{"id":12788,"date":"2020-11-18T09:14:45","date_gmt":"2020-11-18T02:14:45","guid":{"rendered":"http:\/\/antoanthongtinhaiphong.gov.vn\/?p=12788"},"modified":"2024-08-28T15:29:24","modified_gmt":"2024-08-28T08:29:24","slug":"giai-ma-mot-cuoc-tan-cong-endpoint","status":"publish","type":"post","link":"https:\/\/antoanthongtinhaiphong.gov.vn\/giai-ma-mot-cuoc-tan-cong-endpoint\/","title":{"rendered":"Gi\u1ea3i m\u00e3 m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng Endpoint"},"content":{"rendered":"
\n
\n
C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng m\u1ea1ng ng\u00e0y c\u00e0ng tr\u1edf n\u00ean tinh vi, khi c\u00e1c c\u00f4ng c\u1ee5 v\u00e0 d\u1ecbch v\u1ee5 tr\u00ean dark web, web ch\u00ednh th\u1ed1ng cho ph\u00e9p t\u1ed9i ph\u1ea1m m\u1ea1ng c\u00f3 th\u1ec3 t\u1ea1o ra nh\u1eefng m\u1ed1i \u0111e d\u1ecda c\u00f3 kh\u1ea3 n\u0103ng v\u01b0\u1ee3t qua c\u00e1c c\u00f4ng c\u1ee5 b\u1ea3o m\u1eadt.<\/strong><\/p>\n
\n
\"Gi\u1ea3i<\/a><\/div>\n<\/div>\n

H\u1ea7u h\u1ebft c\u00e1c ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i hi\u1ec7n nay \u0111\u1ec1u bi\u1ebft c\u00e1ch\u00a0l\u1ea9n tr\u00e1nh c\u00e1c d\u1ecbch v\u1ee5 ch\u1ed1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i d\u1ef1a tr\u00ean ch\u1eef k\u00fd truy\u1ec1n th\u1ed1ng, \u0111\u1ebfn c\u00e1c endpoint m\u1ed9t c\u00e1ch d\u1ec5 d\u00e0ng. Do \u0111\u00f3, c\u00e1c t\u1ed5 ch\u1ee9c thi\u1ebfu c\u00e1ch ti\u1ebfp c\u1eadn b\u1ea3o m\u1eadt theo l\u1edbp th\u01b0\u1eddng s\u1ebd b\u1ecb r\u01a1i v\u00e0o t\u00ecnh tr\u1ea1ng b\u1ea5p b\u00eanh. H\u01a1n n\u1eefa, t\u1ed9i ph\u1ea1m m\u1ea1ng c\u0169ng th\u00e0nh c\u00f4ng trong vi\u1ec7c l\u1eeba ng\u01b0\u1eddi d\u00f9ng \u0111\u1ec3 l\u1ed9 ra th\u00f4ng tin \u0111\u0103ng nh\u1eadp ho\u1eb7c \u0111\u00e1nh\u00a0c\u1eafp th\u00f4ng tin x\u00e1c th\u1ef1c nh\u1edd v\u00e0o vi\u1ec7c s\u1eed d\u1ee5ng l\u1ea1i danh s\u00e1ch m\u1eadt kh\u1ea9u ph\u1ed5 bi\u1ebfn.<\/p>\n

\u0110\u00e3 c\u00f3 nhi\u1ec1u thay \u0111\u1ed5i trong b\u1ee9c tranh to\u00e0n c\u1ea3nh c\u00e1c m\u1ed1i \u0111e d\u1ecda an ninh m\u1ea1ng trong th\u1eadp k\u1ef7 qua, nh\u01b0ng endpoint v\u1eabn lu\u00f4n l\u00e0 m\u1ee5c ti\u00eau m\u00e0 gi\u1edbi t\u1ed9i ph\u1ea1m m\u1ea1ng nh\u1eafm t\u1edbi. Tin t\u1eb7c \u0111\u00e3 ki\u00ean nh\u1eabn h\u01a1n tr\u01b0\u1edbc, khi ch\u00fang th\u00e2m nh\u1eadp b\u01b0\u1edbc \u0111\u1ea7u v\u00e0o m\u1ed9t h\u1ec7 th\u1ed1ng \u0111\u1ec3\u00a0ti\u1ebfn h\u00e0nh x\u00e2m\u00a0nh\u1eadp v\u00e0o endpoint.<\/p>\n

