{"id":128584,"date":"2024-04-16T08:59:35","date_gmt":"2024-04-16T01:59:35","guid":{"rendered":"https:\/\/amis.misa.vn\/?p=128584"},"modified":"2024-04-16T08:59:35","modified_gmt":"2024-04-16T01:59:35","slug":"ransomware-noi-am-anh-cua-doanh-nghiep-viet-nam","status":"publish","type":"post","link":"https:\/\/amis.misa.vn\/128584\/ransomware-noi-am-anh-cua-doanh-nghiep-viet-nam\/","title":{"rendered":"Ransomware – N\u1ed7i \u00e1m \u1ea3nh l\u1edbn c\u1ee7a c\u00e1c Doanh nghi\u1ec7p, t\u1ed5 ch\u1ee9c, c\u00e1 nh\u00e2n t\u1ea1i Vi\u1ec7t Nam"},"content":{"rendered":"

\"Ransomware<\/p>\n

Trong th\u1ebf gi\u1edbi k\u1ef9 thu\u1eadt s\u1ed1 hi\u1ec7n nay, c\u01a1n \u00e1c m\u1ed9ng mang t\u00ean m\u00e3 \u0111\u1ed9c t\u1ed1ng ti\u1ec1n – ransomware \u0111ang tr\u1ed7i d\u1eady m\u1ea1nh m\u1ebd, v\u00e0 Vi\u1ec7t Nam kh\u00f4ng ph\u1ea3i l\u00e0 ngo\u1ea1i l\u1ec7. M\u1ed7i ng\u00e0y, nh\u1eefng k\u1ebb x\u00e2m nh\u1eadp tinh vi h\u01b0\u1edbng s\u1ef1 \u0111e d\u1ecda t\u1eeb m\u00e3 \u0111\u1ed9c t\u1edbi c\u00e1c h\u1ec7 th\u1ed1ng th\u00f4ng tin c\u1ee7a c\u00e1c t\u1ed5 ch\u1ee9c, c\u01a1 quan v\u00e0 doanh nghi\u1ec7p \u1edf trong n\u01b0\u1edbc, \u0111\u1eb7c bi\u1ec7t trong c\u00e1c l\u0129nh v\u1ef1c quan tr\u1ecdng nh\u01b0 t\u00e0i ch\u00ednh, ng\u00e2n h\u00e0ng, n\u0103ng l\u01b0\u1ee3ng, vi\u1ec5n th\u00f4ng,\u2026<\/p>\n

T\u00ednh t\u1eeb \u0111\u1ea7u n\u0103m 2024 t\u1edbi nay, qua ph\u00e2n t\u00edch h\u01a1n 150 tri\u1ec7u c\u1ea3nh b\u00e1o v\u1ec1 c\u00e1c nguy c\u01a1 b\u1ea3o m\u1eadt tr\u00ean kh\u00f4ng gian m\u1ea1ng Vi\u1ec7t Nam \u0111\u01b0\u1ee3c ghi nh\u1eadn t\u1eeb h\u1ec7 th\u1ed1ng k\u1ef9 thu\u1eadt, C\u1ee5c ATTT \u0111\u00e3 x\u00e1c \u0111\u1ecbnh c\u00f3 h\u01a1n 300.000 nguy c\u01a1 t\u1ea5n c\u00f4ng m\u1ea1ng nh\u1eb1m v\u00e0o c\u00e1c h\u1ec7 th\u1ed1ng th\u00f4ng tin tr\u00ean to\u00e0n qu\u1ed1c, trong \u0111\u00f3 \u0111\u00e3 c\u00f3 nh\u1eefng s\u1ef1 c\u1ed1 v\u1ec1 t\u1ea5n c\u00f4ng ransomware nh\u1eafm v\u00e0o h\u1ec7 th\u1ed1ng c\u1ee7a c\u00e1c doanh nghi\u1ec7p l\u1edbn, g\u00e2y ra nh\u1eefng h\u1eadu qu\u1ea3 v\u00f4 c\u00f9ng n\u1eb7ng n\u1ec1 c\u1ea3 cho doanh nghi\u1ec7p v\u00e0 kh\u00e1ch h\u00e0ng c\u1ee7a h\u1ecd, ph\u1ea7n n\u00e0o t\u00e1c \u0111\u1ed9ng x\u1ea5u \u0111\u1ebfn t\u00ecnh h\u00ecnh kinh t\u1ebf chung trong n\u01b0\u1edbc. \u0110i\u1ec1u n\u00e0y \u0111\u00e3 l\u00e0m cho nhi\u1ec1u c\u01a1 quan, t\u1ed5 ch\u1ee9c v\u00e0 doanh nghi\u1ec7p t\u1ea1i Vi\u1ec7t Nam nh\u1eadn ra r\u00f5 h\u01a1n v\u1ec1 m\u1ee9c \u0111\u1ed9 nguy hi\u1ec3m c\u1ee7a h\u00ecnh th\u1ee9c t\u1ea5n c\u00f4ng m\u1ea1ng n\u00e0y.<\/p>\n

