×îл¥ÁªÍø°²È«±¨¸æ³Æ Ä¿±êÐÔ¹¥»÷Ôö¶àºÚ¿Í´ÓÖлñÀû

×îл¥ÁªÍø°²È«±¨¸æ³Æ Ä¿±êÐÔ¹¥»÷Ôö¶àºÚ¿Í´ÓÖлñÀû - ÍøÂ簲ȫ - µçÄԽ̳ÌÍø

×îл¥ÁªÍø°²È«±¨¸æ³Æ Ä¿±êÐÔ¹¥»÷Ôö¶àºÚ¿Í´ÓÖлñÀû

ÈÕÆÚ£º2007-01-05   ¼ö£º

ÈüÃÅÌú¿Ë£¬ÓÚ2007Äê3ÔÂ21ÈÕ·¢²¼×îÐÂÒ»ÆÚ»¥ÁªÍø°²È«ÍþвÑо¿±¨¸æ¡£¸ù¾Ý±¨¸æÏÔʾ£¬µ±Ç°Íþв»·¾³µÄÖ÷ÒªÌØÕ÷ÊÇÊý¾ÝÇÔÈ¡¡¢Êý¾Ýй©ºÍΪÁË»ñÀû¶øÒÔÌض¨×é֯ΪĿ±ê½øÐй¥»÷Ëù´´ÔìµÄ¶ñÒâ´úÂë²»¶ÏÔö¼Ó¡£ ¹¥»÷Õß²»¶Ï¸Ä½ø¹¥»÷·½·¨£¬Ìӱܼì²â£¬½ø¶ø½¨Á¢È«ÇòÐÔµÄЭ×÷ÍøÂ磬ÓÃÀ´Ö§³Ö³ÖÐøÔö³¤µÄ·¸×ï»î¶¯¡£ÍøÂç·¸×ïÕßÒÔ»ñÀûΪĿµÄ£¬²»¶Ï¿ª·¢Ä¿µÄÐÔ¸üÇ¿µÄ¶ñÒâÍþв£¬ÊÔͼÔÚÇÔÈ¡»úÃÜÐÅϢʱÌӱܼì²â¡£

±¨¸æÖ¸³ö£¬2006ÄêÏ°ëÄ꣬ȫÇò¹²Óг¬¹ý 600Íò¸ö½©Ê¬(Bots)ÍøÂç¡£ÓëÉÏ°ëÄêÏà±È£¬Êܵ½¸ÐȾ¶ø±»Ô¶³ÌºÚ¿Í¿ØÖƵļÆËã»úÊýÁ¿Ôö¼ÓÁË 29%¡£¾¡¹Ü¸ÐȾ½©Ê¬ÍøÂçµÄ¼ÆËã»úÊýÁ¿³ÖÐøÔö¼Ó£¬ÈüÃÅÌú¿Ë¼ì²âµ½±»½©Ê¬ÍøÂç¿ØÖƵÄCommand and Control·þÎñÆ÷ÊýÁ¿È´¼õÉÙÁË 25%¡£¼õÉÙµÄÔ­Òò¿ÉÄÜÊÇÓÉÓÚÕâÒ»Àà·þÎñÆ÷±»³É¹¦ÒƳý£¬ÆÈʹ½©Ê¬ÍøÂçËùÓÐÕßͨ¹ýºÏ²¢ÍøÂçÀ©´óÏÖÓйæÄ£¡£

2006ÄêÏ°ëÄ꣬ÅÅÃûÇ°50µÄ¶ñÒâ´úÂëÑù±¾ÖУ¬Ä¾Âí³ÌÐòÕ¼45%£¬Ïà½ÏÓÚ2006ÄêÉÏ°ëÄêÔö¼ÓÁË23%¡£ÕâÒ»Ã÷ÏÔÉÏÉý£¬Ò²Ö¤ÊµÁËÈüÃÅÌú¿ËÔÚÉÏÒ»ÆÚ±¨¸æµ±ÖеÄÔ¤²â£º¹©¸øÕâ»Øͨ¹ý´óÁ¿·¢Ë͵ç×ÓÓʼþ´«²¥Èä³æ£¬×ª¶øʹÓÃľÂí³ÌÐò½øÐй¥»÷¡£ÈüÃÅÌú¿ËÔÚ2006 ÄêÏ°ëÄêÒ»¹²·¢ÏÖÁË12 ¸öÁãÈÕ¹¥»÷©¶´£¬Ô¶Ô¶³¬¹ý 2006ÄêÉÏ°ëÄêËù·¢ÏÖµÄ1¸öÁãÈÕ¹¥»÷©¶´£¬Ê¹Ïû·ÑÕߺÍÆóÒµÃæÁÙδ֪Íþв¡£

