{"id":7867,"date":"2014-04-11T14:33:44","date_gmt":"2014-04-11T06:33:44","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=7867"},"modified":"2014-04-11T14:48:43","modified_gmt":"2014-04-11T06:48:43","slug":"%e6%9c%8d%e8%b2%bf%e8%ad%b0%e9%a1%8c%e6%88%90%e4%bf%a1%e4%bb%b6%e8%aa%98%e9%a4%8c%e5%8f%b0%e7%81%a3%e7%88%86%e7%99%bc%e5%a4%a7%e8%a6%8f%e6%a8%a1apt%e5%a8%81%e8%84%85%ef%bc%81-%e8%bf%9120%e5%ae%b6","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=7867","title":{"rendered":"\u670d\u8cbf\u8b70\u984c\u6210\u793e\u4ea4\u5de5\u7a0b\u4fe1\u4ef6\u8a98\u990c!!\u53f0\u7063\u7206\u767c\u5927\u898f\u6a21APT\u5a01\u8105\uff01 \u8fd120\u5bb6\u7d93\u6fdf\u76f8\u95dc\u6a5f\u69cb\u6210\u76ee\u6a19"},"content":{"rendered":"

\u00a0\u8da8\u52e2\u79d1\u6280\u7b2c\u4e00\u6642\u9593\u6514\u622a\u96f6\u6642\u5dee\u653b\u64ca<\/b><\/p>\n

\u547c\u7c72\u653f\u5e9c\u53ca\u4f01\u696d\u5118\u901f\u4fee\u88dc\u7a0b\u5f0f\u00a0\u00a0\u00a0 \u00a0\u4e26\u9032\u884cAPT \u9632\u8b77\u6aa2\u6e2c \u00a0<\/b><\/p>\n

\u00a0<\/b>\u3010<\/b>2014<\/b>\u5e74<\/b>4<\/b>\u6708<\/b>11<\/b>\u65e5\u53f0\u5317\u8a0a\u3011<\/b>\u5168\u7403\u96f2\u7aef\u8cc7\u5b89\u9818\u5c0e\u5ee0\u5546\u8da8\u52e2\u79d1\u6280\uff0c\u4eca\u65e5\u91dd\u5c0d\u6700\u65b0\u4e00\u6ce2\u91cd\u5927APT-\u9032\u968e\u6301\u7e8c\u6027\u6ef2\u900f\u653b\u64ca (Advanced Persistent Threat, APT)<\/a>\u4e8b\u4ef6\u767c\u51fa\u8b66\u8a0a\uff01\u6839\u64da\u8da8\u52e2\u79d1\u6280<\/a>APT\u8abf\u67e5\u5c0f\u7d44\u7b2c\u4e00\u6642\u9593\u7684\u6514\u622a\u5831\u544a\uff0c\u767c\u73fe\u570b\u969b\u6027\u99ed\u5ba2\u7d44\u7e54\u900f\u904e\u5fae\u8edfRTF\u7a0b\u5f0f\u6f0f\u6d1e\uff0c\u91dd\u5c0d\u53f0\u7063\u7d93\u6fdf\u76f8\u95dc\u7684\u653f\u5e9c\u90e8\u6703\u53ca\u4f01\u696d\uff0c\u9032\u884c\u9996\u6ce2\u5927\u898f\u6a21\u76ee\u6a19\u6027\u96f6\u6642\u5dee\u653b\u64ca\uff01\u99ed\u5ba2\u5229\u7528\u4e3b\u65e8\u70ba\u8207\u670d\u8cbf\u7b49\u71b1\u9580\u8b70\u984c\u6709\u95dc\u7684\u793e\u4ea4\u4fe1\u4ef6\uff0c\u593e\u5e36\u5f8c\u9580\u7a0b\u5f0f\u4ee5\u64cd\u63a7\u53d7\u5bb3\u96fb\u8166\uff0c\u76ee\u524d\u5df2\u77e5\u5f71\u97ff\u8fd120\u5bb6\u53f0\u7063\u76f8\u95dc\u653f\u5e9c\u55ae\u4f4d\u8207\u4f01\u696d\uff01\u8da8\u52e2\u79d1\u6280<\/a>\u547c\u7c72\u7528\u6236\uff0c\u61c9\u5118\u5feb\u66f4\u65b0\u5fae\u8edfMS14-017\u91cd\u5927\u5f31\u9ede\u4fee\u88dc\uff0c\u4e26\u7acb\u5373\u9032\u884cAPT\u8cc7\u5b89\u9632\u8b77\u6aa2\u6e2c\u3002<\/p>\n

