烏克蘭揭露針對鎖定武裝部隊的攻擊行動提出警告,駭客濫用檔案同步工具SyncThing竊取資料
支付動態 · 2024-06-07
本週烏克蘭電腦緊急應變團隊(CERT-UA)提出警告,他們發現駭客組織UAC-0020發起攻擊行動「SickSync」,意圖從該國武裝部隊電腦竊取軍事機密
而該檔案的內容,包含了曾在2019年出現的惡意程式Spectr、檔案同步工具SyncThing,以及上述軟體所需的程式庫。
值得一提的是,Spectr是採用模組化設計的惡意程式,具備從特定資料夾及外接式USB裝置收集檔案的能力,並可搜括Telegram、Signal、Skype等即時通訊軟體,以及Firefox、Edge、Chrome瀏覽器當中的帳密資料,或是連線階段內容。
接著,對方透過SyncThing進行點對點的傳輸,以資料同步的方式將竊得資料流出。對此,CERT-UA表示,所有與SyncThing基礎設施相關(例如:*.syncthing.net)的互動情形,都可能是電腦遭到這波攻擊的跡象。
Popular articles
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
SBC Summit Canada to Make Player Safety a Key Pillar of 2026 Agenda
Marketing
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
Indiana online casino bill stalls in House committee
Regulation
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
British gambling levy rates confirmed for each vertical
Regulation
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Institutional Academy that exceeded expectations marked the opening of GAT CDMX
Online Game
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
