{"id":7211,"date":"2023-07-28T11:26:39","date_gmt":"2023-07-28T04:26:39","guid":{"rendered":"https:\/\/vacif.com\/?p=7211"},"modified":"2023-07-28T11:26:39","modified_gmt":"2023-07-28T04:26:39","slug":"bung-no-cac-cuoc-tan-cong-ransomware-tren-toan-cau","status":"publish","type":"post","link":"https:\/\/vacif.com\/en\/bung-no-cac-cuoc-tan-cong-ransomware-tren-toan-cau\/","title":{"rendered":"B\u00d9NG N\u1ed4 C\u00c1C CU\u1ed8C T\u1ea4N C\u00d4NG RANSOMWARE TR\u00caN TO\u00c0N C\u1ea6U"},"content":{"rendered":"\n

T\u1ed5ng quan :<\/strong><\/p>\n\n\n\n

B\u00f9ng n\u1ed5 c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware m\u1edbi nh\u1ea5t \u0111ang g\u00e2y r\u00fang \u0111\u1ed9ng v\u00e0 t\u1ea1o ra nh\u1eefng \u0111\u1ee3t c\u1ea3nh b\u00e1o tr\u1ea7m tr\u1ecdng v\u1ec1 m\u1ed1i \u0111e d\u1ecda an ninh m\u1ea1ng. Ransomware – lo\u1ea1i ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i , t\u1ea5n c\u00f4ng b\u1eb1ng c\u00e1ch m\u00e3 h\u00f3a d\u1eef li\u1ec7u quan tr\u1ecdng c\u1ee7a c\u00e1c t\u1ed5 ch\u1ee9c v\u00e0 c\u00e1 nh\u00e2n, sau \u0111\u00f3 \u0111\u00f2i ti\u1ec1n chu\u1ed9c \u0111ang ng\u00e0y c\u00e0ng tr\u1edf n\u00ean nguy hi\u1ec3m v\u00e0 ph\u1ed5 bi\u1ebfn h\u01a1n bao gi\u1edd h\u1ebft. Trong b\u1ed1i c\u1ea3nh c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y \u0111\u00e3 g\u00e2y thi\u1ec7t h\u1ea1i kinh t\u1ebf h\u00e0ng t\u1ef7 \u0111\u00f4 la v\u00e0 l\u00e0m m\u1ea5t \u0111i d\u1eef li\u1ec7u quan tr\u1ecdng c\u1ee7a h\u00e0ng tri\u1ec7u ng\u01b0\u1eddi, c\u00e0ng ng\u00e0y c\u00e0ng r\u00f5 r\u00e0ng r\u1eb1ng ch\u00fang ta \u0111ang \u0111\u1ed1i di\u1ec7n v\u1edbi m\u1ed9t m\u1ed1i \u0111e d\u1ecda \u0111\u00e1ng s\u1ee3 tr\u00ean kh\u00f4ng ch\u1ec9 m\u1ea1ng l\u01b0\u1edbi doanh nghi\u1ec7p m\u00e0 c\u00f2n c\u1ea3 cu\u1ed9c s\u1ed1ng h\u00e0ng ng\u00e0y c\u1ee7a ch\u00fang ta. Trong b\u00e0i vi\u1ebft n\u00e0y, ch\u00fang ta s\u1ebd \u0111i s\u00e2u v\u00e0o c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware g\u1ea7n \u0111\u00e2y v\u00e0 nh\u00ecn v\u00e0o nh\u1eefng h\u1eadu qu\u1ea3 nghi\u00eam tr\u1ecdng m\u00e0 ch\u00fang \u0111\u00e3 g\u00e2y ra, \u0111\u1ed3ng th\u1eddi t\u00ecm hi\u1ec3u v\u1ec1 c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o v\u1ec7 v\u00e0 \u1ee9ng ph\u00f3 hi\u1ec7u qu\u1ea3 \u0111\u1ec3 \u0111\u1ed1i ph\u00f3 v\u1edbi t\u00ecnh tr\u1ea1ng kh\u1ea9n c\u1ea5p n\u00e0y.<\/p>\n\n\n\n

M\u1ee5c l\u1ee5c :<\/strong><\/p>\n\n\n\n

I. M\u1ed9t s\u1ed1 cu\u1ed9c t\u1ea5n c\u00f4ng Ransomware c\u00e1c n\u0103m g\u1ea7n \u0111\u00e2y<\/strong><\/p>\n\n\n\n

II. Top Ransomware ti\u00eau bi\u1ec3u qua t\u1eebng n\u0103m<\/strong><\/p>\n\n\n\n

N\u1ed9i dung b\u00e0i vi\u1ebft :<\/strong><\/p>\n\n\n\n

I. T\u00ecnh h\u00ecnh t\u1ed5ng quan c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng Ransomware c\u00e1c n\u0103m g\u1ea7n \u0111\u00e2y<\/strong><\/p>\n\n\n\n

