Key Takeaways
- Cov kws tshawb fawb Cybersecurity tau pom tus kab mob tshiab, tab sis tsis tuaj yeem nthuav tawm nws lub hom phiaj.
- Kev nkag siab txog qhov kawg pab tab sis tsis yog qhov tseem ceeb los txwv nws txoj kev sib kis, qhia lwm tus kws tshaj lij.
- Tib neeg raug qhia kom tsis txhob ntsaws cov tsav tsis paub tshem tawm hauv lawv lub PC, vim tias cov malware kis ntawm tus kab mob USB disks.
Muaj qhov tshiab Windows malware ua qhov sib tw, tab sis tsis muaj leej twg paub tseeb ntawm nws lub hom phiaj.
Cov kws tshawb fawb txog Cybersecurity los ntawm Red Canary tsis ntev los no tau tshawb pom tus kab mob zoo li kab mob tshiab uas lawv tau hu ua Raspberry Robin, uas kis tau los ntawm cov kab mob USB. Thaum lawv tuaj yeem soj ntsuam thiab kawm txog kev ua haujlwm ntawm malware, lawv tseem tsis tau paub txog nws lub hom phiaj kawg.
"[Raspberry Robin] yog ib zaj dab neeg nthuav dav uas nws qhov kev hem thawj kawg tseem tsis tau txiav txim siab," Tim Helming, tus kws tshaj lij kev nyab xeeb nrog DomainTools, hais rau Lifewire hauv email. "Muaj ntau yam tsis paub los ntaus lub khawm ceeb, tab sis nws yog ib qho kev ceeb toom zoo uas tsim kev tshawb pom muaj zog, thiab ua tib zoo ntsuas kev nyab xeeb, tsis tau ua qhov tseem ceeb dua."
Shooting in the Dark
Kev nkag siab txog malware lub hom phiaj kawg pab ntsuas nws qib kev pheej hmoo, piav qhia Helming.
Piv txwv li, qee zaum cov khoom siv cuam tshuam, xws li QNAP network-txuas cov khoom siv hauv cov ntaub ntawv ntawm Raspberry Robin, tau raug xaiv los ua cov botnets loj los txhim kho kev tsis lees paub kev pabcuam (DDoS) cov phiaj xwm. Los yog, cov khoom siv cuam tshuam tuaj yeem siv rau kev tsuas cryptocurrency.
Nyob rau hauv ob qho tib si, yuav tsis muaj kev hem thawj tam sim ntawm cov ntaub ntawv poob rau cov cuab yeej muaj kab mob. Txawm li cas los xij, yog tias Raspberry Robin tab tom pab sib sau ua ke ransomware botnet, tom qab ntawd theem kev pheej hmoo rau ib qho khoom siv muaj kab mob, thiab thaj chaw hauv cheeb tsam nws txuas nrog, tuaj yeem siab heev, hais tias Helming.
Félix Aimé, hem Kev Txawj Ntse thiab tus kws tshawb fawb kev nyab xeeb ntawm Sekoia hais rau Lifewire ntawm Twitter DMs tias "kev txawj ntse tsis sib xws" hauv kev tshuaj xyuas malware tsis tau hnov txog hauv kev lag luam. Kev txhawj xeeb, txawm li cas los xij, nws tau hais ntxiv tias Raspberry Robin raug kuaj pom los ntawm ntau qhov chaw cybersecurity (Sekoia taug qab nws raws li Qnap worm), uas qhia nws tias botnet tus malware tab tom sim tsim yog loj heev, thiab tej zaum muaj xws li "ntau pua txhiab. ntawm cov tswv tsev tsis sib haum xeeb."
Qhov tseem ceeb hauv Raspberry Robin dabneeg rau Sai Huda, CEO ntawm cybersecurity lub tuam txhab CyberCatch, yog kev siv USB drives, uas zais zais cov malware uas tom qab ntawd tsim kev txuas mus ntxiv rau hauv is taws nem mus rub tawm lwm malware uas tom qab ntawd sib txuas lus nrog tus attacker tus servers.
"USBs yog qhov txaus ntshai thiab yuav tsum tsis txhob tso cai," hais rau Dr. Magda Chelly, Tus Thawj Saib Xyuas Kev Ruaj Ntseg, ntawm Lub Luag Haujlwm cyber. "Lawv muab txoj hauv kev rau malware kom kis tau yooj yim ntawm ib lub computer mus rau lwm qhov. Qhov no yog vim li cas nws tseem ceeb heev kom muaj kev ruaj ntseg software nruab rau hauv koj lub computer thiab tsis txhob ntsaws USB uas koj tsis ntseeg."
Hauv kev sib pauv email nrog Lifewire, Simon Hartley, CISSP thiab tus kws tshaj lij cybersecurity nrog Quantuum tau hais tias USB drives yog ib feem ntawm cov khoom lag luam uas cov yeeb ncuab siv los rhuav tshem qhov hu ua "air gap" kev ruaj ntseg rau cov tshuab tsis txuas nrog pej xeem. internet.
"Lawv raug txwv tsis pub dhau qhov chaw muaj kev cuam tshuam lossis xav tau kev tswj hwm tshwj xeeb thiab pov thawj vim tias muaj peev xwm ntxiv lossis tshem tawm cov ntaub ntawv hauv txoj hauv kev dhau los nrog rau kev qhia txog kev zais malware, "hais Hartley.
Kev xav tsis tseem ceeb
Melissa Bischoping, Endpoint Security Research Specialist ntawm Tanium, hais rau Lifewire ntawm email tias thaum nkag siab txog qhov kev xav ntawm malware tuaj yeem pab tau, cov kws tshawb fawb muaj ntau lub peev xwm los tshuaj xyuas tus cwj pwm thiab cov khoom cuav uas malware tawm hauv qab, tsim kom muaj peev xwm tshawb pom.
"Txawm hais tias kev nkag siab qhov kev xav tuaj yeem yog ib qho cuab yeej tseem ceeb rau kev tsim qauv kev hem thawj thiab kev tshawb fawb ntxiv, qhov tsis muaj qhov kev txawj ntse no tsis ua rau muaj txiaj ntsig ntawm cov khoom qub uas twb muaj lawm thiab muaj peev xwm tshawb pom," piav qhia Bischoping.
Kumar Saurabh, CEO thiab co-founder ntawm LogicHub, pom zoo. Nws hais rau Lifewire hla email tias sim nkag siab lub hom phiaj lossis kev xav ntawm cov neeg nyiag nkas ua rau cov xov xwm nthuav, tab sis tsis muaj txiaj ntsig zoo los ntawm kev saib xyuas kev nyab xeeb.
Saurabh ntxiv Raspberry Robin malware muaj tag nrho cov yam ntxwv ntawm kev tawm tsam txaus ntshai, suav nrog kev ua haujlwm ntawm cov chaw taws teeb, kev ua siab ntev, thiab kev khiav tawm, uas yog cov pov thawj txaus los ua suab nrov, thiab ua nruj ua tsiv los tiv thaiv nws kev sib kis.
"Nws yog ib qho tseem ceeb rau pab pawg cybersecurity yuav tsum tau nqis tes ua sai li sai tau thaum lawv pom qhov ua ntej ntawm kev tawm tsam, "Saurabh hais ntxiv. "Yog tias koj tos kom nkag siab lub hom phiaj kawg lossis kev xav, xws li ransomware, cov ntaub ntawv tub sab, lossis kev pabcuam cuam tshuam, tej zaum nws yuav lig dhau lawm."