\"apt\"<\/a><\/p>\n

\u00a0\u8da8\u52e2\u79d1\u6280<\/a>\u6280\u8853\u7e3d\u76e3\u6234\u71ca\u8868\u793a\uff1a\u300c\u8da8\u52e2\u79d1\u6280\u65bc\u6628(10)\u65e5\u767c\u73fe\uff0c\u6709\u99ed\u5ba2\u4f7f\u7528\u570b\u969b\u99ed\u5ba2\u7d44\u7e54\u6163\u7528\u7684\u60e1\u610f\u7a0b\u5f0f\uff0c\u5229\u7528\u5fae\u8edf\u7684RTF\u7a0b\u5f0f\u6f0f\u6d1e\uff0c\u5c08\u9580\u91dd\u5c0d\u53f0\u7063\u7528\u6236\u7684\u96fb\u8166\u9032\u884c\u96f6\u6642\u5dee\u653b\u64ca\u3002\u99ed\u5ba2\u5229\u7528\u88ab\u611f\u67d3\u96fb\u8166\u505a\u8df3\u677f\uff0c\u767c\u9001\u4ee5\u71b1\u9580\u65b0\u805e\u8b70\u984c\uff08\u4f8b\u5982\u670d\u8cbf\uff09\u70ba\u4e3b\u65e8\u7684\u793e\u4ea4\u96fb\u5b50\u90f5\u4ef6\uff0c\u7d66\u53f0\u7063\u7d93\u6fdf\u76f8\u95dc\u7684\u5404\u653f\u5e9c\u55ae\u4f4d\u53ca\u7d44\u7e54\uff0c\u4fe1\u4ef6\u593e\u5e36\u5f8c\u9580\u7a0b\u5f0fHEUR_RTFEXP.A\u53caHEUR_RTFMALFORM\uff0c\u7528\u6236\u4e00\u65e6\u958b\u555f\u5373\u88ab\u690d\u5165\uff0c\u99ed\u5ba2\u5c07\u53ef\u53d6\u5f97\u53d7\u5bb3\u96fb\u8166\u7684\u64cd\u63a7\u6b0a\u70ba\u6240\u6b32\u70ba\uff0c\u4f8b\u5982\u7aca\u53d6\u8cc7\u5bc6\u8cc7\u6599\u7b49\u3002\u300d<\/p>\n

\u00a0\u5fae\u8edf\u516c\u53f8\u57283\/24\u65e5\u516c\u4f48\u6b64\u9805RTF \u5f31\u9ede\uff0c\u8da8\u52e2\u79d1\u6280APT\u89e3\u6c7a\u65b9\u6848<\/a>\u65bc\u7576\u5929\u5373\u5075\u6e2c\u4e26\u6514\u8f09\u5230\u60e1\u610f\u7a0b\u5f0f\u6a23\u672c\uff0c\u6210\u529f\u5354\u52a9\u53f0\u7063\u8207\u5168\u7403\u5ba2\u6236\u5728\u7b2c\u4e00\u6642\u9593\u9632\u79a6\u6b64\u6ce2APT\u5a01\u8105\u3002\u8da8\u52e2\u79d1\u6280\u66f4\u9032\u4e00\u6b65\u767c\u73fe\uff0c\u70ba\u4e86\u898f\u907f\u8cc7\u5b89\u9632\u8b77\u7522\u54c1\u7684\u5075\u6e2c\uff0c\u99ed\u5ba2\u7d44\u7e54\u900f\u904e\u4e00\u500b\u65e5\u672c\u7684\u7db2\u7ad9\u70ba\u653b\u64ca\u4e2d\u7e7c\u7ad9\uff0c\u4ee5\u589e\u52a0\u5075\u6e2c\u7684\u96e3\u5ea6\uff0c\u4f46\u8da8\u52e2\u79d1\u6280\u7db2\u9801\u4fe1\u8b7d\u8a55\u7b49\u670d\u52d9( Web reputation service, WRS\uff09\u65e9\u5df2\u5c07\u6b64\u7db2\u7ad9\u5c01\u9396\u3002<\/p>\n