M\u1ed9t trong nh\u1eefng xu h\u01b0\u1edbng \u0111\u00e1ng ch\u00fa \u00fd l\u00e0 s\u1ef1 gia t\u0103ng v\u1ec1 s\u1ef1 chuy\u00ean nghi\u1ec7p c\u1ee7a c\u00e1c nh\u00f3m t\u1ea5n c\u00f4ng ransomware. Ng\u00e0y nay, kh\u00f4ng ch\u1ec9 c\u00f3 c\u00e1c hacker c\u00e1 nh\u00e2n ho\u1ea1t \u0111\u1ed9ng m\u1ed9t m\u00ecnh m\u00e0 c\u00f2n c\u00f3 nh\u1eefng nh\u00f3m t\u1ed9i ph\u1ea1m t\u1ed5 ch\u1ee9c v\u1edbi c\u01a1 c\u1ea5u r\u00f5 r\u00e0ng v\u00e0 m\u1ee5c ti\u00eau chi ti\u1ebft. Nh\u1eefng nh\u00f3m n\u00e0y th\u01b0\u1eddng s\u1eed d\u1ee5ng c\u00e1c k\u1ef9 thu\u1eadt tinh vi \u0111\u1ec3 x\u00e2m nh\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng, khai th\u00e1c c\u00e1c l\u1ed7 h\u1ed5ng kh\u00f4ng \u0111\u01b0\u1ee3c v\u00e1 v\u00e0 ph\u00e2n ph\u1ed1i m\u00e3 \u0111\u1ed9c m\u1ed9t c\u00e1ch r\u1ed9ng r\u00e3i.<\/p>\n\n\n\n

1. T\u1ea5n c\u00f4ng Ransomware v\u00e0o n\u0103m 2021-2022<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Theo nhi\u1ec1u t\u1ed5 ch\u1ee9c ho\u1ea1t \u0111\u1ed9ng trong l\u0129nh v\u1ef1c security \u0111\u00e3 c\u00f4ng b\u1ed1 r\u1eb1ng s\u1ed1 l\u01b0\u1ee3ng t\u1ed5 ch\u1ee9c b\u1ecb \u1ea3nh h\u01b0\u1edfng b\u1edfi ransomware tr\u00ean to\u00e0n c\u1ea7u \u0111\u00e3 t\u0103ng g\u1ea5p \u0111\u00f4i trong n\u1eeda \u0111\u1ea7u n\u0103m 2021 so v\u1edbi n\u0103m 2020. \u0110\u00e1ng ch\u00fa \u00fd, c\u00e1c ng\u00e0nh y t\u1ebf v\u00e0 ti\u1ec7n \u00edch l\u00e0 nh\u1eefng ng\u00e0nh b\u1ecb nh\u1eafm \u0111\u1ebfn nhi\u1ec1u nh\u1ea5t k\u1ec3 t\u1eeb \u0111\u1ea7u th\u00e1ng 4 n\u0103m 2021.<\/p>\n\n\n\n

S\u1ef1 th\u00e0nh c\u00f4ng c\u1ee7a h\u00ecnh th\u1ee9c t\u1ed1ng ti\u1ec1n k\u00e9p v\u00e0o n\u0103m 2020 \u0111\u00e3 r\u00f5 r\u00e0ng, \u0111\u1eb7c bi\u1ec7t t\u1eeb khi b\u00f9ng ph\u00e1t \u0111\u1ea1i d\u1ecbch Covid-19. M\u1eb7c d\u00f9 kh\u00f4ng ph\u1ea3i t\u1ea5t c\u1ea3 c\u00e1c tr\u01b0\u1eddng h\u1ee3p v\u00e0 k\u1ebft qu\u1ea3 \u0111\u1ec1u \u0111\u01b0\u1ee3c b\u00e1o c\u00e1o v\u00e0 c\u00f4ng b\u1ed1, c\u00e1c th\u1ed1ng k\u00ea thu th\u1eadp t\u1eeb n\u0103m 2020 \u0111\u1ebfn 2021 minh h\u1ecda t\u00ednh quan tr\u1ecdng c\u1ee7a ph\u01b0\u01a1ng th\u1ee9c t\u1ea5n c\u00f4ng n\u00e0y. Trong kho\u1ea3ng th\u1eddi gian n\u00e0y, gi\u00e1 ti\u1ec1n chu\u1ed9c trung b\u00ecnh \u0111\u00e3 t\u0103ng l\u00ean 171%, \u0111\u1ea1t m\u1ee9c g\u1ea7n 310.000 \u0111\u00f4 la M\u1ef9.<\/p>\n\n\n\n

C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware di\u1ec5n ra v\u00e0o cu\u1ed1i n\u0103m 2020 v\u00e0 \u0111\u1ea7u n\u0103m 2021 \u0111\u00e3 ch\u1ec9 ra m\u1ed9t chu\u1ed7i t\u1ea5n c\u00f4ng m\u1edbi – m\u1ed9t c\u00e1ch ti\u1ebfp c\u1eadn m\u1edf r\u1ed9ng \u0111\u1ebfn h\u00ecnh th\u1ee9c t\u1ed1ng ti\u1ec1n k\u00e9p, bao g\u1ed3m m\u1ed9t m\u1ed1i \u0111e d\u1ecda b\u1ed5 sung v\u00e0 \u0111\u1ed9c \u0111\u00e1o trong quy tr\u00ecnh – m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng t\u1ed1ng ti\u1ec1n ba l\u1ea7n (Triple Extortion attack).<\/p>\n\n\n\n

N\u0103m 2021 \u0111\u00e3 ch\u1ee9ng ki\u1ebfn m\u1ed9t s\u1ed1 cu\u1ed9c t\u1ea5n c\u00f4ng ransomware n\u1ed5i ti\u1ebfng bao g\u1ed3m t\u1ea5n c\u00f4ng v\u00e0o Microsoft Exchange, m\u1ea1ng l\u01b0\u1edbi c\u1ee7a Colonial Pipeline, Th\u00e0nh ph\u1ed1 Tulsa, C\u00f4ng ty th\u1ecbt JBS Meat v\u00e0 Fujifilm.<\/p>\n\n\n\n

