中國駭客用非法代理伺服器ORB網路隱藏連線行蹤,導致資安偵測難度大幅提升
支付動態 · 2024-05-23
資安業者Mandiant針對中國APT駭客大肆利用代理伺服器服務Operational Relay Box networks(ORB網路)的情況提出警告,並指出防禦方也要更換做法,才能因應這種威脅態勢
另一個APT31等中國駭客組織運用的ORB網路ORB2(或稱FloraHox),研究人員指出它的架構較為複雜,與ORB3成為明顯的對比。這個網路由對手控制操作伺服器(Adversary Controlled Operations Server,ACOS),多個廠牌遭駭的連網裝置,以及VPS組成。
這個網路包含多個子網域,由連網裝置組成,而這些裝置皆被植入專為路由器打造的惡意酬載,其中一種名為FlowerWater。
而對於遭到擺布的連網裝置,研究人員提及當中含有思科、華碩、居易等廠牌多種類型的路由器,其共通點是產品本身很老舊,生命週期已經結束。
Popular articles
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
British gambling levy rates confirmed for each vertical
Regulation
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
Brazil Proposes Raising Gambling Tax Rate to 24%, With Revenue Allocated to Social Security and Healthcare
Regulation
Indiana online casino bill stalls in House committee
Regulation
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
SBC Summit Canada to Make Player Safety a Key Pillar of 2026 Agenda
Marketing
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
Kazakhstan plans to penalise online casino promotions
Regulation
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
