Go homepage(回首页)
Upload pictures (上传图片)
Write articles (发文字帖)

The author:(作者)归海一刀
published in(发表于) 2014/3/24 3:45:25
Illegal use of Malaysian Airlines lost， stolen， attack on the 20，000 users

Xinhuanet, Tianjin, March 23 (reporter Zhou Runjian)-Malaysia Airlines flight MH370 lost for almost two weeks, just when people are worried about losing the flight progress, social networks there is illegal use of Malaysian Airlines launched attacks, stolen.

According to 360 and other network security vendor monitoring viruses gangs stealing Trojan masquerading as incident reports, pictures, compressed, spread through channels such as QQ and Forum. Only 360 in the near future for this kind of theft, Trojans intercepted more than 20,000 times.

It is learned that stealing Trojans mostly compressed file name "lost airliner wreckage hidden by Malaysia to. tar.gz", "Malaysia Airlines Australia a lost airliner crash wreckage photo. zip", extracted the coat is actually wearing icons exe executable. If the users computer does not turn on security software protection, double-click to run it.

Anti virus engineer analyses found that the ones after the Trojans running, first force QQ chat software, QQ login window pops up a fake again to lure victims "log in again". If this window to enter account password, data can be sent directly to the hacker servers. Hackers steal number in addition to the theft of virtual equipment property, also could spoof the identity of the victims ' relatives to implement fraud, causing more severe violations.

It is understood that the MH370 is Trojan viruses that use was not incidental to the event. Experts say hackers by publications carry malicious video on social networking link, including "Malaysia Airlines MH370 a missing airliner found--50 at the sea life" and other similar videos, pictures, resources, in the form of social networking worm rapidly spreading malicious links.

Security experts warn that use of hot events to disseminate Trojans and viruses are commonly used by hackers and malicious Web site tricks, Internet users are not easy to click on suspicious links and documents issued by a stranger, in case of alarm security software should follow the prompt to clear the Trojans, so as to avoid account theft losses.

　　新华网天津3月23日电 (记者 周润健)马航MH370客机失联已近两个多星期，就在人们牵挂失联航班最新进展的时候，社交网络上却有不法分子利用马航事件发起盗号攻击。

　　根据360等多家网络安全厂商监测，病毒团伙把盗号木马伪装为事件相关报道、图片压缩包，再通过QQ和论坛等渠道传播。近期仅360对此类盗号木马拦截量就超过2万次。

　　据悉，盗号木马压缩包文件名大多为“失联客机残骸遭马方隐藏.tar.gz”、“马航失联客机澳洲坠落残骸照片.zip”等，解压缩后其实是披着图标外衣的exe可执行程序。如果网友电脑没有开启安全软件保护，双击运行就会中招。

　　反病毒工程师分析发现，盗号木马运行后，首先会强制关闭QQ聊天软件，再弹出一个虚假的QQ登录窗口，诱骗受害者“重新登录”。如果在此窗口输入账号密码，数据就会直接发送到黑客服务器上。黑客盗号后除了窃取虚拟装备财产，还可能假冒身份对受害者亲友实施诈骗，造成更严重的侵害。

　　据了解，MH370被木马病毒利用并非偶然事件。此前就有专家表示，有黑客通过社交网络上发布携带恶意视频链接，内容包括“马航失踪客机MH370在海上发现－－50人生还”等类似的视频、图片资源，以社交网络蠕虫形式快速传播恶意链接。

　　安全专家提示，利用热点事件传播木马病毒和恶意网站是黑客的常用伎俩，网民不可轻易点击陌生人发布的可疑链接和文件，如遇到安全软件报警应按照提示清除木马，以免账号被盗蒙受损失。

赞