·¸×ï·Ö×Ӻͷ¸×ï×é֯ʹÓõØϽ»Ò×·þÎñÆ÷¶µÊÛËùÇÔÈ¡µÄ»úÃÜÐÅÏ¢µÄ·þÎñÆ÷£¬ÕâЩÐÅÏ¢°üÀ¨Éç»á°²È«ºÅÂë (SSN)¡¢ÐÅÓÿ¨¡¢ÒøÐп¨¡¢¸öÈËʶ±ðÂë (PINs) ÒÔ¼°µç×ÓÓʼþµØÖ·ÁÐ±í¡£

¼ÆËã»ú»òÆäËûÊý¾Ý´æ´¢»ò´«Êä½éÖÊ£¨USB»ò±¸·ÝÅÌ£©ÔâÇÔ»ò¶ªÊ§£¬Õ¼´ËÆÚ¼äÓëÊý¾ÝÆÆ»µÏà¹ØµÄÉí·ÝµÁÓÃ×ÜÁ¿µÄ54£¥¡£

ÈüÃÅÌú¿ËÊ×´ÎÖ¸³öÁ˶ñÒâ»î¶¯Ö÷ÒªÀ´Ô´¹ú¼Ò¡£ÃÀ¹ú·¢Éú¶ñÒâ»î¶¯µÄ±ÈÀý×î¸ß£¬Õ¼È«ÇòµÄ31£¥¡£Öйú´ÎÖ®£¬Õ¼10£¥£»µÂ¹úµÚÈý£¬Õ¼7£¥¡£

ÈüÃÅÌú¿Ë°²È«ÏìÓ¦ÖÐÐļæÍйܷþÎñ¸ß¼¶¸±×ܲÃArthur Wong ±íʾ£º¡°ÍøÂç×ï·¸Ô½À´Ô½²»»³ºÃÒ⣬ËûÃDz»¶Ï¸ÄÁ¼¹¥»÷·½·¨£¬Ê¹Æä¸ü¼Ó¾«Ãܶø¸´ÔÓ¶øÌӱܼì²â¡£ÎÞÂÛÊÇÏû·ÑÕß»¹ÊÇÆóÒµÓû§£¬ËùÓеÄÖÕ¶ËÓû§¶¼ÐèÒª²¿ÊðÊʵ±µÄ°²È«´ëÊ©£¬²ÅÄÜ·À·¶¹¥»÷Õß·ÃÎÊ»úÃÜÐÅÏ¢£¬±ÜÃâ¾­¼ÃËðʧ¡¢¶ÔÖØÒª¿Í»§Ôì³ÉÉ˺¦¡¢»òÊÇʹÆäÐÅÓþÊÜË𡣡±