Nh\u00ecn chung, s\u1ef1 ph\u00e1t tri\u1ec3n v\u00e0 t\u0103ng c\u01b0\u1eddng c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware trong n\u0103m 2020 v\u00e0 n\u1eeda \u0111\u1ea7u n\u0103m 2021 \u0111\u00e3 t\u1ea1o ra m\u1ed9t th\u00e1ch th\u1ee9c \u0111\u00e1ng k\u1ec3 trong vi\u1ec7c b\u1ea3o v\u1ec7 an ninh m\u1ea1ng v\u00e0 \u0111\u00f2i h\u1ecfi s\u1ef1 t\u1eadp trung cao \u0111\u1ed1i v\u1edbi vi\u1ec7c n\u00e2ng cao kh\u1ea3 n\u0103ng ph\u00f2ng ng\u1eeba v\u00e0 \u1ee9ng ph\u00f3 c\u1ee7a t\u1ed5 ch\u1ee9c v\u00e0 c\u00e1 nh\u00e2n tr\u01b0\u1edbc m\u1ed1i \u0111e d\u1ecda ng\u00e0y c\u00e0ng ph\u1ee9c t\u1ea1p n\u00e0y.<\/p>\n\n\n\n

2. T\u1ea5n c\u00f4ng Ransomware v\u00e0o n\u0103m 2020<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

V\u00e0o cu\u1ed1i n\u0103m 2019 v\u00e0 \u0111\u1ea7u n\u0103m 2020, \u0111\u00e3 xu\u1ea5t hi\u1ec7n m\u1ed9t xu h\u01b0\u1edbng m\u1edbi trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware. Thay v\u00ec ch\u1ec9 gi\u1edbi h\u1ea1n vi\u1ec7c m\u00e3 h\u00f3a c\u00e1c t\u1eadp tin c\u1ee7a n\u1ea1n nh\u00e2n, c\u00e1c t\u00e1c gi\u1ea3 ransomware b\u1eaft \u0111\u1ea7u l\u1ea5y c\u1eafp d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m t\u1eeb c\u00e1c m\u1ee5c ti\u00eau c\u1ee7a h\u1ecd. C\u00e1c bi\u1ebfn th\u1ec3 ransomware c\u00f3 t\u00ednh n\u0103ng l\u1ea5y c\u1eafp d\u1eef li\u1ec7u ng\u01b0\u1eddi d\u00f9ng bao g\u1ed3m Ako, CL0P, DoppelPaymer, Maze, Pysa, Nefilim, Nemty, Netwalker, Ragnarlocker, REvil, Sekhmet v\u00e0 Snatch.<\/p>\n\n\n\n

\u0110i\u1ec1u n\u00e0y \u0111\u00e3 xu\u1ea5t hi\u1ec7n nh\u01b0 m\u1ed9t ph\u1ea3n \u1ee9ng khi c\u00e1c t\u1ed5 ch\u1ee9c t\u1eeb ch\u1ed1i thanh to\u00e1n ti\u1ec1n chu\u1ed9c sau khi b\u1ecb nhi\u1ec5m ransomware. M\u1eb7c d\u00f9 chi ph\u00ed kh\u1eafc ph\u1ee5c h\u1eadu qu\u1ea3 c\u1ee7a m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng ransomware th\u01b0\u1eddng cao h\u01a1n s\u1ed1 ti\u1ec1n ti\u1ec1n chu\u1ed9c \u0111\u01b0\u1ee3c y\u00eau c\u1ea7u, nh\u01b0ng th\u1ef1c t\u1ebf t\u1ed1t nh\u1ea5t l\u00e0 kh\u00f4ng n\u00ean tr\u1ea3 ti\u1ec1n chu\u1ed9c, v\u00ec \u0111i\u1ec1u n\u00e0y s\u1ebd gi\u00fap cho c\u00e1c t\u1ed9i ph\u1ea1m m\u1ea1ng ti\u1ebfp t\u1ee5c ho\u1ea1t \u0111\u1ed9ng v\u00e0 ti\u1ebfn h\u00e0nh th\u00eam c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng.<\/p>\n\n\n\n

B\u1eb1ng c\u00e1ch l\u1ea5y c\u1eafp d\u1eef li\u1ec7u t\u1eeb c\u00e1c m\u00e1y t\u00ednh b\u1ecb nhi\u1ec5m tr\u01b0\u1edbc khi m\u00e3 h\u00f3a, c\u00e1c t\u00e1c nh\u00e2n ransomware c\u00f3 th\u1ec3 \u0111e d\u1ecda ti\u1ebft l\u1ed9 d\u1eef li\u1ec7u n\u00e0y n\u1ebfu n\u1ea1n nh\u00e2n kh\u00f4ng \u0111\u1ed3ng \u00fd tr\u1ea3 ti\u1ec1n chu\u1ed9c. T\u00f9y thu\u1ed9c v\u00e0o lo\u1ea1i d\u1eef li\u1ec7u \u0111\u01b0\u1ee3c thu th\u1eadp v\u00e0 ti\u1ebft l\u1ed9, \u0111i\u1ec1u n\u00e0y c\u00f3 th\u1ec3 l\u00e0m cho m\u1ed9t t\u1ed5 ch\u1ee9c m\u1ea5t \u0111i l\u1ee3i th\u1ebf c\u1ea1nh tranh tr\u00ean th\u1ecb tr\u01b0\u1eddng ho\u1eb7c vi ph\u1ea1m c\u00e1c quy \u0111\u1ecbnh v\u1ec1 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u, ch\u1eb3ng h\u1ea1n nh\u01b0 Quy ch\u1ebf b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u chung (GDPR).<\/p>\n\n\n\n