<\/p>\n

\u8da8\u52e2\u79d1\u6280\u900f\u904eAPT\u89e3\u6c7a\u65b9\u6848<\/a>\u3001\u5305\u542b\u69ae\u7372\u77e5\u540d\u6e2c\u8a66\u6a5f\u69cbNSS Labs<\/a>\u8a55\u6bd4\u70ba\u300c\u6700\u9ad8\u6574\u9ad4\u5165\u4fb5\u5075\u6e2c\u7387\u300d\u8207\u300c\u96f6\u8aa4\u5224\u300d\u7684Deep Discovery<\/a>\uff0c\u6240\u6514\u622a\u5230\u7684\u8fd1\u767e\u5c01\u793e\u4ea4\u4fe1\u4ef6\u4e2d\uff0c\u767c\u73fe\u5176\u4fe1\u4ef6\u4e3b\u65e8\u3001\u5167\u5bb9\u3001\u9644\u4ef6\u540d\u7a31\uff0c\u90fd\u8207\u6700\u8fd1\u71b1\u9580\u7d93\u6fdf\u8b70\u984c\u9ad8\u5ea6\u76f8\u95dc\u3002\u5176\u4e2d\u4e00\u500b\u6514\u622a\u7684\u6848\u4f8b\u5982\u4e0b\uff1a<\/p>\n

\"APT<\/a><\/p>\n

\u6709\u9451\u65bc\u6b64\u6ce2\u91cd\u5927\u653b\u64ca\u70ba\u614e\u5bc6\u7684\u570b\u969b\u6027\u99ed\u5ba2\u7d44\u7e54\u884c\u70ba\uff0c\u4e26\u7d50\u5408\u53f0\u7063\u71b1\u9580\u7d93\u8cbf\u8b70\u984c\u964d\u4f4e\u7528\u6236\u8b66\u89ba\u5fc3\uff0c\u6050\u6709\u7e7c\u7e8c\u5ef6\u71d2\u4e4b\u53ef\u80fd\uff0c\u4ea6\u5c07\u56b4\u91cd\u5f71\u97ff\u53f0\u7063\u7d93\u6fdf\u9ad4\u7cfb\uff0c\u8da8\u52e2\u79d1\u6280\u547c\u7c72\u653f\u5e9c\u7d44\u7e54\u53ca\u4f01\u696d\uff0c\u61c9\u76e1\u901f\u4fee\u88dc\u5fae\u8edfMS14-017\u5f31\u9ede\uff0c\u4e26\u900f\u904e\u8da8\u52e2\u79d1\u6280APT\u89e3\u6c7a\u65b9\u6848<\/a>\u52a0\u5f37\u9632\u8b77\u3002\u76f8\u95dc\u89e3\u6c7a\u65b9\u6848\u8acb\u53c3\u8003\uff1ahttps:\/\/www.trendmicro.com.tw\/apt\/<\/a><\/p>\n

 <\/p>\n

\"APT<\/a><\/p>\n

\u6309<\u9019\u88e1>\u4e0b\u8f09<\/a>\u53f0\u7063\u9996\u4efd APT \u653b\u64ca\u767d\u76ae\u66f8<\/p>\n","protected":false},"excerpt":{"rendered":"

\u00a0\u8da8\u52e2\u79d1\u6280\u7b2c\u4e00\u6642\u9593\u6514\u622a\u96f6\u6642\u5dee\u653b\u64ca \u547c\u7c72\u653f\u5e9c\u53ca\u4f01\u696d\u5118\u901f\u4fee\u88dc\u7a0b\u5f0f\u00a0\u00a0\u00a0 \u00a0\u4e26\u9032\u884cAPT \u9632\u8b77\u6aa2\u6e2c \u00a0 \u00a0\u30102014 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[10,369],"tags":[45,390,357,1062,2280,1486,1485],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/7867"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7867"}],"version-history":[{"count":0,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/7867\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7867"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7867"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7867"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}