V\u00ed d\u1ee5 v\u1ec1 cu\u1ed9c t\u1ea5n c\u00f4ng ransomware v\u00e0o Norsk Hydro: L\u1ea7n l\u00e2y nhi\u1ec5m ban \u0111\u1ea7u x\u1ea3y ra ba th\u00e1ng tr\u01b0\u1edbc khi k\u1ebb t\u1ea5n c\u00f4ng th\u1ef1c thi ransomware v\u00e0 kh\u00f3a nhi\u1ec1u h\u1ec7 th\u1ed1ng m\u00e1y t\u00ednh c\u1ee7a nh\u00e0 s\u1ea3n xu\u1ea5t. Trong th\u1eddi gian \u0111\u00f3, Norsk c\u00f3 th\u1ec3 ph\u00e1t hi\u1ec7n ra t\u1ea5n c\u00f4ng tr\u01b0\u1edbc khi thi\u1ec7t h\u1ea1i x\u1ea3y ra, nh\u01b0ng th\u1ef1c t\u1ebf l\u00e0 h\u1ea7u h\u1ebft c\u00e1c doanh nghi\u1ec7p kh\u00f4ng c\u00f3 s\u1eb5n m\u1ed9t chi\u1ebfn l\u01b0\u1ee3c b\u1ea3o m\u1eadt nhi\u1ec1u l\u1edbp ph\u1ee9c t\u1ea1p.<\/p>\n

B\u00e1o c\u00e1o v\u1ec1 vi ph\u1ea1m d\u1eef li\u1ec7u g\u1ea7n \u0111\u00e2y nh\u1ea5t c\u1ee7a IBM c\u0169ng cho th\u1ea5y, c\u00e1c doanh nghi\u1ec7p ph\u1ea3i m\u1ea5t trung b\u00ecnh 280 ng\u00e0y \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh v\u00e0 ng\u0103n ch\u1eb7n nh\u1eefng v\u1ee5 vi ph\u1ea1m. Trong th\u1eddi gian \u0111\u00f3 k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 l\u1eadp k\u1ebf ho\u1ea1ch cho cu\u1ed9c t\u1ea5n c\u00f4ng l\u1edbn h\u01a1n. V\u1eady, ch\u00ednh x\u00e1c th\u00ec nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng \u0111ang l\u00e0m g\u00ec v\u1edbi kho\u1ea3ng th\u1eddi gian \u0111\u00f3? L\u00e0m th\u1ebf n\u00e0o \u0111\u1ec3 h\u1ecd x\u00e2m nh\u1eadp endpoint m\u00e0 kh\u00f4ng b\u1ecb ph\u00e1t hi\u1ec7n?<\/p>\n

H\u1ea7u h\u1ebft c\u00e1c b\u00e1o c\u00e1o \u0111\u1ec1u ch\u1ec9 ra r\u1eb1ng kho\u1ea3ng 90% c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng m\u1ea1ng \u0111\u1ec1u b\u1eaft \u0111\u1ea7u b\u1eb1ng l\u1eeba \u0111\u1ea3o. T\u1eeb th\u00f4ng tin x\u00e1c th\u1ef1c b\u1ecb x\u00e2m nh\u1eadp \u0111\u1ebfn m\u1ed9t trojan truy c\u1eadp t\u1eeb xa \u0111ang ch\u1ea1y tr\u00ean m\u00e1y t\u00ednh l\u00e0 k\u1ebft qu\u1ea3 c\u1ee7a m\u1ed9t v\u1ee5\u00a0l\u1eeba \u0111\u1ea3o th\u00e0nh c\u00f4ng. \u0110\u1ed1i v\u1edbi l\u1eeba \u0111\u1ea3o th\u00f4ng tin x\u00e1c th\u1ef1c, c\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda \u0111\u00e3 t\u1eadn d\u1ee5ng c\u00e1c mi\u1ec1n ph\u1ee5 c\u00f3 th\u1ec3 t\u00f9y ch\u1ec9nh c\u1ee7a nh\u1eefng d\u1ecbch v\u1ee5 \u0111\u00e1m m\u00e2y n\u1ed5i ti\u1ebfng \u0111\u1ec3 l\u01b0u tr\u1eef c\u00e1c bi\u1ec3u m\u1eabu x\u00e1c th\u1ef1c h\u1ee3p ph\u00e1p.<\/p>\n

