{"id":7075,"date":"2023-07-21T18:19:08","date_gmt":"2023-07-21T11:19:08","guid":{"rendered":"https:\/\/vacif.com\/?p=7075"},"modified":"2023-07-21T18:19:08","modified_gmt":"2023-07-21T11:19:08","slug":"wannacry-ransomware-va-tat-ca-nhung-dieu-ban-can-biet","status":"publish","type":"post","link":"https:\/\/vacif.com\/en\/wannacry-ransomware-va-tat-ca-nhung-dieu-ban-can-biet\/","title":{"rendered":"WANNACRY RANSOMWARE V\u00c0 T\u1ea4T C\u1ea2 NH\u1eeeNG \u0110I\u1ec0U B\u1ea0N C\u1ea6N BI\u1ebeT."},"content":{"rendered":"\n

1.WannaCry \u0111\u01b0\u1ee3c t\u1ea1o ra nh\u01b0 th\u1ebf n\u00e0o?<\/strong><\/p>\n\n\n\n

WannaCry l\u00e0 m\u1ed9t lo\u1ea1i ransomware \u0111\u01b0\u1ee3c t\u1ea1o ra b\u1eb1ng c\u00e1ch k\u1ebft h\u1ee3p m\u00e3 \u0111\u1ed9c t\u1eeb c\u00e1c ngu\u1ed3n kh\u00e1c nhau. N\u00f3 \u0111\u01b0\u1ee3c ph\u00e1t t\u00e1n v\u00e0 lan truy\u1ec1n v\u00e0o th\u00e1ng 5 n\u0103m 2017 v\u00e0 g\u00e2y ra m\u1ed9t trong nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng ransomware l\u1edbn nh\u1ea5t v\u00e0 nghi\u00eam tr\u1ecdng nh\u1ea5t trong l\u1ecbch s\u1eed.<\/p>\n\n\n\n

WannaCry \u0111\u01b0\u1ee3c x\u00e2y d\u1ef1ng d\u1ef1a tr\u00ean m\u00e3 \u0111\u1ed9c c\u1ee7a m\u1ed9t ph\u1ea7n m\u1ec1m gi\u00e1n \u0111i\u1ec7p NSA (National Security Agency) c\u1ee7a M\u1ef9 c\u00f3 t\u00ean l\u00e0 “EternalBlue”. EternalBlue l\u00e0 m\u1ed9t l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n trong giao th\u1ee9c SMB (Server Message Block) c\u1ee7a Microsoft Windows. L\u1ed7 h\u1ed5ng n\u00e0y cho ph\u00e9p tin t\u1eb7c x\u00e2m nh\u1eadp v\u00e0o c\u00e1c h\u1ec7 th\u1ed1ng ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 \u0111\u1ea7y \u0111\u1ee7 v\u00e0 lan truy\u1ec1n m\u00e3 \u0111\u1ed9c m\u1ed9t c\u00e1ch t\u1ef1 \u0111\u1ed9ng gi\u1eefa c\u00e1c m\u00e1y t\u00ednh k\u1ebft n\u1ed1i v\u1edbi c\u00f9ng m\u1ed9t m\u1ea1ng n\u1ed9i b\u1ed9.<\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Nh\u00f3m t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 Lazarus Group, m\u1ed9t nh\u00f3m tin t\u1eb7c \u0111\u01b0\u1ee3c cho l\u00e0 li\u00ean k\u1ebft v\u1edbi Tri\u1ec1u Ti\u00ean, \u0111\u00e3 s\u1eed d\u1ee5ng l\u1ed7 h\u1ed5ng EternalBlue \u0111\u1ec3 t\u1ea1o ra WannaCry. H\u1ecd t\u1eadn d\u1ee5ng l\u1ed7 h\u1ed5ng n\u00e0y \u0111\u1ec3 l\u00e2y nhi\u1ec5m v\u00e0o h\u00e0ng ng\u00e0n m\u00e1y t\u00ednh v\u00e0 h\u1ec7 th\u1ed1ng tr\u00ean kh\u1eafp th\u1ebf gi\u1edbi.<\/p>\n\n\n\n