3. T\u1ea5n c\u00f4ng Ransomware v\u00e0o n\u0103m 2019<\/strong><\/p>\n\n\n\n

N\u0103m 2019 tr\u1edf n\u00ean n\u1ed5i ti\u1ebfng v\u1edbi vi\u1ec7c c\u00e1c t\u00e1c nh\u00e2n ransomware t\u1eadp trung v\u00e0o c\u00e1c t\u1ed5 ch\u1ee9c quan tr\u1ecdng. Trong ba qu\u00fd \u0111\u1ea7u n\u0103m 2019, h\u01a1n 621 b\u1ec7nh vi\u1ec7n, tr\u01b0\u1eddng h\u1ecdc v\u00e0 th\u00e0nh ph\u1ed1 t\u1ea1i Hoa K\u1ef3 \u0111\u00e3 tr\u1edf th\u00e0nh n\u1ea1n nh\u00e2n c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware do Ryuk v\u00e0 c\u00e1c bi\u1ebfn th\u1ec3 ransomware kh\u00e1c g\u00e2y ra. Nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y \u0111\u01b0\u1ee3c \u01b0\u1edbc t\u00ednh c\u00f3 gi\u00e1 tr\u1ecb h\u00e0ng tr\u0103m tri\u1ec7u \u0111\u00f4 la v\u00e0 d\u1eabn \u0111\u1ebfn t\u00ecnh tr\u1ea1ng c\u00e1c th\u00e0nh ph\u1ed1 kh\u00f4ng th\u1ec3 cung c\u1ea5p d\u1ecbch v\u1ee5 cho c\u01b0 d\u00e2n, v\u00e0 c\u00e1c b\u1ec7nh vi\u1ec7n ph\u1ea3i h\u1ee7y b\u1ecf c\u00e1c ca ph\u1eabu thu\u1eadt kh\u00f4ng c\u1ea7n thi\u1ebft \u0111\u1ec3 cung c\u1ea5p ch\u0103m s\u00f3c c\u1ea5p c\u1ee9u cho b\u1ec7nh nh\u00e2n.<\/p>\n\n\n\n

Ph\u01b0\u01a1ng ph\u00e1p m\u1edbi n\u00e0y c\u1ee7a ransomware \u0111\u00e3 khai th\u00e1c s\u1ef1 quan tr\u1ecdng c\u1ee7a c\u00e1c d\u1ecbch v\u1ee5 m\u00e0 nh\u1eefng t\u1ed5 ch\u1ee9c n\u00e0y cung c\u1ea5p. Kh\u00e1c v\u1edbi m\u1ed9t s\u1ed1 doanh nghi\u1ec7p c\u00f3 th\u1ec3 ch\u1ecbu \u0111\u1ef1ng ho\u1ea1t \u0111\u1ed9ng suy gi\u1ea3m trong qu\u00e1 tr\u00ecnh ph\u1ee5c h\u1ed3i sau m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng, c\u00e1c th\u00e0nh ph\u1ed1, tr\u01b0\u1eddng h\u1ecdc v\u00e0 b\u1ec7nh vi\u1ec7n c\u1ea7n ph\u1ee5c h\u1ed3i ho\u1ea1t \u0111\u1ed9ng nhanh ch\u00f3ng v\u00e0 th\u01b0\u1eddng c\u00f3 truy c\u1eadp v\u00e0o qu\u1ef9 kh\u1ea9n c\u1ea5p. K\u1ebft qu\u1ea3 l\u00e0, c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware nh\u1eafm v\u00e0o nh\u1eefng t\u1ed5 ch\u1ee9c n\u00e0y th\u01b0\u1eddng th\u00e0nh c\u00f4ng v\u00e0 v\u1eabn ti\u1ebfp di\u1ec5n cho \u0111\u1ebfn ng\u00e0y nay.<\/p>\n\n\n\n

II. Top Ransomware ti\u00eau bi\u1ec3u qua t\u1eebng n\u0103m<\/strong><\/p>\n\n\n\n

1. GandCrab – n\u0103m 2018<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

V\u00e0o n\u0103m 2018, m\u1ed9t trong nh\u1eefng ransomware ho\u1ea1t \u0111\u1ed9ng m\u1ea1nh nh\u1ea5t v\u00e0 t\u1ea1o ra nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng r\u1ed9ng l\u1edbn l\u00e0 GandCrab. GandCrab xu\u1ea5t hi\u1ec7n v\u00e0o \u0111\u1ea7u n\u0103m 2018 v\u00e0 nhanh ch\u00f3ng tr\u1edf th\u00e0nh m\u1ed9t trong nh\u1eefng m\u1ed1i \u0111e d\u1ecda ch\u00ednh trong c\u1ed9ng \u0111\u1ed3ng an ninh m\u1ea1ng.<\/p>\n\n\n\n

Ph\u1ea1m vi t\u1ea5n c\u00f4ng: GandCrab nh\u1eafm v\u00e0o c\u1ea3 ng\u01b0\u1eddi d\u00f9ng c\u00e1 nh\u00e2n v\u00e0 t\u1ed5 ch\u1ee9c doanh nghi\u1ec7p. N\u00f3 l\u00e2y nhi\u1ec5m th\u00f4ng qua c\u00e1c t\u1eadp tin \u0111\u00ednh k\u00e8m email, c\u00e1c trang web b\u1ecb nhi\u1ec5m m\u00e3 \u0111\u1ed9c ho\u1eb7c c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt tr\u00ean h\u1ec7 th\u1ed1ng.<\/p>\n\n\n\n