\n
\"Gi\u1ea3i<\/a><\/div>\n<\/div>\n

\u1ea2nh ch\u1ee5p m\u00e0n h\u00ecnh tr\u00ean l\u00e0 t\u1eeb ph\u00f2ng th\u00ed nghi\u1ec7m WatchGuard Threat Lab g\u1ea7n \u0111\u00e2y \u0111\u00e3 g\u1eb7p ph\u1ea3i. Li\u00ean k\u1ebft trong email \u0111\u00e3 \u0111\u01b0\u1ee3c t\u00f9y ch\u1ec9nh cho t\u1eebng ng\u01b0\u1eddi nh\u1eadn, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng \u0111i\u1ec1n \u0111\u1ecba ch\u1ec9 email c\u1ee7a n\u1ea1n nh\u00e2n v\u00e0o bi\u1ec3u m\u1eabu gi\u1ea3 \u0111\u1ec3 t\u0103ng \u0111\u1ed9 tin c\u1eady. Mail l\u1eeba \u0111\u1ea3o n\u00e0y th\u1eadm ch\u00ed c\u00f2n \u0111\u01b0\u1ee3c l\u01b0u tr\u1eef tr\u00ean mi\u1ec1n do Microsoft s\u1edf h\u1eefu, m\u1eb7c d\u00f9 tr\u00ean mi\u1ec1n ph\u1ee5 (servicemanager00) nh\u01b0ng l\u1ea1i b\u1ecb ki\u1ec3m so\u00e1t b\u1edfi k\u1ebb t\u1ea5n c\u00f4ng.<\/p>\n

Trong tr\u01b0\u1eddng h\u1ee3p l\u1eeba \u0111\u1ea3o b\u1eb1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i, ph\u1ea7n l\u1edbn nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng\u00a0\u0111\u00e3 ng\u1eebng \u0111\u00ednh k\u00e8m t\u1ec7p th\u1ef1c thi ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i v\u00e0o email. B\u1edfi\u00a0h\u1ea7u h\u1ebft m\u1ecdi ng\u01b0\u1eddi \u0111\u1ec1u nh\u1eadn ra r\u1eb1ng vi\u1ec7c kh\u1edfi ch\u1ea1y t\u1ec7p \u0111\u00ednh k\u00e8m email c\u00f3 th\u1ec3 th\u1ef1c thi (*.exe) l\u00e0 m\u1ed9t \u00fd t\u01b0\u1edfng t\u1ed3i v\u00e0 h\u1ea7u h\u1ebft c\u00e1c d\u1ecbch v\u1ee5 v\u00e0 \u1ee9ng d\u1ee5ng email \u0111\u1ec1u c\u00f3 c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o v\u1ec7 \u0111\u1ec3 ng\u0103n ch\u1eb7n m\u1ed9t s\u1ed1 \u00edt ng\u01b0\u1eddi d\u00f9ng nh\u1ea5p v\u00e0o nh\u1eefng t\u1ec7p \u0111\u00f3. Thay v\u00e0o \u0111\u00f3, nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng s\u1eed d\u1ee5ng c\u00e1c t\u1ec7p nh\u1ecf g\u1ecdn, th\u01b0\u1eddng \u1edf d\u1ea1ng t\u00e0i li\u1ec7u Office c\u00f3 macro ho\u1eb7c t\u1ec7p JavaScript.<\/p>\n