Khi WannaCry \u0111\u00e3 x\u00e2m nh\u1eadp th\u00e0nh c\u00f4ng v\u00e0o m\u1ed9t m\u00e1y t\u00ednh, n\u00f3 s\u1ebd m\u00e3 h\u00f3a d\u1eef li\u1ec7u tr\u00ean h\u1ec7 th\u1ed1ng v\u00e0 y\u00eau c\u1ea7u n\u1ea1n nh\u00e2n tr\u1ea3 m\u1ed9t kho\u1ea3n ti\u1ec1n chu\u1ed9c (th\u01b0\u1eddng l\u00e0 trong \u0111\u1ed3ng Bitcoin) \u0111\u1ec3 nh\u1eadn \u0111\u01b0\u1ee3c kh\u00f3a gi\u1ea3i m\u00e3 v\u00e0 ph\u1ee5c h\u1ed3i d\u1eef li\u1ec7u.<\/p>\n\n\n\n

\u0110i\u1ec3m n\u1ed5i b\u1eadt c\u1ee7a WannaCry l\u00e0 t\u1ed1c \u0111\u1ed9 lan truy\u1ec1n v\u00e0 s\u1ed1 l\u01b0\u1ee3ng m\u00e1y t\u00ednh b\u1ecb nhi\u1ec5m. N\u00f3 \u0111\u00e3 lan truy\u1ec1n r\u1ea5t nhanh v\u00e0 t\u1ea5n c\u00f4ng h\u00e0ng ng\u00e0n t\u1ed5 ch\u1ee9c v\u00e0 c\u00e1 nh\u00e2n trong th\u1eddi gian ng\u1eafn. Cu\u1ed9c t\u1ea5n c\u00f4ng WannaCry \u0111\u00e3 thu h\u00fat s\u1ef1 ch\u00fa \u00fd to\u00e0n c\u1ea7u v\u00e0 \u0111\u00e3 th\u00fac \u0111\u1ea9y s\u1ef1 nh\u1eadn th\u1ee9c v\u1ec1 vi\u1ec7c c\u1ea3i thi\u1ec7n b\u1ea3o m\u1eadt v\u00e0 v\u00e1 c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt tr\u00ean h\u1ec7 th\u1ed1ng Windows.<\/p>\n\n\n\n

2. Microsoft v\u00e0 c\u00e1c bi\u1ec7n ph\u00e1p \u0111\u00e3 th\u1ef1c hi\u1ec7n \u0111\u1ec3 gi\u1ea3m t\u00e1c \u0111\u1ed9ng c\u1ee7a WannaCry.<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Khi cu\u1ed9c t\u1ea5n c\u00f4ng WannaCry x\u1ea3y ra v\u00e0o n\u0103m 2017, Microsoft \u0111\u00e3 th\u1ef1c hi\u1ec7n m\u1ed9t s\u1ed1 bi\u1ec7n ph\u00e1p \u0111\u1ec3 gi\u1ea3m thi\u1ec3u t\u00e1c \u0111\u1ed9ng v\u00e0 h\u1ed7 tr\u1ee3 c\u00e1c kh\u00e1ch h\u00e0ng c\u1ee7a h\u1ecd. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 m\u1ed9t s\u1ed1 bi\u1ec7n ph\u00e1p ch\u00ednh m\u00e0 Microsoft \u0111\u00e3 th\u1ef1c hi\u1ec7n \u0111\u1ec3 ch\u1ed1ng l\u1ea1i WannaCry:<\/p>\n\n\n\n

C\u1eadp nh\u1eadt v\u00e1 l\u1ed7 h\u1ed5ng: <\/strong>Microsoft \u0111\u00e3 ph\u00e1t h\u00e0nh m\u1ed9t b\u1ea3n v\u00e1 l\u1ed7i kh\u1ea9n c\u1ea5p cho l\u1ed7 h\u1ed5ng EternalBlue ch\u1ec9 trong v\u00f2ng m\u1ed9t ng\u00e0y sau khi ph\u00e1t hi\u1ec7n WannaCry. B\u1ea3n v\u00e1 n\u00e0y d\u00e0nh cho c\u00e1c phi\u00ean b\u1ea3n h\u1ec7 \u0111i\u1ec1u h\u00e0nh Windows c\u00f2n \u0111ang \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3, bao g\u1ed3m Windows 7, Windows 8.1, Windows Server 2008 R2, Windows Server 2012 v\u00e0 Windows Server 2012 R2. Vi\u1ec7c c\u1eadp nh\u1eadt b\u1ea3n v\u00e1 n\u00e0y gi\u00fap ng\u0103n ch\u1eb7n c\u00e1c m\u00e1y t\u00ednh ch\u01b0a b\u1ecb t\u1ea5n c\u00f4ng kh\u1ecfi s\u1ef1 l\u00e2y nhi\u1ec5m WannaCry th\u00f4ng qua l\u1ed7 h\u1ed5ng EternalBlue.<\/p>\n\n\n\n