»úÃÜÐÅÏ¢ÍþвÓëÈÕ¾ãÔöÈüÃÅÌú¿ËÊ×´ÎÕë¶ÔÒÑÔâÇԵĻúÃÜÐÅÏ¢½»Ò×½øÐÐ×·×Ù£¬Í¬Ê±Ò²½Ø»ñÁ˵ØϽ»Ò×·þÎñÆ÷Ö®¼ä¾­³£ÂòÂôµÄ»úÃÜÐÅÏ¢¡£Ëùν¡°µØϽ»Ò×·þÎñÆ÷¡±£¬ÊÇÖ¸ºÚ¿ÍÓë·¸×ï×éÖ¯ÓÃÓÚ¶µÊÛËùÇÔÈ¡µÄ»úÃÜÐÅÏ¢µÄ·þÎñÆ÷£¬ÕâЩÐÅÏ¢°üÀ¨Éç»á°²È«ºÅÂë (SSN)¡¢ÐÅÓÿ¨¡¢¸öÈËʶ±ðÂë (PINs) ÒÔ¼°µç×ÓÓʼþµØÖ·ÁÐ±í¡£2006ÄêÏ°ëÄ꣬ȫÇòËùÓÐÒÑÖªµÄµØϽ»Ò×·þÎñÆ÷ÖУ¬ÓÐ51% λÓÚÃÀ¹ú¡£ÃÀ¹úµÄÐÅÓÿ¨ (¾ßÓÐÐÅÓÿ¨ÑéÖ¤¿¨ºÅ) £¬¿ÉÒÔÃÀ½ð 1 ÔªÖÁ6 Ôª¼äµÄ¼Û¸ñ¹ºµÃ¡£¶øÒ»¸öº¬ÓÐÃÀ¹úÒøÐÐÕ˺š¢ÐÅÓÿ¨¡¢³öÉúÈÕÆÚÒÔ¼°Õþ¸®Ëù·¢µÄʶ±ðÂëµÄÉí·ÝÕ˺ţ¬Ò²¿ÉÒÔÃÀ½ð 14 ÔªÖÁ18 Ôª¼äµÄ¼Û¸ñ¹ºµÃ¡£ 

ÔÚ±¾´Î±¨¸æ¼à²â½×¶Î£¬ÈüÃÅÌú¿ËÒ²¹Û²ìµ½ÓÉÓÚľÂí³ÌÐò¼°½©Ê¬ÍøÂçµÄÔö¼Ó£¬Ê¹ºÚ¿ÍÄܹ»·ÃÎÊÊܺ¦¼ÆËã»ú£¬µ¼ÖÂÕë¶Ô»úÃÜÐÅÏ¢µÄÍþвÊýÁ¿´ó·ùÔö¶à¡£Èç¹ûÒѱ»¸ÐȾµÄ¼ÆËã»úÉÏ´æ´¢µÄÃô¸ÐÊý¾ÝÊܵ½¹¥»÷Íþв£¬¼«ÓпÉÄܵ¼ÖÂÖØ´óµÄ¾­¼ÃËðʧ£¬ÓÈÆäÊÇÐÅÓÿ¨»òÒøÐÐÐÅÏ¢¡£¸ù¾ÝÈüÃÅÌú¿ËµÄ±¨¸æ£¬Õë¶Ô»úÃÜÐÅÏ¢µÄÍþвÔÚÅÅÃûÇ°50µÄ¶ñÒâ´úÂëÖÐÕ¼66%£¬¸ß³öÉÏÒ»½×¶ÎµÄ48%¡£¶øÔÚ2006ÄêÏ°ëÄêÕë¶Ô»úÃÜÐÅÏ¢µÄÍþвÖУ¬ÓÖÓÐ62%µÄÍþвÄܹ»Êä³öÓû§Êý¾Ý£¬ÀýÈçÓû§ÃûºÍÃÜÂ룬¶øÉÏ°ëÄê½öÓÐ38%¡£

Êý¾ÝÆÆ»µµ¼ÖÂÉí·ÝµÁÓÃÏÖÏóÔö³¤Éí·ÝµÁÓÃÖÐÉæ¼°µÄ»úÃÜÐÅÏ¢³£±»ÈÏ×÷Êǵ¼ÖÂÊý¾ÝÆÆ»µµÄÖ÷ÒªÔ­Òò¡£ÔÚ±¾´Î±¨¸æ¼ì²â½×¶Î£¬ÈüÃÅÌú¿ËÕë¶ÔÓɺڿͻ¡¢¼ÆËã»úÓ²¼þÔâÇÔ»ò¶ªÊ§¡¢ÒÔ¼°°²È«²ßÂÔ¹ÊÕ϶øµ¼ÖµÄÊý¾ÝÆÆ»µ½øÐÐÆÀ¹À¡£Êý¾ÝÆÆ»µÒÔ¼°Ç±ÔÚʹÓûúÃÜÐÅÏ¢½øÐÐÉí·ÝÇÔÈ¡£¬»áµ¼ÖÂÉç»á´óÖÚÐÅÐĵĽµµÍ¡¢Î£¼°·¨ÂÉÔðÈλòÒý·¢°º¹óµÄËßËÏ¡£È«ÇòµÄÊý¾ÝÆÆ»µ´ó¶àΣ¼°Õþ¸®²¿ÃÅ£¬Õ¼×ÜÊýµÄ25%¡£Õþ¸®²¿ÃųÉΪÖ÷Òª¹¥»÷Ä¿±êÊÇÓÉÓÚÆä´æ´¢Î»Ö÷ÖÉ¢£¬¿É·ÃÎÊÈËȺ½ÏΪ¸´ÔÓ£¬Òò´Ë¹¥»÷Õ߸üÈÝÒ×»ñµÃδ¾­ÊÚȨµÄÊý¾Ý·ÃÎÊ¡£


