Check Point威脅研究團隊正持續追蹤並觀察一支散佈極為迅速新興變種病毒Glupteba(惡意木馬程式),它透過Double Pulsa與Eternal Blue漏洞在企業網路中橫向擴散。
過去一週內,我們發現已有260個客戶受到影響,其中在印度(34+)和印尼(26+)的受害企業相當多,也有逐漸擴散至亞洲其他區域的趨勢。
如何判斷可能有遭到感染的跡象?
如果確認遭到感染,後續該如何處置?
-我們已經發現一些徵兆,受感染主機並未連線至惡意中繼站(C&C),而僅是掃描SMB
如何有效預防?
於現有的Check Point Security Gateway啟用SandBlast功能,目前已證實SandBlast Threat Emulation(沙箱掃描)能偵測該新型病毒的運作進程並有效阻擋。
Mon 25 Nov 2024 @ 02:00 PM (EST)
(Americas) AI Series Part 3: Maximizing AI to Drive Growth and EfficiencyTue 26 Nov 2024 @ 10:00 AM (CET)
EMEA Session: Automated Collaborative Prevention with 3rd Party Endpoint SolutionsTue 26 Nov 2024 @ 03:00 PM (CET)
Navigating NIS2: Practical Steps for Aligning Security and ComplianceTue 26 Nov 2024 @ 05:00 PM (CET)
Discover the Future of Cyber Security: What’s New in Check Point’s Quantum R82Tue 03 Dec 2024 @ 10:00 AM (GMT)
UK Community CNAPP Training Day 1: Cloud Risk Management WorkshopTue 03 Dec 2024 @ 05:00 PM (CET)
Americas CM Session: Automated Collaborative Prevention with 3rd Party Endpoint SolutionsMon 25 Nov 2024 @ 02:00 PM (EST)
(Americas) AI Series Part 3: Maximizing AI to Drive Growth and EfficiencyTue 26 Nov 2024 @ 10:00 AM (CET)
EMEA Session: Automated Collaborative Prevention with 3rd Party Endpoint SolutionsTue 26 Nov 2024 @ 03:00 PM (CET)
Navigating NIS2: Practical Steps for Aligning Security and ComplianceTue 26 Nov 2024 @ 05:00 PM (CET)
Discover the Future of Cyber Security: What’s New in Check Point’s Quantum R82Tue 03 Dec 2024 @ 05:00 PM (CET)
Americas CM Session: Automated Collaborative Prevention with 3rd Party Endpoint SolutionsTue 03 Dec 2024 @ 10:00 AM (GMT)
UK Community CNAPP Training Day 1: Cloud Risk Management WorkshopWed 04 Dec 2024 @ 10:00 AM (GMT)
UK Community CNAPP Training Day 2: Cloud Risk Management Workshop