Ti\u00eau chu\u1ea9n chu\u1ed9c ti\u1ec1n: GandCrab s\u1eed d\u1ee5ng m\u00e3 h\u00f3a RSA v\u00e0 AES m\u1ea1nh m\u1ebd \u0111\u1ec3 m\u00e3 h\u00f3a d\u1eef li\u1ec7u c\u1ee7a n\u1ea1n nh\u00e2n. Sau khi m\u00e3 h\u00f3a, n\u00f3 \u0111\u00f2i ti\u1ec1n chu\u1ed9c theo \u0111\u1ecbnh d\u1ea1ng ti\u1ec1n \u0111i\u1ec7n t\u1eed, ch\u1eb3ng h\u1ea1n nh\u01b0 Bitcoin, \u0111\u1ec3 cung c\u1ea5p kh\u00f3a gi\u1ea3i m\u00e3.<\/p>\n\n\n\n

Phi\u00ean b\u1ea3n v\u00e0 c\u1eadp nh\u1eadt: C\u00e1c phi\u00ean b\u1ea3n v\u00e0 bi\u1ebfn th\u1ec3 c\u1ee7a GandCrab li\u00ean t\u1ee5c xu\u1ea5t hi\u1ec7n, cho th\u1ea5y nh\u1eefng n\u1ed7 l\u1ef1c kh\u00f4ng ng\u1eebng c\u1ee7a t\u00e1c gi\u1ea3 \u0111\u1ec3 thay \u0111\u1ed5i v\u00e0 c\u1ea3i ti\u1ebfn m\u00e3 \u0111\u1ed9c n\u00e0y, t\u1eeb \u0111\u00f3 l\u00e0m cho vi\u1ec7c ph\u00e1t hi\u1ec7n v\u00e0 ch\u1ed1ng l\u1ea1i n\u00f3 tr\u1edf n\u00ean kh\u00f3 kh\u0103n h\u01a1n.<\/p>\n\n\n\n

M\u00f4 h\u00ecnh kinh doanh RaaS: GandCrab s\u1eed d\u1ee5ng m\u00f4 h\u00ecnh kinh doanh Ransomware-as-a-Service (RaaS), cho ph\u00e9p c\u00e1c t\u00ean t\u1ed9i ph\u1ea1m mua m\u00e3 \u0111\u1ed9c v\u00e0 s\u1eed d\u1ee5ng n\u00f3 trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng. \u0110i\u1ec1u n\u00e0y \u0111\u00e3 gi\u00fap lan r\u1ed9ng ph\u1ea1m vi t\u1ea5n c\u00f4ng v\u00e0 l\u00e0m t\u0103ng nguy c\u01a1 c\u1ee7a n\u00f3.<\/p>\n\n\n\n

2. Ryuk – n\u0103m 2019<\/strong><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Tr\u00e1i ng\u01b0\u1ee3c v\u1edbi h\u1ea7u h\u1ebft c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware nh\u1eb1m v\u00e0o c\u00e1c c\u00e1 nh\u00e2n v\u00e0 doanh nghi\u1ec7p ng\u1eabu nhi\u00ean, ransomware Ryuk \u0111\u00e3 h\u01b0\u1edbng t\u1edbi c\u00e1c m\u1ee5c ti\u00eau cao h\u01a1n v\u00e0 c\u00f3 m\u1ee5c \u0111\u00edch c\u1ee5 th\u1ec3. Nh\u1eefng k\u1ebb t\u1ed9i ph\u1ea1m m\u1ea1ng \u0111\u1ee9ng sau cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y \u0111\u00e3 nh\u1eafm \u0111\u1ebfn c\u00e1c n\u1ea1n nh\u00e2n c\u00f3 ho\u1ea1t \u0111\u1ed9ng kinh doanh quan tr\u1ecdng, khi g\u1eb7p ngay c\u1ea3 m\u1ed9t th\u1eddi gian gi\u00e1n \u0111o\u1ea1n nh\u1ecf c\u0169ng c\u00f3 th\u1ec3 g\u00e2y \u1ea3nh h\u01b0\u1edfng nghi\u00eam tr\u1ecdng.<\/p>\n\n\n\n

Ryuk \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 m\u00e3 h\u00f3a m\u00e1y ch\u1ee7 c\u1ee7a c\u00e1c c\u00f4ng ty v\u00e0 l\u00e0m gi\u00e1n \u0111o\u1ea1n ho\u1ea1t \u0111\u1ed9ng kinh doanh cho \u0111\u1ebfn khi ti\u1ec1n chu\u1ed9c \u0111\u01b0\u1ee3c thanh to\u00e1n, thay v\u00ec \u0111\u00e1nh c\u1eafp ho\u1eb7c ph\u00e1 ho\u1ea1i d\u1eef li\u1ec7u c\u00e1 nh\u00e2n c\u1ee7a m\u1ed9t c\u00e1 nh\u00e2n.<\/p>\n\n\n\n

C\u00e1c \u0111\u1ed1i t\u01b0\u1ee3ng b\u1ecb nh\u1eafm \u0111\u1ebfn bao g\u1ed3m c\u00e1c t\u1edd b\u00e1o, trong \u0111\u00f3 c\u00f3 t\u1ea5t c\u1ea3 c\u00e1c t\u1edd b\u00e1o c\u1ee7a h\u00e3ng Tribune, v\u00e0 m\u1ed9t c\u00f4ng ty cung c\u1ea5p d\u1ecbch v\u1ee5 n\u01b0\u1edbc \u1edf B\u1eafc Carolina. C\u00e1c t\u1edd b\u00e1o b\u1ecb \u1ea3nh h\u01b0\u1edfng \u0111\u00e3 ph\u1ea3i gi\u1ea3m b\u1ea3n tin h\u00e0ng ng\u00e0y m\u00e0 kh\u00f4ng bao g\u1ed3m qu\u1ea3ng c\u00e1o ph\u00e2n lo\u1ea1i \u0111\u00e3 thanh to\u00e1n.<\/p>\n\n\n\n