H\u1ed7 tr\u1ee3 kh\u1ea9n c\u1ea5p cho h\u1ec7 th\u1ed1ng kh\u00f4ng c\u00f2n h\u1ed7 tr\u1ee3: <\/strong>M\u1eb7c d\u00f9 b\u1ea3n v\u00e1 l\u1ed7i d\u00e0nh cho c\u00e1c phi\u00ean b\u1ea3n h\u1ec7 \u0111i\u1ec1u h\u00e0nh kh\u00f4ng c\u00f2n \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3 ban \u0111\u1ea7u kh\u00f4ng \u0111\u01b0\u1ee3c ph\u00e1t h\u00e0nh c\u00f4ng khai, nh\u01b0ng Microsoft \u0111\u00e3 quy\u1ebft \u0111\u1ecbnh ph\u00e1t h\u00e0nh n\u00f3 sau \u0111\u00f3 \u0111\u1ec3 h\u1ed7 tr\u1ee3 c\u00e1c kh\u00e1ch h\u00e0ng c\u00f2n s\u1eed d\u1ee5ng c\u00e1c phi\u00ean b\u1ea3n n\u00e0y. \u0110i\u1ec1u n\u00e0y gi\u00fap ng\u0103n ch\u1eb7n WannaCry l\u00e2y nhi\u1ec5m v\u00e0 t\u1ea5n c\u00f4ng v\u00e0o c\u00e1c h\u1ec7 th\u1ed1ng kh\u00f4ng \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3 n\u1eefa.<\/p>\n\n\n\n

T\u0103ng c\u01b0\u1eddng th\u00f4ng tin v\u00e0 h\u1ed7 tr\u1ee3: <\/strong>Microsoft \u0111\u00e3 cung c\u1ea5p c\u00e1c th\u00f4ng tin v\u00e0 h\u01b0\u1edbng d\u1eabn chi ti\u1ebft cho kh\u00e1ch h\u00e0ng v\u1ec1 c\u00e1ch b\u1ea3o v\u1ec7 h\u1ec7 th\u1ed1ng c\u1ee7a h\u1ecd kh\u1ecfi WannaCry v\u00e0 l\u00e0m th\u1ebf n\u00e0o \u0111\u1ec3 c\u00e0i \u0111\u1eb7t b\u1ea3n v\u00e1 l\u1ed7i m\u1ed9t c\u00e1ch hi\u1ec7u qu\u1ea3. H\u1ecd \u0111\u00e3 cung c\u1ea5p c\u00e1c t\u00e0i nguy\u00ean v\u00e0 c\u00f4ng c\u1ee5 h\u1ed7 tr\u1ee3 \u0111\u1ec3 gi\u00fap ng\u01b0\u1eddi d\u00f9ng th\u1ef1c hi\u1ec7n c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o m\u1eadt c\u1ea7n thi\u1ebft.<\/p>\n\n\n\n

Li\u00ean k\u1ebft v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c b\u1ea3o m\u1eadt:<\/strong> Microsoft \u0111\u00e3 h\u1ee3p t\u00e1c v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c b\u1ea3o m\u1eadt v\u00e0 chia s\u1ebb th\u00f4ng tin v\u1edbi c\u1ed9ng \u0111\u1ed3ng b\u1ea3o m\u1eadt \u0111\u1ec3 t\u0103ng c\u01b0\u1eddng nh\u1eadn th\u1ee9c v\u1ec1 WannaCry v\u00e0 h\u1ed7 tr\u1ee3 c\u00e1c bi\u1ec7n ph\u00e1p ng\u0103n ch\u1eb7n.<\/p>\n\n\n\n

3. WannaCry v\u00e0 t\u1ea7m \u1ea3nh h\u01b0\u1edfng.<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Cu\u1ed9c t\u1ea5n c\u00f4ng WannaCry \u0111\u00e3 g\u00e2y ra thi\u1ec7t h\u1ea1i nghi\u00eam tr\u1ecdng v\u00e0 c\u00f3 t\u1ea7m \u1ea3nh h\u01b0\u1edfng r\u1ed9ng l\u1edbn tr\u00ean to\u00e0n c\u1ea7u. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 m\u1ed9t s\u1ed1 \u0111i\u1ec3m ch\u00ednh v\u1ec1 thi\u1ec7t h\u1ea1i m\u00e0 WannaCry \u0111\u00e3 g\u00e2y ra:<\/p>\n\n\n\n