\"H\u00ecnh
H\u00ecnh 1 C\u00e1c doanh nghi\u1ec7p, t\u1ed5 ch\u1ee9c t\u00e0i ch\u00ednh b\u1ecb t\u1ea5n c\u00f4ng m\u1ea1ng nghi\u00eam tr\u1ecdng nh\u1eefng n\u0103m g\u1ea7n \u0111\u00e2y. \u1ea2nh B\u1ed9 TT&TT – tr\u00edch t\u1eeb Vietnamnet<\/figcaption><\/figure>\n

Ransomware l\u00e0 g\u00ec?<\/strong><\/p>\n

Ransomware, hay c\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 “ph\u1ea7n m\u1ec1m t\u1ed1ng ti\u1ec1n”, l\u00e0 m\u1ed9t lo\u1ea1i m\u00e3 \u0111\u1ed9c \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 x\u00e2m nh\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng m\u00e1y t\u00ednh v\u00e0 m\u00e3 h\u00f3a c\u00e1c file d\u1eef li\u1ec7u quan tr\u1ecdng tr\u00ean m\u00e1y n\u1ea1n nh\u00e2n. Sau \u0111\u00f3, k\u1ebb t\u1ea5n c\u00f4ng s\u1ebd y\u00eau c\u1ea7u n\u1ea1n nh\u00e2n ph\u1ea3i b\u1ecf ra m\u1ed9t kho\u1ea3n ti\u1ec1n chu\u1ed9c \u0111\u1ec3 l\u1ea5y \u0111\u01b0\u1ee3c ch\u00eca kh\u00f3a m\u1edf kh\u00f3a, kh\u00f4i ph\u1ee5c l\u1ea1i d\u1eef li\u1ec7u v\u1ec1 nguy\u00ean tr\u1ea1ng. \u0110i\u1ec1u n\u00e0y c\u00f3 th\u1ec3 g\u00e2y ra nh\u1eefng h\u1eadu qu\u1ea3 nghi\u00eam tr\u1ecdng, \u0111\u1eb7c bi\u1ec7t l\u00e0 \u0111\u1ed1i v\u1edbi c\u00e1 nh\u00e2n v\u00e0 doanh nghi\u1ec7p.<\/p>\n