Ph\u01b0\u01a1ng ph\u00e1p s\u1eed d\u1ee5ng t\u1ec7p t\u00e0i li\u1ec7u office ho\u1ea1t \u0111\u1ed9ng t\u1ed1t nh\u1ea5t khi ng\u01b0\u1eddi nh\u1eadn ch\u01b0a c\u1eadp nh\u1eadt c\u00e0i \u0111\u1eb7t Microsoft Office c\u1ee7a h\u1ecd ho\u1eb7c ch\u01b0a \u0111\u01b0\u1ee3c h\u01b0\u1edbng d\u1eabn\u00a0\u0111\u1ec3 tr\u00e1nh c\u00e1c t\u00e0i li\u1ec7u \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t macro. Ph\u01b0\u01a1ng ph\u00e1p JavaScript l\u00e0 m\u1ed9t ph\u01b0\u01a1ng ph\u00e1p ph\u1ed5 bi\u1ebfn g\u1ea7n \u0111\u00e2y s\u1eed d\u1ee5ng c\u00f4ng c\u1ee5 t\u1ea1o t\u1eadp l\u1ec7nh t\u00edch h\u1ee3p s\u1eb5n c\u1ee7a Windows \u0111\u1ec3 b\u1eaft \u0111\u1ea7u cu\u1ed9c t\u1ea5n c\u00f4ng. Trong c\u1ea3 hai tr\u01b0\u1eddng h\u1ee3p, c\u00f4ng vi\u1ec7c duy nh\u1ea5t c\u1ee7a t\u1ec7p n\u00e0y l\u00e0 x\u00e1c \u0111\u1ecbnh h\u1ec7 \u0111i\u1ec1u h\u00e0nh c\u1ee7a n\u1ea1n nh\u00e2n, sau \u0111\u00f3 k\u1ebft n\u1ed1i v\u1ec1 m\u00e1y ch\u1ee7 v\u00e0 t\u1ea3i c\u00e1c \u0111\u1ed1i t\u01b0\u1ee3ng c\u1ea7n thi\u1ebft.<\/p>\n

\u0110\u1ed1i t\u01b0\u1ee3ng \u0111\u00f3 th\u01b0\u1eddng l\u00e0 trojan ho\u1eb7c botnet truy c\u1eadp t\u1eeb xa \u1edf m\u1ed9t s\u1ed1 d\u1ea1ng bao g\u1ed3m b\u1ed9 c\u00f4ng c\u1ee5 nh\u01b0 keylogger, shell script-injection v\u00e0 kh\u1ea3 n\u0103ng t\u1ea3i xu\u1ed1ng c\u00e1c m\u00f4\u0111un b\u1ed5 sung. S\u1ef1 l\u00e2y nhi\u1ec5m th\u01b0\u1eddng kh\u00f4ng b\u1ecb gi\u1edbi h\u1ea1n trong th\u1eddi gian d\u00e0i sau \u0111\u00f3. Nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng v\u1ecb tr\u00ed hi\u1ec7n t\u1ea1i c\u1ee7a m\u00ecnh \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh c\u00e1c m\u1ee5c ti\u00eau kh\u00e1c tr\u00ean m\u1ea1ng c\u1ee7a n\u1ea1n nh\u00e2n v\u00e0 tr\u00f3i bu\u1ed9c h\u1ecd.<\/p>\n