Thi\u1ec7t h\u1ea1i t\u00e0i ch\u00ednh:<\/strong> WannaCry \u0111\u00e3 y\u00eau c\u1ea7u c\u00e1c n\u1ea1n nh\u00e2n tr\u1ea3 ti\u1ec1n chu\u1ed9c \u0111\u1ec3 nh\u1eadn \u0111\u01b0\u1ee3c kh\u00f3a gi\u1ea3i m\u00e3 v\u00e0 ph\u1ee5c h\u1ed3i d\u1eef li\u1ec7u. S\u1ed1 ti\u1ec1n chu\u1ed9c y\u00eau c\u1ea7u th\u01b0\u1eddng l\u00e0 h\u00e0ng tr\u0103m \u0111\u1ebfn h\u00e0ng ngh\u00ecn \u0111\u00f4 la trong \u0111\u1ed3ng ti\u1ec1n m\u00e3 h\u00f3a Bitcoin. Theo c\u00e1c \u01b0\u1edbc t\u00ednh, WannaCry \u0111\u00e3 thu \u0111\u01b0\u1ee3c h\u00e0ng tri\u1ec7u \u0111\u00f4 la ti\u1ec1n chu\u1ed9c t\u1eeb c\u00e1c n\u1ea1n nh\u00e2n tr\u00ean kh\u1eafp th\u1ebf gi\u1edbi.<\/p>\n\n\n\n

Gi\u00e1n \u0111o\u1ea1n ho\u1ea1t \u0111\u1ed9ng: <\/strong>C\u00e1c t\u1ed5 ch\u1ee9c v\u00e0 doanh nghi\u1ec7p b\u1ecb nhi\u1ec5m WannaCry \u0111\u00e3 ph\u1ea3i \u0111\u1ed1i m\u1eb7t v\u1edbi s\u1ef1 gi\u00e1n \u0111o\u1ea1n nghi\u00eam tr\u1ecdng trong ho\u1ea1t \u0111\u1ed9ng kinh doanh. Vi\u1ec7c m\u00e3 h\u00f3a d\u1eef li\u1ec7u quan tr\u1ecdng v\u00e0 l\u00e0m h\u1ecfng h\u1ec7 th\u1ed1ng \u0111\u00e3 g\u00e2y ra m\u1ea5t m\u00e1t d\u1eef li\u1ec7u v\u00e0 l\u00e0m ch\u1eadm hi\u1ec7u su\u1ea5t c\u00f4ng vi\u1ec7c.<\/p>\n\n\n\n

\u1ea2nh h\u01b0\u1edfng \u0111\u1ebfn d\u1ecbch v\u1ee5 y t\u1ebf:<\/strong> WannaCry \u0111\u00e3 t\u1ea5n c\u00f4ng nhi\u1ec1u b\u1ec7nh vi\u1ec7n v\u00e0 c\u01a1 s\u1edf y t\u1ebf tr\u00ean to\u00e0n c\u1ea7u, g\u00e2y ra \u1ea3nh h\u01b0\u1edfng \u0111\u00e1ng k\u1ec3 \u0111\u1ebfn vi\u1ec7c cung c\u1ea5p ch\u0103m s\u00f3c s\u1ee9c kh\u1ecfe. M\u1ed9t s\u1ed1 b\u1ec7nh vi\u1ec7n \u0111\u00e3 ph\u1ea3i h\u1ee7y b\u1ecf cu\u1ed9c h\u1eb9n v\u00e0 th\u0103m kh\u00e1m b\u1ec7nh nh\u00e2n, v\u00e0 vi\u1ec7c truy c\u1eadp v\u00e0o d\u1eef li\u1ec7u y t\u1ebf c\u1ee7a b\u1ec7nh nh\u00e2n \u0111\u00e3 b\u1ecb t\u1ea1m th\u1eddi m\u1ea5t \u0111i.<\/p>\n\n\n\n

