\u80fd\u5f9e\u6e90\u982d\u6514\u622a\u653b\u64ca\u3002<\/p>\n\n\n\n<p>2.<strong>\u63a1\u7528\u96f6\u4fe1\u4efb\u7db2\u8def\u9632\u8b77\uff0c<\/strong>\u5c0e\u5165<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=74059\"> SASE \u67b6\u69cb<\/a>\u3002SASE \u662f\u7531\u4e09\u7a2e\u4e0d\u540c\u9632\u8b77\u63aa\u65bd\u6240\u7d44\u6210\uff1a\u96f6\u4fe1\u4efb\u7db2\u8def\u5b58\u53d6 (ZTNA)\u3001\u5b89\u5168\u7db2\u7ad9\u9598\u9053 (SWG) \u4ee5\u53ca\u96f2\u7aef\u5b58\u53d6\u5b89\u5168\u4ee3\u7406 (CASB)\uff0c\u5b83\u80fd\u5f37\u5316\u6574\u9ad4\u53d7\u653b\u64ca\u9762\u7684\u9632\u8b77\u8207\u63a7\u7ba1\u80fd\u529b\u3002<\/p>\n\n\n\n<p>3.<strong>\u5236\u5b9a\u4e00\u5957<\/strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/i\/incident-response-services.html\">\u4e8b\u4ef6\u56de\u61c9 (IR) \u6559\u6230\u5b88\u5247<\/a>\uff0c\u767c\u6398\u4efb\u4f55\u53ef\u80fd\u7684\u8cc7\u5b89\u6f0f\u6d1e\u3002\u78ba\u8a8d\u60a8\u7684\u4e8b\u4ef6\u56de\u61c9 (IR) \u5718\u968a\u78ba\u5be6\u4e86\u89e3\u591a\u91cd\u99ed\u5ba2\u53ef\u80fd\u540c\u6642\u5b58\u5728\u7684\u60c5\u5883\uff0c\u4e26\u4e14\u77e5\u9053\u8a72\u5c07\u5fc3\u529b\u96c6\u4e2d\u5728\u54ea\u4e9b\u5730\u65b9\u3002<\/p>\n\n\n\n<p>4.<strong>\u5efa\u7acb<\/strong>&nbsp;<a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/h\/patch-management-process-best-practices.html\">\u5f37\u5927\u7684\u4fee\u88dc\u7ba1\u7406\u7b56\u7565<\/a>\u4f86\u7e2e\u5c0f\u6f0f\u6d1e\u653b\u64ca\u7bc4\u570d\uff0c\u5305\u542b\uff1a\u627e\u51fa\u6700\u76f8\u95dc\u7684\u4fee\u88dc\u66f4\u65b0\u3001\u5efa\u7acb\u4e00\u5957\u96f6\u6642\u5dee\u6f0f\u6d1e\u653b\u64ca\u61c9\u8b8a\u8a08\u756b\u3001\u8207\u5ee0\u5546\u4fdd\u6301\u5bc6\u5207\u9023\u7e6b\uff0c\u4ee5\u53ca\u5584\u7528\u865b\u64ec\u4fee\u88dc\u3002<\/p>\n\n\n\n<p>5.<strong>\u63a1\u7528\u503c\u5f97\u4fe1\u8cf4\u7684\u7db2\u8def\u8cc7\u5b89\u6846\u67b6<\/strong>\u4f86\u843d\u5be6<a href=\"https:\/\/gist.github.com\/technion\/65c652194fb1427e6828ea23ff46d280\" target=\"_blank\" rel=\"noreferrer noopener\">\u5bc6\u78bc\u6700\u4f73\u5be6\u52d9\u539f\u5247<\/a>\uff0c\u4f8b\u5982\uff1a\u7f8e\u570b\u570b\u5bb6\u6a19\u6e96\u8207\u6280\u8853\u5c40 (National Institute of Standards and Technology\uff0c\u7c21\u7a31 NIST) \u4ee5\u53ca\u6b50\u76df\u7db2\u8def\u8cc7\u5b89\u6a5f\u69cb (European Union Agency for Cybersecurity\uff0c\u7c21\u7a31 ENISA) \u7684\u898f\u7bc4\u3002\u6b64\u5916\uff0c<a href=\"https:\/\/www.cisecurity.org\/controls\/\" target=\"_blank\" rel=\"noreferrer noopener\">\u7db2\u969b\u7db2\u8def\u5b89\u5168\u4e2d\u5fc3<\/a>&nbsp; (Center of Internet Security\uff0c\u7c21\u7a31 CIS) \u4e5f\u91dd\u5c0d\u512a\u5148\u6b21\u5e8f\u5224\u65b7\u8207\u8cc7\u6e90\u7ba1\u7406\u63d0\u4f9b\u4e86\u5b8c\u5584\u7684\u6307\u5f15\uff0c\u5305\u62ec\u6d88\u9664\u4efb\u4f55\u99ed\u5ba2\u53ef\u80fd\u767c\u6398\u7684\u5f31\u9ede\u3002<\/p>\n\n\n\n<p>6.