Th\u1eadm ch\u00ed c\u00f2n d\u1ec5 d\u00e0ng h\u01a1n n\u1ebfu nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng ki\u1ec3m so\u00e1t \u0111\u01b0\u1ee3c m\u1ed9t danh s\u00e1ch th\u00f4ng tin x\u00e1c th\u1ef1c h\u1ee3p l\u1ec7 v\u00e0 t\u1ed5 ch\u1ee9c ch\u01b0a tri\u1ec3n khai x\u00e1c th\u1ef1c \u0111a y\u1ebfu t\u1ed1. N\u00f3 cho ph\u00e9p t\u00e1c nh\u00e2n \u0111e d\u1ecda \u0111i v\u00e0o th\u1eb3ng h\u1ec7 th\u1ed1ng. Sau \u0111\u00f3, ch\u00fang c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng c\u00e1c d\u1ecbch v\u1ee5 c\u1ee7a ch\u00ednh n\u1ea1n nh\u00e2n nh\u01b0 c\u00e1c c\u00f4ng c\u1ee5 t\u1ea1o t\u1eadp l\u1ec7nh Windows t\u00edch h\u1ee3p s\u1eb5n v\u00e0 c\u00e1c d\u1ecbch v\u1ee5 tri\u1ec3n khai ph\u1ea7n m\u1ec1m nh\u1eb1m t\u1ea1o ra m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng tr\u1ef1c ti\u1ebfp \u0111\u1ec3 th\u1ef1c hi\u1ec7n c\u00e1c h\u00e0nh \u0111\u1ed9ng \u0111\u1ed9c h\u1ea1i. C\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda t\u1eadn d\u1ee5ng PowerShell \u0111\u1ec3 tri\u1ec3n khai ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i t\u1ed3n t\u1ea1i trong b\u1ed9 nh\u1edb m\u00e1y t\u00ednh nh\u1eb1m chu\u1ea9n b\u1ecb m\u00e3 h\u00f3a ho\u1eb7c l\u1ecdc d\u1eef li\u1ec7u quan tr\u1ecdng.<\/p>\n

Ph\u00f2ng th\u00ed nghi\u1ec7m WatchGuard g\u1ea7n \u0111\u00e2y \u0111\u00e3 x\u00e1c \u0111\u1ecbnh \u0111\u01b0\u1ee3c s\u1ef1 l\u00e2y nhi\u1ec5m \u0111ang di\u1ec5n ra khi gi\u1edbi thi\u1ec7u m\u1ed9t kh\u00e1ch h\u00e0ng m\u1edbi. \u201cV\u00e0o th\u1eddi \u0111i\u1ec3m ch\u00fang t\u00f4i \u0111\u1ebfn, k\u1ebb \u0111e d\u1ecda \u0111\u00e3 \u1edf tr\u00ean m\u1ea1ng c\u1ee7a n\u1ea1n nh\u00e2n m\u1ed9t th\u1eddi gian nh\u1edd x\u00e2m ph\u1ea1m \u00edt nh\u1ea5t m\u1ed9t t\u00e0i kho\u1ea3n c\u1ee5c b\u1ed9 v\u00e0 m\u1ed9t t\u00e0i kho\u1ea3n mi\u1ec1n c\u00f3 quy\u1ec1n qu\u1ea3n tr\u1ecb. Nh\u00f3m c\u1ee7a ch\u00fang t\u00f4i kh\u00f4ng th\u1ec3 x\u00e1c \u0111\u1ecbnh ch\u00ednh x\u00e1c c\u00e1ch m\u00e0 k\u1ebb \u0111e d\u1ecda c\u00f3 \u0111\u01b0\u1ee3c th\u00f4ng tin x\u00e1c th\u1ef1c ho\u1eb7c h\u1ecd \u0111\u00e3 hi\u1ec7n di\u1ec7n tr\u00ean m\u1ea1ng bao l\u00e2u, nh\u01b0ng ngay sau khi c\u00e1c d\u1ecbch v\u1ee5 s\u0103n t\u00ecm m\u1ed1i \u0111e d\u1ecda c\u1ee7a ch\u00fang t\u00f4i \u0111\u01b0\u1ee3c b\u1eadt, c\u00e1c ch\u1ec9 b\u00e1o ngay l\u1eadp t\u1ee9c s\u00e1ng l\u00ean \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh vi ph\u1ea1m.<\/p>\n