M\u1ea5t m\u00e1t d\u1eef li\u1ec7u quan tr\u1ecdng: <\/strong>Do d\u1eef li\u1ec7u tr\u00ean c\u00e1c h\u1ec7 th\u1ed1ng b\u1ecb nhi\u1ec5m WannaCry \u0111\u00e3 b\u1ecb m\u00e3 h\u00f3a, nhi\u1ec1u t\u1ed5 ch\u1ee9c v\u00e0 c\u00e1 nh\u00e2n \u0111\u00e3 b\u1ecb m\u1ea5t m\u00e1t d\u1eef li\u1ec7u quan tr\u1ecdng, bao g\u1ed3m t\u1ec7p c\u00e1 nh\u00e2n, h\u1ed3 s\u01a1 kh\u00e1ch h\u00e0ng, th\u00f4ng tin t\u00e0i ch\u00ednh, v.v. M\u1ea5t m\u00e1t d\u1eef li\u1ec7u n\u00e0y c\u00f3 th\u1ec3 g\u00e2y ra h\u1eadu qu\u1ea3 nghi\u00eam tr\u1ecdng v\u00e0 kh\u00f3 kh\u0103n trong vi\u1ec7c ph\u1ee5c h\u1ed3i sau cu\u1ed9c t\u1ea5n c\u00f4ng.<\/p>\n\n\n\n

4. WannaCry v\u00e0 c\u00e1ch th\u1ee9c t\u1ea5n c\u00f4ng<\/strong>.<\/p>\n\n\n\n

WannaCry ho\u1ea1t \u0111\u1ed9ng d\u1ef1a tr\u00ean m\u1ed9t s\u1ed1 b\u01b0\u1edbc ch\u00ednh \u0111\u1ec3 x\u00e2m nh\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng, m\u00e3 h\u00f3a d\u1eef li\u1ec7u v\u00e0 y\u00eau c\u1ea7u ti\u1ec1n chu\u1ed9c. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 chi ti\u1ebft v\u1ec1 c\u00e1ch ho\u1ea1t \u0111\u1ed9ng c\u1ee7a WannaCry:<\/p>\n\n\n\n

Ph\u00e1t t\u00e1n v\u00e0 l\u00e2y nhi\u1ec5m ban \u0111\u1ea7u:<\/strong> WannaCry th\u01b0\u1eddng \u0111\u01b0\u1ee3c ph\u00e1t t\u00e1n qua email l\u1eeba \u0111\u1ea3o ho\u1eb7c c\u00e1c trang web \u0111\u1ed9c h\u1ea1i. M\u1ed9t khi n\u1ea1n nh\u00e2n nh\u1ea5p v\u00e0o m\u1ed9t li\u00ean k\u1ebft hay m\u1edf m\u1ed9t t\u1ec7p \u0111\u00ednh k\u00e8m b\u1ecb nhi\u1ec5m, WannaCry s\u1ebd t\u1ef1 \u0111\u1ed9ng l\u00e2y nhi\u1ec5m v\u00e0o h\u1ec7 th\u1ed1ng c\u1ee7a h\u1ecd.<\/p>\n\n\n\n

Khai th\u00e1c l\u1ed7 h\u1ed5ng EternalBlue: <\/strong>WannaCry s\u1eed d\u1ee5ng l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt EternalBlue, m\u1ed9t l\u1ed7 h\u1ed5ng trong giao th\u1ee9c SMB (Server Message Block) c\u1ee7a Microsoft Windows, \u0111\u1ec3 lan truy\u1ec1n t\u1ef1 \u0111\u1ed9ng gi\u1eefa c\u00e1c m\u00e1y t\u00ednh k\u1ebft n\u1ed1i v\u1edbi c\u00f9ng m\u1ed9t m\u1ea1ng n\u1ed9i b\u1ed9. L\u1ed7 h\u1ed5ng n\u00e0y cho ph\u00e9p WannaCry truy c\u1eadp v\u00e0o c\u00e1c h\u1ec7 th\u1ed1ng ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 \u0111\u1ea7y \u0111\u1ee7 v\u00e0 lan truy\u1ec1n m\u00e3 \u0111\u1ed9c m\u1ed9t c\u00e1ch nhanh ch\u00f3ng.<\/p>\n\n\n\n