Ryuk \u0111\u00e3 x\u00e2m nh\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng th\u00f4ng qua ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 TrickBot v\u00e0 ph\u1ea7n m\u1ec1m desktop t\u1eeb xa. Sau khi ch\u1eb7n truy c\u1eadp v\u00e0o m\u00e1y ch\u1ee7, Ryuk y\u00eau c\u1ea7u m\u1ed9t kho\u1ea3n ti\u1ec1n chu\u1ed9c nh\u1ea5t \u0111\u1ecbnh.<\/p>\n\n\n\n

Ngo\u00e0i vi\u1ec7c v\u00f4 hi\u1ec7u h\u00f3a m\u00e1y ch\u1ee7, l\u00e2y nhi\u1ec5m c\u00e1c \u0111i\u1ec3m cu\u1ed1i v\u00e0 m\u00e3 h\u00f3a c\u00e1c b\u1ea3n sao l\u01b0u, Ryuk c\u00f2n t\u1eaft t\u00f9y ch\u1ecdn kh\u00f4i ph\u1ee5c h\u1ec7 th\u1ed1ng Windows OS \u0111\u1ec3 ng\u0103n n\u1ea1n nh\u00e2n ph\u1ee5c h\u1ed3i t\u1eeb cu\u1ed9c t\u1ea5n c\u00f4ng.<\/p>\n\n\n\n

M\u1eb7c d\u00f9 c\u00e1c b\u1ea3n v\u00e1 \u0111\u00e3 \u0111\u01b0\u1ee3c t\u1ea1o ra \u0111\u1ec3 \u0111\u1ed1i ph\u00f3 v\u1edbi cu\u1ed9c t\u1ea5n c\u00f4ng khi malware n\u00e0y \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n, ch\u00fang kh\u00f4ng hi\u1ec7u qu\u1ea3. Ngay khi m\u00e1y ch\u1ee7 tr\u1edf l\u1ea1i ho\u1ea1t \u0111\u1ed9ng, Ryuk b\u1eaft \u0111\u1ea7u l\u00e2y nhi\u1ec5m l\u1ea1i to\u00e0n b\u1ed9 m\u1ea1ng m\u00e1y ch\u1ee7.<\/p>\n\n\n\n

C\u00e1c h\u00e3ng b\u1ea3o m\u1eadt h\u00e0ng \u0111\u1ea7u nh\u01b0 Sophos, Kaspersky, McAfee, AVG : Ryuk l\u00e0 m\u1ed9t m\u00e3 \u0111\u1ed9c ransomware n\u1ed5i ti\u1ebfng v\u00e0 r\u1ea5t nguy hi\u1ec3m. N\u00f3 \u0111\u00e3 g\u00e2y ra nhi\u1ec1u cu\u1ed9c t\u1ea5n c\u00f4ng ch\u00ednh v\u00e0o c\u00e1c t\u1ed5 ch\u1ee9c v\u00e0 doanh nghi\u1ec7p tr\u00ean to\u00e0n th\u1ebf gi\u1edbi.<\/p>\n\n\n\n

3. REvil\/ Sodinokibi – n\u0103m 2019<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Ransomware REvil, c\u0169ng \u0111\u01b0\u1ee3c bi\u1ebft \u0111\u1ebfn v\u1edbi t\u00ean g\u1ecdi Sodinokibi, l\u00e0 m\u1ed9t lo\u1ea1i m\u00e3 \u0111\u1ed9c ransomware n\u1ed5i ti\u1ebfng v\u00e0 nguy hi\u1ec3m. \u0110\u00e2y l\u00e0 m\u1ed9t trong nh\u1eefng ransomware h\u00e0ng \u0111\u1ea7u \u0111\u01b0\u1ee3c ph\u00e1t tri\u1ec3n v\u00e0 s\u1eed d\u1ee5ng b\u1edfi c\u00e1c t\u00ean t\u1ed9i ph\u1ea1m m\u1ea1ng chuy\u00ean nghi\u1ec7p \u0111\u1ec3 t\u1ea5n c\u00f4ng c\u00e1c t\u1ed5 ch\u1ee9c v\u00e0 doanh nghi\u1ec7p tr\u00ean to\u00e0n th\u1ebf gi\u1edbi. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 m\u1ed9t s\u1ed1 th\u00f4ng tin quan tr\u1ecdng v\u1ec1 ransomware REvil:<\/p>\n\n\n\n

Ph\u01b0\u01a1ng th\u1ee9c t\u1ea5n c\u00f4ng: REvil th\u01b0\u1eddng l\u00e2y nhi\u1ec5m th\u00f4ng qua c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt trong h\u1ec7 th\u1ed1ng, email l\u1eeba \u0111\u1ea3o, ho\u1eb7c s\u1eed d\u1ee5ng c\u00e1c ph\u01b0\u01a1ng th\u1ee9c t\u1ea5n c\u00f4ng kh\u00e1c nh\u01b0 ph\u1ea3n h\u1ed3i ki\u1ec3u tr\u00f2 chuy\u1ec7n (chat-based exploitation). M\u1ed9t khi x\u00e2m nh\u1eadp th\u00e0nh c\u00f4ng v\u00e0o h\u1ec7 th\u1ed1ng m\u1ee5c ti\u00eau, REvil s\u1ebd m\u00e3 h\u00f3a c\u00e1c t\u1eadp tin v\u00e0 d\u1eef li\u1ec7u quan tr\u1ecdng c\u1ee7a n\u1ea1n nh\u00e2n.<\/p>\n\n\n\n