Trong cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y, c\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda \u0111\u00e3 s\u1eed d\u1ee5ng k\u1ebft h\u1ee3p Visual Basic Scripts v\u00e0 hai b\u1ed9 c\u00f4ng c\u1ee5 PowerShell ph\u1ed5 bi\u1ebfn l\u00e0 PowerSploit v\u00e0 Cobalt Strike \u0111\u1ec3 x\u00e2m nh\u1eadp m\u1ea1ng c\u1ee7a n\u1ea1n nh\u00e2n v\u00e0 kh\u1edfi ch\u1ea1y ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i. B\u1ed9 gi\u1ea3i m\u00e3 m\u00e3 shell c\u1ee7a Cobalt Strike cho ph\u00e9p c\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda t\u1ea3i xu\u1ed1ng c\u00e1c l\u1ec7nh \u0111\u1ed9c h\u1ea1i, t\u1ea3i ch\u00fang v\u00e0o b\u1ed9 nh\u1edb v\u00e0 th\u1ef1c thi ch\u00fang tr\u1ef1c ti\u1ebfp t\u1eeb \u0111\u00f3 m\u00e0 kh\u00f4ng c\u1ea7n ch\u1ea1m v\u00e0o \u1ed5 c\u1ee9ng c\u1ee7a n\u1ea1n nh\u00e2n. C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i kh\u00f4ng c\u00f3 t\u1eadp tin (fileless malware) n\u00e0y c\u00f3 th\u1ec3 kh\u00f3 ph\u00e1t hi\u1ec7n b\u1eb1ng c\u00e1c c\u00f4ng c\u1ee5 ch\u1ed1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i truy\u1ec1n th\u1ed1ng d\u1ef1a v\u00e0o vi\u1ec7c qu\u00e9t c\u00e1c t\u1ec7p \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh c\u00e1c m\u1ed1i \u0111e d\u1ecda.<\/p>\n

\n
\"Gi\u1ea3i<\/a><\/div>\n<\/div>\n

\u1ede nh\u1eefng n\u01a1i kh\u00e1c tr\u00ean m\u1ea1ng, c\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda s\u1eed d\u1ee5ng PsExec, m\u1ed9t c\u00f4ng c\u1ee5 t\u00edch h\u1ee3p s\u1eb5n trong Windows, \u0111\u1ec3 kh\u1edfi ch\u1ea1y trojan truy c\u1eadp t\u1eeb xa v\u1edbi c\u00e1c \u0111\u1eb7c quy\u1ec1n c\u1ea5p h\u1ec7 th\u1ed1ng nh\u1edd th\u00f4ng tin \u0111\u0103ng nh\u1eadp qu\u1ea3n tr\u1ecb vi\u00ean mi\u1ec1n b\u1ecb x\u00e2m ph\u1ea1m. C\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda c\u1ed1 g\u1eafng l\u1ea5y d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m sang t\u00e0i kho\u1ea3n DropBox b\u1eb1ng c\u00f4ng c\u1ee5 qu\u1ea3n l\u00fd l\u01b0u tr\u1eef \u0111\u00e1m m\u00e2y d\u1ef1a tr\u00ean d\u00f2ng l\u1ec7nh\u201d.<\/p>\n

May m\u1eafn thay, h\u1ecd \u0111\u00e3 c\u00f3 th\u1ec3 x\u00e1c \u0111\u1ecbnh v\u00e0 d\u1ecdn d\u1eb9p ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i m\u1ed9t c\u00e1ch nhanh ch\u00f3ng. Tuy nhi\u00ean, n\u1ebfu n\u1ea1n nh\u00e2n kh\u00f4ng thay \u0111\u1ed5i th\u00f4ng tin \u0111\u0103ng nh\u1eadp \u0111\u00e3 b\u1ecb \u0111\u00e1nh c\u1eafp, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 b\u1eaft \u0111\u1ea7u l\u1ea1i cu\u1ed9c t\u1ea5n c\u00f4ng theo \u00fd mu\u1ed1n. N\u1ebfu n\u1ea1n nh\u00e2n tri\u1ec3n khai c\u00f4ng c\u1ee5 Endpoint Detection & Response (EDR) n\u00e2ng cao nh\u01b0 m\u1ed9t ph\u1ea7n c\u1ee7a chi\u1ebfn l\u01b0\u1ee3c b\u1ea3o m\u1eadt ph\u00e2n l\u1edbp, h\u1ecd c\u00f3 th\u1ec3 \u0111\u00e3 ng\u0103n ch\u1eb7n ho\u1eb7c l\u00e0m gi\u1ea3m thi\u1ec7t h\u1ea1i \u0111\u01b0\u1ee3c t\u1ea1o ra t\u1eeb c\u00e1c th\u00f4ng tin \u0111\u0103ng nh\u1eadp b\u1ecb \u0111\u00e1nh c\u1eafp \u0111\u00f3.<\/p>\n