M\u00e3 h\u00f3a d\u1eef li\u1ec7u: <\/strong>Sau khi nhi\u1ec5m v\u00e0o h\u1ec7 th\u1ed1ng, WannaCry s\u1ebd b\u1eaft \u0111\u1ea7u qu\u00e1 tr\u00ecnh m\u00e3 h\u00f3a d\u1eef li\u1ec7u quan tr\u1ecdng tr\u00ean m\u00e1y t\u00ednh c\u1ee7a n\u1ea1n nh\u00e2n. N\u00f3 s\u1eed d\u1ee5ng thu\u1eadt to\u00e1n m\u00e3 h\u00f3a m\u1ea1nh m\u1ebd \u0111\u1ec3 m\u00e3 h\u00f3a c\u00e1c t\u1ec7p v\u00e0 th\u01b0 m\u1ee5c tr\u00ean \u1ed5 \u0111\u0129a c\u1ee9ng, l\u00e0m cho d\u1eef li\u1ec7u tr\u1edf n\u00ean kh\u00f4ng th\u1ec3 truy c\u1eadp \u0111\u01b0\u1ee3c.<\/p>\n\n\n\n

Hi\u1ec3n th\u1ecb th\u00f4ng b\u00e1o ti\u1ec1n chu\u1ed9c:<\/strong> Sau khi ho\u00e0n t\u1ea5t qu\u00e1 tr\u00ecnh m\u00e3 h\u00f3a d\u1eef li\u1ec7u, WannaCry hi\u1ec3n th\u1ecb m\u1ed9t c\u1eeda s\u1ed5 th\u00f4ng b\u00e1o ti\u1ec1n chu\u1ed9c tr\u00ean m\u00e1y t\u00ednh c\u1ee7a n\u1ea1n nh\u00e2n. Th\u00f4ng b\u00e1o n\u00e0y s\u1ebd cung c\u1ea5p h\u01b0\u1edbng d\u1eabn v\u1ec1 c\u00e1ch thanh to\u00e1n ti\u1ec1n chu\u1ed9c \u0111\u1ec3 nh\u1eadn \u0111\u01b0\u1ee3c kh\u00f3a gi\u1ea3i m\u00e3 v\u00e0 ph\u1ee5c h\u1ed3i d\u1eef li\u1ec7u. S\u1ed1 ti\u1ec1n chu\u1ed9c y\u00eau c\u1ea7u th\u01b0\u1eddng l\u00e0 h\u00e0ng tr\u0103m \u0111\u1ebfn h\u00e0ng ngh\u00ecn \u0111\u00f4 la trong \u0111\u1ed3ng ti\u1ec1n m\u00e3 h\u00f3a Bitcoin.<\/p>\n\n\n\n

Y\u00eau c\u1ea7u thanh to\u00e1n chu\u1ed9c qua Bitcoin:<\/strong> WannaCry y\u00eau c\u1ea7u n\u1ea1n nh\u00e2n thanh to\u00e1n ti\u1ec1n chu\u1ed9c th\u00f4ng qua Bitcoin, m\u1ed9t lo\u1ea1i ti\u1ec1n m\u00e3 h\u00f3a kh\u00f3 b\u1ecb truy t\u1ed1. N\u1ea1n nh\u00e2n \u0111\u01b0\u1ee3c cung c\u1ea5p \u0111\u1ecba ch\u1ec9 Bitcoin \u0111\u1ec3 chuy\u1ec3n ti\u1ec1n chu\u1ed9c t\u1edbi.<\/p>\n\n\n\n

T\u1ef1 ph\u00e1t tri\u1ec3n kh\u00f3a gi\u1ea3i m\u00e3: <\/strong>M\u1ed9t \u0111i\u1ec3m \u0111\u1eb7c bi\u1ec7t c\u1ee7a WannaCry l\u00e0 n\u00f3 \u0111i k\u00e8m v\u1edbi m\u1ed9t kh\u00f3a gi\u1ea3i m\u00e3, cho ph\u00e9p n\u1ea1n nh\u00e2n gi\u1ea3i m\u00e3 d\u1eef li\u1ec7u c\u1ee7a m\u00ecnh sau khi thanh to\u00e1n ti\u1ec1n chu\u1ed9c. Tuy nhi\u00ean, vi\u1ec7c gi\u1ea3i m\u00e3 b\u1eb1ng kh\u00f3a n\u00e0y ch\u1ec9 c\u00f3 th\u1ec3 th\u1ef1c hi\u1ec7n tr\u01b0\u1edbc m\u1ed9t h\u1ea1n ch\u1ebf th\u1eddi gian. N\u1ebfu kh\u00f4ng thanh to\u00e1n ti\u1ec1n chu\u1ed9c trong kho\u1ea3ng th\u1eddi gian nh\u1ea5t \u0111\u1ecbnh, kh\u00f3a gi\u1ea3i m\u00e3 s\u1ebd b\u1ecb x\u00f3a v\u00e0 kh\u00f4ng th\u1ec3 s\u1eed d\u1ee5ng \u0111\u1ec3 ph\u1ee5c h\u1ed3i d\u1eef li\u1ec7u n\u1eefa.<\/p>\n\n\n\n