[1] [2]  

¸´ÔÓµÄÀ¬»øÓʼþÒÔ¼°ÍøÂçÕ©ÆÛ·½Ê½³ÖÐøÅÊÉý ÈüÃÅÌú¿Ë¼ì²âµ½ÁËÐí¶à¸ßˮƽµÄ×éºÏ¹¥»÷°üº¬ÁËÀ¬»øÓʼþ¡¢¶ñÒâ´úÂëºÍÍøÂçÕ©ÆÛ¡£2006ÄêÏ°ëÄ꣬À¬»øÓʼþÕ¼Ëù¼à²âµÄµç×ÓÓʼþ×ÜÁ¿µÄ59%£¬Ïà½ÏÓÚ2006ÄêÉÏ°ëÄê³ÊÏÖÎȶ¨Ôö¼ÓµÄÇ÷ÊÆ¡£ÒòΪ³´×÷¹ÉƱµÄÕ©ÆÛÓʼþ (Pump and Dump)Ôö¼Ó£¬µ¼ÖÂ30%µÄÀ¬»øÓʼþÓë½ðÈÚ²úÆ·»ò·þÎñÓйء£Í¨¹ýÕâÀàÓʼþ£¬ÍøÂç×ï·¸¾Í¿ÉÒÔÔڹɼÛÆ«µÍʱÂòÈ룬Ȼºóͨ¹ý·¢ËÍ°üº¬´íÎóÔ¤²âµÄÀ¬»øÓʼþ£¬ºå̧¹É¼Û½ø¶ø´ÓÖлñÀû¡£¶øÀ¬»øÓʼþÊÕ¼þÕßÒ»µ©ÏàÐÅÓʼþÄÚÈݲ¢ÂòÈë¸Ã¹É£¬±ã»á²úÉúÐèÇóµÄ¼ÙÏó£¬×îºóµ¼Ö¹ɼÛÅÊÉý¡£µ±¹É¼ÛÅÊÉýʱ£¬ÍøÂç×ï·¸±ã¿ÉÂôµôÊÖÖгֹɴӶø´ó׬һ±Ê¡£ 

2006ÄêÏ°ëÄ꣬ÈüÃÅÌú¿Ë¹²¼ì²âµ½166,248Ìõ²»Í¬µÄÍøÒ³·ÂðÐÅÏ¢£¬Ï൱ÓÚƽ¾ùÿÌì904Ìõ£¬±È2006ÄêÉÏ°ëÄê¸ß³ö 6%¡£ÁíÍ⣬ÈüÃÅÌú¿ËÊ×´ÎÕë¶Ô¹¤×÷ÈÕÓë¼¾½ÚÐԻÄܹ»¶ÔÓÚÍøÒ³·Âð¹¥»÷²úÉúµÄÓ°Ïì½øÐзÖÎö¡£¸ù¾ÝÈüÃÅÌú¿ËµÄ¼ì²â£¬2006ÄêÈ«ÄêÖУ¬¹¤×÷ÈÕµÄÍøÒ³·ÂðÐÅϢΪƽ¾ùÿÈÕ961Ìõ£¬Æ½¾ù¸ß³öÖÜÄ©27%¡£ÕâÒ»Ç÷ÊƱíÃ÷ÍøÒ³·Âð»î¶¯Äܹ»·´Ó³³ö¹¥»÷ÕßÊÔͼģ·ÂºÏ·¨ÆóÒµ·¢Ë͵ç×ÓÓʼþ¡£µ«Í¬Ê±ÕâҲ˵Ã÷ÍøÒ³·Âð¹¥»÷µÄÉúÃüÖÜÆں̣ܶ¬¶øÇÒ×îÓÐЧµÄ¹¥»÷·½Ê½£¬¾ÍÊǵ±ÍøÒ³·ÂðÓʼþ·¢ËͳöÈ¥Ö®ºó£¬ÊÕ¼þÕßÁ¢¼´½ÓÊܲ¢ÇÒ¶ÁÈ¡¡£ÈüÃÅÌú¿Ë»¹¼ì²â£¬ÔÚÖ÷ÒªµÄ¼ÙÆÚ»òÊÀ½ç±­×ãÇòÈüµÈ´óÐͻ¾Ù°ìʱ£¬ÍøÒ³·Âð»î¶¯±ã»áËæÖ®Ôö¼Ó¡£ÕâÊÇÓÉÓÚ¹¥»÷ÕßÈÏΪΧÈƼÙÈÕ»ò»î¶¯Ö÷Ìâ¶ÔÉç»á¹¤³Ì¹¥»÷(Social Engineering Attack)½øÐаü×°£¬¸üÈÝÒ×´ïµ½¹¥»÷Ч¹û¡£