Nh\u1eefng k\u1ebb t\u1ea5n c\u00f4ng \u0111ang nh\u1eafm m\u1ee5c ti\u00eau v\u00e0o c\u00e1c doanh nghi\u1ec7p m\u1ed9t c\u00e1ch ng\u1eabu nhi\u00ean, ngay c\u1ea3 v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c, doanh nghi\u1ec7p\u00a0nh\u1ecf. Ch\u1ec9 d\u1ef1a v\u00e0o m\u1ed9t l\u1edbp b\u1ea3o v\u1ec7 \u0111\u01a1n gi\u1ea3n kh\u00f4ng c\u00f2n hi\u1ec7u qu\u1ea3 \u0111\u1ec3 gi\u1eef an to\u00e0n cho t\u1ed5 ch\u1ee9c, doanh nghi\u1ec7p. B\u1ea5t k\u1ec3 quy m\u00f4 c\u1ee7a m\u1ed9t t\u1ed5 ch\u1ee9c l\u1edbn hay nh\u1ecf, \u0111i\u1ec1u quan tr\u1ecdng l\u00e0 ph\u1ea3i \u00e1p d\u1ee5ng ph\u01b0\u01a1ng ph\u00e1p b\u1ea3o m\u1eadt ph\u00e2n l\u1edbp c\u00f3 th\u1ec3 ph\u00e1t hi\u1ec7n v\u00e0 ng\u0103n ch\u1eb7n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng endpoint.<\/p>\n

\u0110i\u1ec1u n\u00e0y c\u00f3 ngh\u0129a l\u00e0 t\u1ed5 ch\u1ee9c, doanh nghi\u1ec7p ph\u1ea3i trang b\u1ecb c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o v\u1ec7 t\u1eeb gateway xu\u1ed1ng \u0111\u1ebfn endpoint, bao g\u1ed3m c\u1ea3 \u0111\u00e0o t\u1ea1o ng\u01b0\u1eddi d\u00f9ng \u1edf gi\u1eefa. Qua \u0111\u00f3, vai tr\u00f2 c\u1ee7a x\u00e1c th\u1ef1c \u0111a y\u1ebfu t\u1ed1 c\u00f3 th\u1ec3 l\u00e0 s\u1ef1 kh\u00e1c bi\u1ec7t gi\u1eefa vi\u1ec7c ng\u0103n ch\u1eb7n m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng hay tr\u1edf th\u00e0nh m\u1ed9t ch\u1ee7 \u0111\u1ec1 c\u1ee7a m\u1ed9t th\u1ed1ng k\u00ea vi ph\u1ea1m kh\u00e1c.<\/p>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng m\u1ea1ng ng\u00e0y c\u00e0ng tr\u1edf n\u00ean tinh vi, khi c\u00e1c c\u00f4ng c\u1ee5 v\u00e0 d\u1ecbch v\u1ee5 tr\u00ean dark web, web ch\u00ednh th\u1ed1ng cho ph\u00e9p t\u1ed9i ph\u1ea1m m\u1ea1ng c\u00f3 th\u1ec3 t\u1ea1o ra nh\u1eefng m\u1ed1i \u0111e d\u1ecda c\u00f3 kh\u1ea3 n\u0103ng v\u01b0\u1ee3t qua c\u00e1c c\u00f4ng c\u1ee5 b\u1ea3o m\u1eadt. H\u1ea7u h\u1ebft c\u00e1c ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i hi\u1ec7n […]<\/p>\n","protected":false},"author":5,"featured_media":12789,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"tdm_status":"","tdm_grid_status":"","footnotes":""},"categories":[4],"tags":[],"class_list":["post-12788","post","type-post","status-publish","format-standard","has-post-thumbnail","category-kien-thuc-an-toan-thong-tin"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/12788","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/comments?post=12788"}],"version-history":[{"count":1,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/12788\/revisions"}],"predecessor-version":[{"id":44553,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/12788\/revisions\/44553"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media\/12789"}],"wp:attachment":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media?parent=12788"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/categories?post=12788"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/tags?post=12788"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}