Lan truy\u1ec1n qua m\u1ea1ng: <\/strong>WannaCry ti\u1ebfp t\u1ee5c t\u1ef1 \u0111\u1ed9ng lan truy\u1ec1n qua m\u1ea1ng, t\u00ecm ki\u1ebfm c\u00e1c h\u1ec7 th\u1ed1ng v\u00e0 m\u00e1y t\u00ednh kh\u00e1c \u0111\u1ec3 l\u00e2y nhi\u1ec5m. \u0110i\u1ec1u n\u00e0y l\u00e0m cho cu\u1ed9c t\u1ea5n c\u00f4ng lan truy\u1ec1n nhanh ch\u00f3ng v\u00e0 t\u00e1c \u0111\u1ed9ng r\u1ed9ng l\u1edbn tr\u00ean to\u00e0n c\u1ea7u.<\/p>\n\n\n\n

5. WannaCry v\u00e0 c\u00e1ch ph\u00f2ng ch\u1ed1ng.<\/strong><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

\u0110\u1ec3 b\u1ea3o v\u1ec7 kh\u1ecfi WannaCry ho\u1eb7c c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware kh\u00e1c, h\u00e3y th\u1ef1c hi\u1ec7n c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o m\u1eadt sau \u0111\u00e2y:<\/p>\n\n\n\n

C\u1eadp nh\u1eadt h\u1ec7 \u0111i\u1ec1u h\u00e0nh v\u00e0 ph\u1ea7n m\u1ec1m:<\/strong> \u0110\u1ea3m b\u1ea3o r\u1eb1ng b\u1ea1n \u0111\u00e3 c\u00e0i \u0111\u1eb7t \u0111\u1ea7y \u0111\u1ee7 c\u00e1c b\u1ea3n v\u00e1 l\u1ed7i v\u00e0 c\u1eadp nh\u1eadt m\u1edbi nh\u1ea5t cho h\u1ec7 \u0111i\u1ec1u h\u00e0nh v\u00e0 ph\u1ea7n m\u1ec1m c\u1ee7a b\u1ea1n. Microsoft \u0111\u00e3 ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 l\u1ed7i cho l\u1ed7 h\u1ed5ng EternalBlue, do \u0111\u00f3, vi\u1ec7c c\u1eadp nh\u1eadt h\u1ec7 \u0111i\u1ec1u h\u00e0nh Windows l\u00e0 r\u1ea5t quan tr\u1ecdng \u0111\u1ec3 ng\u0103n ch\u1eb7n WannaCry.<\/p>\n\n\n\n

C\u00e0i \u0111\u1eb7t ph\u1ea7n m\u1ec1m b\u1ea3o m\u1eadt:<\/strong> S\u1eed d\u1ee5ng ph\u1ea7n m\u1ec1m b\u1ea3o m\u1eadt ch\u1ed1ng malware v\u00e0 ransomware m\u1ea1nh m\u1ebd \u0111\u1ec3 gi\u00fap ng\u0103n ch\u1eb7n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng. \u0110\u1ea3m b\u1ea3o r\u1eb1ng ph\u1ea7n m\u1ec1m b\u1ea3o m\u1eadt c\u1ee7a b\u1ea1n \u0111\u00e3 \u0111\u01b0\u1ee3c c\u1eadp nh\u1eadt th\u01b0\u1eddng xuy\u00ean \u0111\u1ec3 b\u1ea3o v\u1ec7 kh\u1ecfi c\u00e1c m\u1ed1i \u0111e d\u1ecda m\u1edbi nh\u1ea5t nh\u01b0 Sophos Endpoint, Kaspersky,..<\/p>\n\n\n\n

Sao l\u01b0u d\u1eef li\u1ec7u th\u01b0\u1eddng xuy\u00ean: <\/strong>Th\u1ef1c hi\u1ec7n sao l\u01b0u d\u1eef li\u1ec7u quan tr\u1ecdng c\u1ee7a b\u1ea1n th\u01b0\u1eddng xuy\u00ean, v\u00e0 l\u01b0u tr\u1eef n\u00f3 tr\u00ean n\u01a1i kh\u00f4ng k\u1ebft n\u1ed1i v\u1edbi internet. N\u1ebfu b\u1ea1n b\u1ecb t\u1ea5n c\u00f4ng b\u1edfi ransomware, sao l\u01b0u d\u1eef li\u1ec7u s\u1ebd gi\u00fap b\u1ea1n ph\u1ee5c h\u1ed3i d\u1eef li\u1ec7u m\u00e0 kh\u00f4ng ph\u1ea3i tr\u1ea3 ti\u1ec1n chu\u1ed9c.<\/p>\n\n\n\n