Ti\u00eau chu\u1ea9n chu\u1ed9c ti\u1ec1n: Sau khi m\u00e3 h\u00f3a d\u1eef li\u1ec7u, REvil s\u1ebd y\u00eau c\u1ea7u m\u1ed9t kho\u1ea3n ti\u1ec1n chu\u1ed9c l\u1edbn \u0111\u1ec3 cung c\u1ea5p ch\u00eca kh\u00f3a gi\u1ea3i m\u00e3. S\u1ed1 ti\u1ec1n chu\u1ed9c th\u01b0\u1eddng \u0111\u01b0\u1ee3c y\u00eau c\u1ea7u th\u00f4ng qua ti\u1ec1n \u0111i\u1ec7n t\u1eed nh\u01b0 Bitcoin, Monero ho\u1eb7c c\u00e1c h\u00ecnh th\u1ee9c thanh to\u00e1n kh\u00f3 theo d\u00f5i.<\/p>\n\n\n\n

H\u1eadu qu\u1ea3 c\u1ee7a t\u1ea5n c\u00f4ng: REvil \u0111\u00e3 g\u00e2y ra nhi\u1ec1u cu\u1ed9c t\u1ea5n c\u00f4ng l\u1edbn v\u00e0 \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn nhi\u1ec1u t\u1ed5 ch\u1ee9c v\u00e0 doanh nghi\u1ec7p tr\u00ean kh\u1eafp th\u1ebf gi\u1edbi. M\u1ed9t s\u1ed1 cu\u1ed9c t\u1ea5n c\u00f4ng n\u1ed5i ti\u1ebfng c\u1ee7a REvil bao g\u1ed3m vi\u1ec7c t\u1ea5n c\u00f4ng c\u00e1c c\u01a1 quan ch\u00ednh ph\u1ee7, c\u00e1c c\u00f4ng ty l\u1edbn, tr\u01b0\u1eddng h\u1ecdc, v\u00e0 c\u1ea3 b\u1ec7nh vi\u1ec7n.<\/p>\n\n\n\n

Xu\u1ea5t hi\u1ec7n trong c\u00e1c v\u1ee5 t\u1ea5n c\u00f4ng n\u1ed5i ti\u1ebfng: REvil \u0111\u00e3 tham gia v\u00e0o nhi\u1ec1u cu\u1ed9c t\u1ea5n c\u00f4ng n\u1ed5i ti\u1ebfng v\u00e0 t\u1ea1o ra nh\u1eefng v\u1ee5 vi\u1ec7c l\u1edbn, g\u00e2y t\u1ed5n h\u1ea1i kinh t\u1ebf v\u00e0 t\u1ea1o ra r\u1ee7i ro l\u1edbn \u0111\u1ed1i v\u1edbi c\u00e1c doanh nghi\u1ec7p v\u00e0 c\u00e1 nh\u00e2n.<\/p>\n\n\n\n

C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng c\u1ee7a ransomware REvil \u0111\u00e3 \u0111\u1ea9y c\u00e1c chuy\u00ean gia an ninh m\u1ea1ng v\u00e0 t\u1ed5 ch\u1ee9c b\u1ea3o m\u1eadt ph\u1ea3i n\u1ed7 l\u1ef1c \u0111\u1ec3 ng\u0103n ch\u1eb7n v\u00e0 ch\u1ed1ng l\u1ea1i m\u1ed1i \u0111e d\u1ecda ng\u00e0y c\u00e0ng ph\u1ee9c t\u1ea1p n\u00e0y. Vi\u1ec7c t\u0103ng c\u01b0\u1eddng c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o m\u1eadt, c\u1eadp nh\u1eadt th\u01b0\u1eddng xuy\u00ean v\u00e0 h\u1ec7 th\u1ed1ng sao l\u01b0u \u0111\u1ec1u l\u00e0 c\u00e1ch \u0111\u1ec3 gi\u1ea3m thi\u1ec3u nguy c\u01a1 b\u1ecb t\u1ea5n c\u00f4ng b\u1edfi ransomware nh\u01b0 REvil.<\/p>\n\n\n\n

4. PureLocker – n\u0103m 2020<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

PureLocker l\u00e0 m\u1ed9t lo\u1ea1i m\u00e3 \u0111\u1ed9c ransomware \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 m\u00e3 h\u00f3a to\u00e0n b\u1ed9 m\u00e1y ch\u1ee7 v\u00e0 y\u00eau c\u1ea7u ti\u1ec1n chu\u1ed9c \u0111\u1ec3 kh\u00f4i ph\u1ee5c quy\u1ec1n truy c\u1eadp. M\u00e3 \u0111\u1ed9c n\u00e0y \u0111\u01b0\u1ee3c t\u1ea1o ra v\u1edbi m\u1ee5c ti\u00eau \u0111\u1eb7c bi\u1ec7t l\u00e0 kh\u00f4ng b\u1ecb ph\u00e1t hi\u1ec7n b\u1eb1ng c\u00e1ch che gi\u1ea5u h\u00e0nh vi ph\u1ea1m trong m\u00f4i tr\u01b0\u1eddng sandbox v\u00e0 gi\u1ea3 v\u1edd l\u00e0 c\u00e1c ch\u1ee9c n\u0103ng b\u00ecnh th\u01b0\u1eddng. Sau khi th\u1ef1c thi \u0111\u01b0\u1ee3c m\u1ee5c \u0111\u00edch, m\u00e3 \u0111\u1ed9c c\u00f2n t\u1ef1 x\u00f3a ch\u00ednh n\u00f3.<\/p>\n\n\n\n

