国产2020精品视频免费播放,久久看久久做久久精品,欧美日韩精品视频一区二区,chinese fuck xxxx hd

防范蠕蟲式勒索軟件病毒攻擊的安全預(yù)警通告

 

文章摘要:

 

    1、病毒爆發(fā)

    2、漏洞參考

    3、重點(diǎn):防范措施

       3.1 一般防范措施

       3.2 Win7/8/10 的命令行防護(hù)

       3.3 針對(duì)XP/2003系統(tǒng)的命令行防護(hù)

       3.4 徹底解決辦法

 
 
1.病毒爆發(fā)

 

5月12日全球爆發(fā)勒索軟件攻擊潮,根據(jù)此次攻擊軟件的傳播和危害方式,我們稱之為蠕蟲式勒索軟件病毒。

2017年4月黑客組織Shadow Brokers利用從美國國家安全局(NSA)泄露的多個(gè)Windows黑客工具并公布到互聯(lián)網(wǎng)上,此輪攻擊正是利用其中名為“永恒之藍(lán)(EternalBlue)”的黑客工具發(fā)起的。被攻擊電腦被鎖定,文件被加密,攻擊者要求受害者付錢才能通過攻擊者提供的秘鑰恢復(fù)訪問。

研究發(fā)現(xiàn),目前發(fā)現(xiàn)的蠕蟲會(huì)掃描開放445文件共享端口的Windows機(jī)器,用戶的主機(jī)只要連接到互聯(lián)網(wǎng),病毒會(huì)自動(dòng)在有漏洞的電腦和服務(wù)器中植入執(zhí)行勒索程序、遠(yuǎn)程控制木馬、虛擬貨幣挖礦機(jī)等惡意程序。

該由NSA泄露工具所引發(fā)的蠕蟲攻擊事件已經(jīng)造成非常嚴(yán)重的現(xiàn)實(shí)危害,無論個(gè)人還是企業(yè)內(nèi)網(wǎng)也已經(jīng)面臨此類威脅。

本次蠕蟲病毒的爆發(fā)是利用了微軟操作系統(tǒng)的MS17-010漏洞,CVE:CVE-2017-0144。

 

2.漏洞參考

 

關(guān)于漏洞MS17-010的說明,請(qǐng)參見:

https://support.microsoft.com/zh-cn/help/4012598/title

 

3. 防范措施

 

3.1 一般防范措施

1、備份重要文件

2、打開系統(tǒng)自動(dòng)更新,并檢測更新進(jìn)行安裝

3、開啟系統(tǒng)防火墻,利用系統(tǒng)防火墻高級(jí)設(shè)置阻止向 445 端口進(jìn)行連接(該操作會(huì)影響使用445 端口的服務(wù))

 

3.2 Win7/8/10的命令行防護(hù)

1、以管理員權(quán)限運(yùn)行cmd命令行:

 

 

2、復(fù)制下面兩條命令,每次一條,拷貝到命令行窗口:

netsh firewall set opmode enable

netsh advfirewall firewall add rule name="Deny445" dir=in protocol=tcp localport=445 action=block

以上命令在win7/8/10 ,server 2008 經(jīng)過測試。

 

3.3 針對(duì)XP/2003系統(tǒng)的命令行防護(hù)

1、以管理員登錄并運(yùn)行cmd命令行

2、復(fù)制下面的四條命令,每次一條,拷貝到命令行窗口:

netsh firewall set opmode enable

net stop rdr

net stop srv

net stop netbt

操作如下圖(要回答Y):

 

3.4 徹底解決辦法

微軟官方補(bǔ)丁地址:

https://support.microsoft.com/zh-cn/help/4012598/title(優(yōu)先在線更新,如暫停支持請(qǐng)與支持列表中手動(dòng)下載更新)

重要:先確認(rèn)已經(jīng)關(guān)閉445端口,再在線更新!(手動(dòng)更新請(qǐng)與安全網(wǎng)絡(luò)環(huán)境下下載更新包,主機(jī)斷網(wǎng)后執(zhí)行更新補(bǔ)?。?/span>

 

其它重要補(bǔ)丁鏈接:

2017513日微軟為已停止服務(wù)的XP和部分服務(wù)器版操作系統(tǒng)發(fā)布了特別補(bǔ)丁,下載地址如下:

winxp特別補(bǔ)丁KB4012598
winxp332 SecurityUpdate for Windows XP SP3 (KB4012598)鏈接:

http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsxp-kb4012598-x86-custom-chs_dca9b5adddad778cfd4b7349ff54b51677f36775.exe

winxp264 SecurityUpdate for Windows XP SP2 for x64-based Systems (KB4012598)鏈接:

http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211.exe

 

win2003特別補(bǔ)丁KB4012598

2003SP232 SecurityUpdate for Windows Server 2003 (KB4012598)鏈接:

http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x86-custom-chs_b45d2d8c83583053d37b20edf5f041ecede54b80.exe

2003SP264 SecurityUpdate for Windows Server 2003 for x64-based Systems (KB4012598)鏈接:

http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x64-custom-chs_68a2895db36e911af59c2ee133baee8de11316b9.exe

 

win2008R2補(bǔ)丁 KB4012212KB4012215

March,2017 Security Only Quality Update for Windows Server 2008 R2 for x64-basedSystems (KB4012212)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x64_2decefaa02e2058dcd965702509a992d8c4e92b3.msu

March,2017 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-basedSystems (KB4012215)鏈接:

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/03/windows6.1-kb4012215-x64_a777b8c251dcd8378ecdafa81aefbe7f9009c72b.msu

 

win7補(bǔ)丁 KB4012212、KB4012215
win7 32

March,2017 Security Only Quality Update for Windows 7 (KB4012212)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x86_6bb04d3971bb58ae4bac44219e7169812914df3f.msu

March,2017 Security Monthly Quality Rollup for Windows 7 (KB4012215)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/03/windows6.1-kb4012215-x86_e5918381cef63f171a74418f12143dabe5561a66.msu

win7 64

March,2017 Security Only Quality Update for Windows 7 for x64-based Systems(KB4012212)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x64_2decefaa02e2058dcd965702509a992d8c4e92b3.msu

March,2017 Security Monthly Quality Rollup for Windows 7 for x64-based Systems(KB4012215)鏈接:

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/03/windows6.1-kb4012215-x64_a777b8c251dcd8378ecdafa81aefbe7f9009c72b.msu

 

win10 1607補(bǔ)丁 KB4013429

win10 1607 32位

CumulativeUpdate for Windows 10 Version 1607 (KB4013429)鏈接:

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/03/windows10.0-kb4013429-x86_8b376e3d0bff862d803404902c4191587afbf065.msu

win10 1607 64

CumulativeUpdate for Windows 10 Version 1607 for x64-based Systems (KB4013429)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/03/windows10.0-kb4013429-x64_ddc8596f88577ab739cade1d365956a74598e710.msu

 

win2012R2補(bǔ)丁 KB4012213、KB4012216

March,2017 Security Only Quality Update for Windows Server 2012 R2 (KB4012213)鏈接:

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/02/windows8.1-kb4012213-x64_5b24b9ca5a123a844ed793e0f2be974148520349.msu

March,2017 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB4012216)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/03/windows8.1-kb4012216-x64_cd5e0a62e602176f0078778548796e2d47cfa15b.msu

 

win2016補(bǔ)丁 KB4013429

CumulativeUpdate for Windows Server 2016 for x64-based Systems (KB4013429)鏈接:

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/03/windows10.0-kb4013429-x64_ddc8596f88577ab739cade1d365956a74598e710.msu

 

更多版本的補(bǔ)丁見:https://technet.microsoft.com/zh-cn/library/security/MS17-010

 

本文由北京三思網(wǎng)安科技有限公司網(wǎng)絡(luò)信息安全專家團(tuán)隊(duì)創(chuàng)作,轉(zhuǎn)載或引用請(qǐng)注明出處!

 

三思后行,才能安全無憂

三思網(wǎng)安一個(gè)有用的公眾號(hào)

 

發(fā)布者:管理員   點(diǎn)擊數(shù):6247   發(fā)布時(shí)間:2017-05-15 10:23:16   更新時(shí)間:2020-12-11 18:11:34