Kh\u00f4ng m\u1edf c\u00e1c t\u1ec7p kh\u00f4ng r\u00f5 ngu\u1ed3n g\u1ed1c: <\/strong>Tr\u00e1nh m\u1edf c\u00e1c t\u1ec7p \u0111\u00ednh k\u00e8m ho\u1eb7c li\u00ean k\u1ebft trong email ho\u1eb7c th\u00f4ng \u0111i\u1ec7p kh\u00f4ng r\u00f5 ngu\u1ed3n g\u1ed1c, \u0111\u1eb7c bi\u1ec7t l\u00e0 t\u1eeb ng\u01b0\u1eddi l\u1ea1. WannaCry th\u01b0\u1eddng lan truy\u1ec1n qua email l\u1eeba \u0111\u1ea3o v\u00e0 t\u1ec7p \u0111\u00ednh k\u00e8m b\u1ecb nhi\u1ec5m.<\/p>\n\n\n\n

Gi\u00e1o d\u1ee5c nh\u00e2n vi\u00ean v\u1ec1 an to\u00e0n th\u00f4ng tin: <\/strong>\u0110\u00e0o t\u1ea1o nh\u00e2n vi\u00ean c\u1ee7a b\u1ea1n v\u1ec1 c\u00e1c m\u1ed1i \u0111e d\u1ecda b\u1ea3o m\u1eadt, nh\u01b0 phishing v\u00e0 c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware. Nh\u1eadn th\u1ee9c v\u1ec1 b\u1ea3o m\u1eadt gi\u00fap ng\u0103n ch\u1eb7n nh\u00e2n vi\u00ean m\u1edf c\u1eeda cho c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng.<\/p>\n\n\n\n

S\u1eed d\u1ee5ng gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt c\u1ee7a c\u00e1c nh\u00e0 cung c\u1ea5p \u0111\u00e1ng tin c\u1eady:<\/strong> Xem x\u00e9t s\u1eed d\u1ee5ng gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt c\u1ee7a c\u00e1c nh\u00e0 cung c\u1ea5p uy t\u00edn v\u00e0 \u0111\u00e1ng tin c\u1eady \u0111\u1ec3 gi\u00fap b\u1ea3o v\u1ec7 h\u1ec7 th\u1ed1ng c\u1ee7a b\u1ea1n kh\u1ecfi c\u00e1c m\u1ed1i \u0111e d\u1ecda b\u1ea3o m\u1eadt.<\/p>\n","protected":false},"excerpt":{"rendered":"

1.WannaCry \u0111\u01b0\u1ee3c t\u1ea1o ra nh\u01b0 th\u1ebf n\u00e0o? WannaCry l\u00e0 m\u1ed9t lo\u1ea1i ransomware \u0111\u01b0\u1ee3c t\u1ea1o ra b\u1eb1ng c\u00e1ch k\u1ebft h\u1ee3p m\u00e3 \u0111\u1ed9c t\u1eeb c\u00e1c ngu\u1ed3n kh\u00e1c nhau. N\u00f3 \u0111\u01b0\u1ee3c ph\u00e1t t\u00e1n v\u00e0 lan truy\u1ec1n v\u00e0o th\u00e1ng 5 n\u0103m 2017 v\u00e0 g\u00e2y ra m\u1ed9t trong nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng ransomware l\u1edbn nh\u1ea5t v\u00e0 nghi\u00eam tr\u1ecdng nh\u1ea5t trong […]<\/p>\n","protected":false},"author":12,"featured_media":7082,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[80],"tags":[166,97,167],"class_list":["post-7075","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-huong-dan-tai-lieu","tag-eternalblue","tag-sophos-endpoint","tag-wannacry-ransomware","entry","has-media"],"_links":{"self":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7075","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/comments?post=7075"}],"version-history":[{"count":0,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7075\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media\/7082"}],"wp:attachment":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media?parent=7075"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/categories?post=7075"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/tags?post=7075"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}