PureLocker th\u01b0\u1eddng t\u1ea5n c\u00f4ng v\u00e0o m\u00e1y ch\u1ee7 c\u1ee7a c\u00e1c t\u1eadp \u0111o\u00e0n l\u1edbn, v\u1edbi k\u1ef3 v\u1ecdng r\u1eb1ng c\u00e1c t\u1ea5n c\u00f4ng n\u00e0y s\u1ebd \u0111em l\u1ea1i kho\u1ea3n ti\u1ec1n chu\u1ed9c \u0111\u00e1ng k\u1ec3.<\/p>\n\n\n\n

Ph\u00e2n t\u00edch k\u1ef9 l\u01b0\u1ee1ng \u0111\u00e3 gi\u00fap c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u v\u1ec1 m\u1eadt m\u00e3 t\u1eeb Intezer v\u00e0 IBM X-Force \u0111\u1eb7t t\u00ean cho lo\u1ea1i m\u00e3 \u0111\u1ed9c n\u00e0y l\u00e0 PureLocker do n\u00f3 \u0111\u01b0\u1ee3c vi\u1ebft b\u1eb1ng ng\u00f4n ng\u1eef l\u1eadp tr\u00ecnh PureBasic.<\/p>\n\n\n\n

Vi\u1ec7c s\u1eed d\u1ee5ng PureBasic \u0111\u1ec3 vi\u1ebft m\u00e3 \u0111\u1ed9c kh\u00f4ng ph\u1ea3i l\u00e0 ph\u1ed5 bi\u1ebfn, nh\u01b0ng \u0111i\u1ec1u n\u00e0y mang l\u1ea1i l\u1ee3i th\u1ebf cho k\u1ebb t\u1ea5n c\u00f4ng: vi\u1ec7c ph\u00e1t hi\u1ec7n m\u00e3 \u0111\u1ed9c vi\u1ebft b\u1eb1ng PureBasic r\u1ea5t kh\u00f3 kh\u0103n. C\u00e1c ch\u01b0\u01a1ng tr\u00ecnh vi\u1ebft b\u1eb1ng PureBasic c\u0169ng c\u00f3 th\u1ec3 d\u1ec5 d\u00e0ng ch\u1ea1y tr\u00ean nhi\u1ec1u n\u1ec1n t\u1ea3ng.<\/p>\n\n\n\n

PureLocker v\u1eabn \u0111ang \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng b\u1edfi c\u00e1c t\u1ed5 ch\u1ee9c t\u1ed9i ph\u1ea1m m\u1ea1ng l\u1edbn. Chuy\u00ean gia tin r\u1eb1ng n\u00f3 \u0111ang \u0111\u01b0\u1ee3c b\u00e1n d\u01b0\u1edbi d\u1ea1ng d\u1ecbch v\u1ee5 cho c\u00e1c t\u1ed5 ch\u1ee9c t\u1ed9i ph\u1ea1m m\u1ea1ng c\u00f3 ki\u1ebfn th\u1ee9c v\u00e0 k\u1ef9 n\u0103ng c\u1ea7n thi\u1ebft \u0111\u1ec3 t\u1ea5n c\u00f4ng c\u00e1c c\u00f4ng ty l\u1edbn. \u0110\u00e1ng ng\u1ea1c nhi\u00ean, hi\u1ec7n t\u01b0\u1ee3ng ransomware-as-a-service (RaaS) \u0111\u00e3 tr\u1edf n\u00ean ph\u1ed5 bi\u1ebfn.<\/p>\n\n\n\n

C\u00e1c chuy\u00ean gia an ninh m\u1ea1ng kh\u00f4ng ch\u1eafc ch\u1eafn v\u1ec1 c\u00e1ch m\u00e0 PureLocker x\u00e2m nh\u1eadp v\u00e0o m\u00e1y ch\u1ee7; do \u0111\u00f3, \u00e1p d\u1ee5ng ph\u01b0\u01a1ng ph\u00e1p b\u1ea3o m\u1eadt m\u1ea1ng kh\u00f4ng tin t\u01b0\u1edfng (zero-trust) l\u00e0 c\u00e1ch t\u1ed1t nh\u1ea5t \u0111\u1ec3 b\u1ea3o v\u1ec7 kh\u1ecfi c\u00e1c m\u1ed1i \u0111e d\u1ecda kh\u00f4ng r\u00f5 ngu\u1ed3n g\u1ed1c.<\/p>\n\n\n\n

<\/p>\n\n\n\n

<\/p>\n\n\n\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

T\u1ed5ng quan : B\u00f9ng n\u1ed5 c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ransomware m\u1edbi nh\u1ea5t \u0111ang g\u00e2y r\u00fang \u0111\u1ed9ng v\u00e0 t\u1ea1o ra nh\u1eefng \u0111\u1ee3t c\u1ea3nh b\u00e1o tr\u1ea7m tr\u1ecdng v\u1ec1 m\u1ed1i \u0111e d\u1ecda an ninh m\u1ea1ng. Ransomware – lo\u1ea1i ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i , t\u1ea5n c\u00f4ng b\u1eb1ng c\u00e1ch m\u00e3 h\u00f3a d\u1eef li\u1ec7u quan tr\u1ecdng c\u1ee7a c\u00e1c t\u1ed5 ch\u1ee9c v\u00e0 […]<\/p>\n","protected":false},"author":11,"featured_media":7219,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[18,17],"tags":[197,116,200,92,176,165,97],"class_list":["post-7211","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-endpoint","category-bao-mat","tag-gandcrab","tag-malware","tag-purelocker","tag-ransomware","tag-revil-sodinokibi","tag-ryuk-ransomware","tag-sophos-endpoint","entry","has-media"],"_links":{"self":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7211","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/comments?post=7211"}],"version-history":[{"count":0,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7211\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media\/7219"}],"wp:attachment":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media?parent=7211"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/categories?post=7211"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/tags?post=7211"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}