±¨¸æµãÆÀ£º°²È«ÍþвÓëÈÕ¾ãÔö ÆóÒµÓû§Ó¦¸Ã×÷ºÃ·À·¶×¼±¸

¸Ã±¨¸æº­¸ÇÁË2006Äê7ÔÂ1ÈÕµ½2006Äê12ÔÂ31ÈÕÁù¸öÔµÄʱ¼äÖÜÆÚ£¬ÊÇÈüÃÅÌú¿Ë´Ó·Ö²¼ÔÚ180¶à¸ö¹ú¼Ò/µØÇøµÄ40,000 ¶à¸ö´«¸ÐÆ÷Öвɼ¯µÄÊý¾Ý¡£´Ó±¨¸æÖв»ÄÑ¿´³ö£¬ÔÚ½ö½ö°ëÄêµÄʱ¼äÀ°²È«Íþв¾ÍÒѾ­·¢Éú¾Þ´ó¸Ä±ä£¬´Ó×î³õµÄÖÆÔì¶ñÒâ´úÂëÓÃÀ´ÇÔÈ¡ÆóÒµÊý¾ÝÐÅÏ¢£¬µ½ÓÐ×éÖ¯µÄÍøÂç·¸×ÎÞ´¦²»ÔÚµÄÍþвʹÆóÒµµÄÐÅÏ¢°²È«ÏÔµÄÈç´Ë´àÈõ²»¿°£¬ºÜ¶àÆóÒµµÄ»úÃÜÊý¾ÝÐÅÏ¢Õý´¦ÓÚϵͳ©¶´¡¢²¡¶¾¡¢»¥ÁªÍø¹¥»÷µÈÍþвÏ¡£¼ÓÇ¿×ÔÉíµÄ°²È«¹ÜÀí£¬ºÏÀí²¿Êð°²È«²úÆ·£¬¼°Ê±¸üÐÂϵͳ²¹¶¡£¬ÊDZ£ÎÀÆóÒµÐÅÏ¢°²È«µÄ³Ö¾ÃÕ½ÒÛ¡£Õë¶Ô±¨¸æÖеݲȫÍþв£¬ÆóÒµÓû§Ó¦¸Ã×öºÃ³ä·ÖµÄ·À·¶×¼±¸£¬ÈÃÄãµÄ°²È«·À»¤²úÆ·¼°°²È«½â¾ö·½°¸·¢»Ó×î´óЧÄÜ£¬´ÓÈÝÃæ¶ÔÐÂÒ»ÂֵݲȫÍþв¡£

¸ü¶àÄÚÈÝÇë¿´ARP¹¥»÷·À·¶Óë½â¾ö·½°¸  DDoS¹¥»÷·ÀÓùÓë·ÖÎö  DoS ¾Ü¾ø·þÎñ¹¥»÷רÌâרÌ⣬»ò

£¨³ö´¦£ºhttp://www.sheup.com£©


 [1] [2] 

right">£¨³ö´¦£ºhttp://www.sheup.com/£©


 [1] [2] [3] 

±êÇ©£º