<strong>\u63a1\u7528\u4e00\u5957<\/strong>\u5177\u5099<a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/21\/l\/why-xdr-is-necessary-in-todays-attack-landscape.html\">XDR \u80fd\u529b<\/a>\u7684<a href=\"https:\/\/www.trendmicro.com\/zh_tw\/ciso\/22\/d\/attack-surface-management.html\">\u5168\u65b9\u4f4d\u7db2\u8def\u8cc7\u5b89\u5e73\u53f0<\/a>\u4f86\u5354\u52a9\u5f59\u6574\u548c\u4ea4\u53c9\u95dc\u806f\u4f86\u81ea\u7aef\u9ede\u3001\u96f2\u7aef\u3001\u7db2\u8def\u3001\u96fb\u5b50\u90f5\u4ef6\u7b49\u7b49\u7684\u5a01\u8105\u6d3b\u52d5\u8cc7\u6599\uff0c\u5f37\u5316\u53ef\u8996\u6027\u3002<\/p>\n\n\n\n<p>\u5982\u9700\u6709\u95dc\u7db2\u8def\u72af\u7f6a\u96c6\u5718\u985e\u578b\u4ee5\u53ca\u5982\u4f55\u5f37\u5316\u9632\u79a6\u7b56\u7565\u7684\u66f4\u591a\u8cc7\u8a0a\uff0c\u8acb\u53c3\u95b1\u4ee5\u4e0b\u6587\u7ae0\uff1a<\/p>\n\n\n\n<ul>\n<li><strong><a href=\"https:\/\/blog.trendmicro.com.tw\/?p=64580\">\u6df1\u5c64\u7db2\u8def (Deep Web) \u7814\u7a76<\/a><\/strong><\/li>\n\n\n\n<li><strong><a href=\"https:\/\/blog.trendmicro.com.tw\/?p=72682\">\u5982\u4f55\u66f4\u6709\u6548\u7ba1\u7406\u60a8\u7684\u6578\u4f4d\u53d7\u653b\u64ca\u9762\u98a8\u96aa<\/a><\/strong><\/li>\n<\/ul>\n\n\n\n<ul>\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/i\/incident-response-services.html\">\u4e8b\u4ef6\u56de\u61c9\u670d\u52d9\u8207\u6559\u6230\u5b88\u5247<\/a><\/strong><\/li>\n\n\n\n<li><strong><a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/j\/ransomware-insurance-security-strategies.html\">\u52d2\u7d22\u75c5\u6bd2\u96aa\u7684\u8cc7\u5b89\u7b56\u7565<\/a><\/strong><\/li>\n<\/ul>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/www.trendmicro.com\/en_us\/ciso\/22\/k\/cyber-crime-group-types.html\">4 Types of Cyber Crime Groups<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u672c\u6587\u63a2\u8a0e\u7576\u4eca\u6700\u4e3b\u8981\u7684\u56db\u7a2e\u7db2\u8def\u72af\u7f6a\u96c6\u5718\uff1a\u5b58\u53d6\u670d\u52d9\u3001\u52d2\u7d22\u75c5\u6bd2\u670d\u52d9\u3001\u9632\u5f48\u4e3b\u6a5f\u4ee3\u7ba1\uff0c\u4ee5\u53ca\u7fa4\u773e\u5916\u5305\uff0c\u4e26\u63d0\u4f9b\u4e00\u4e9b\u5354\u52a9\u60a8\u5f37\u5316 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[2744,3199],"tags":[3200,84],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/75827"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=75827"}],"version-history":[{"count":1,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/75827\/revisions"}],"predecessor-version":[{"id":75828,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/75827\/revisions\/75828"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=75827"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=75827"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=75827"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}