Nguy\u00ean nh\u00e2n d\u00ednh ransomware<\/strong><\/p>\n

T\u1ea5n c\u00f4ng ransomware hi\u1ec7n nay th\u01b0\u1eddng b\u1eaft \u0111\u1ea7u t\u1eeb m\u1ed9t \u0111i\u1ec3m y\u1ebfu b\u1ea3o m\u1eadt c\u1ee7a c\u01a1 quan, t\u1ed5 ch\u1ee9c, doanh nghi\u1ec7p. Nh\u1eefng \u0111i\u1ec3m y\u1ebfu n\u00e0y c\u00f3 th\u1ec3 \u0111\u1ebfn t\u1eeb h\u1ec7 th\u1ed1ng c\u00f4ng ngh\u1ec7 th\u00f4ng tin k\u00e9m t\u00ednh b\u1ea3o m\u1eadt, nh\u01b0ng ch\u1ee7 y\u1ebfu l\u00e0 do \u0111i\u1ec3m y\u1ebfu t\u1eeb con ng\u01b0\u1eddi, khi nh\u1eadn th\u1ee9c v\u1ec1 \u0111\u1ea3m b\u1ea3o an ninh th\u00f4ng tin c\u1ee7a c\u00e1c c\u00e1 nh\u00e2n trong t\u1eebng c\u01a1 quan, t\u1ed5 ch\u1ee9c ch\u01b0a cao, th\u1eadm ch\u00ed l\u00e0 ch\u01b0a c\u00f3. K\u1ecbch b\u1ea3n quen thu\u1ed9c khi\u1ebfn cho c\u00e1c doanh nghi\u1ec7p d\u00ednh ph\u1ea3i ransomware l\u00e0 do nh\u00e2n vi\u00ean trong c\u00f4ng ty \u0111\u00e3 kh\u00f4ng \u0111\u1ec1 ph\u00f2ng tr\u01b0\u1edbc c\u00e1c email l\u1ea1, v\u00f4 t\u00ecnh click v\u00e0o c\u00e1c \u0111\u01b0\u1eddng link ho\u1eb7c t\u1ea3i v\u00e0 ch\u1ea1y c\u00e1c file \u0111\u00ednh k\u00e8m trong nh\u1eefng email n\u00e0y m\u00e0 kh\u00f4ng bi\u1ebft n\u00f3 ch\u00ednh l\u00e0 m\u00e3 \u0111\u1ed9c. Kh\u00f4ng ch\u1ec9 nh\u1eefng link \u0111\u00ednh k\u00e8m trong email, ngay c\u1ea3 nh\u1eefng \u0111\u01b0\u1eddng link \u0111\u01b0\u1ee3c g\u1eedi trong c\u00e1c b\u00ecnh lu\u1eadn tr\u00ean m\u1ea1ng x\u00e3 h\u1ed9i Facebook, Twitter,… v\u1edbi n\u1ed9i dung 18+, \u0111\u00e1nh b\u1ea1c, c\u00e1 \u0111\u1ed9 b\u00f3ng \u0111\u00e1 hay b\u00f3i to\u00e1n… c\u0169ng \u0111\u1ec1u c\u00f3 nguy c\u01a1 t\u1ea3i xu\u1ed1ng m\u00e1y t\u00ednh lo\u1ea1i m\u00e3 \u0111\u1ed9c n\u00e0y.<\/p>\n

Ransomware c\u0169ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c \u0111\u01b0a v\u00e0o m\u00e1y t\u00ednh th\u00f4ng qua vi\u1ec7c s\u1eed d\u1ee5ng c\u00e1c ph\u1ea7n m\u1ec1m crack, \u0111\u01b0\u1ee3c t\u1ea3i xu\u1ed1ng t\u1eeb c\u00e1c trang kh\u00f4ng tin c\u1eady, kh\u00f4ng ph\u1ea3i t\u1eeb website ch\u00ednh th\u1ee9c c\u1ee7a ph\u1ea7n m\u1ec1m \u0111\u00f3.<\/p>\n

Ngo\u00e0i ra, ransomware c\u00f2n c\u00f3 kh\u1ea3 n\u0103ng t\u1ef1 ph\u00e1t t\u00e1n th\u00f4ng qua vi\u1ec7c s\u1eed d\u1ee5ng c\u00e1c k\u1ebft n\u1ed1i m\u1ea1ng kh\u00f4ng an to\u00e0n, l\u00e2y lan t\u1eeb m\u00e1y t\u00ednh n\u00e0y sang m\u00e1y t\u00ednh kh\u00e1c trong c\u00f9ng v\u00f9ng m\u1ea1ng.<\/p>\n

T\u00e1c \u0111\u1ed9ng v\u00e0 h\u1eadu qu\u1ea3<\/strong><\/p>\n

Khi k\u1ebb t\u1ea5n c\u00f4ng s\u1eed d\u1ee5ng ransomware x\u00e2m nh\u1eadp \u0111\u01b0\u1ee3c v\u00e0o h\u1ec7 th\u1ed1ng, h\u1eafn s\u1ebd duy tr\u00ec s\u1ef1 hi\u1ec7n di\u1ec7n v\u00e0 m\u1edf r\u1ed9ng ph\u1ea1m vi x\u00e2m nh\u1eadp. T\u1eeb \u0111\u00f3, tin t\u1eb7c c\u00f3 th\u1ec3 ki\u1ec3m so\u00e1t h\u1ea1 t\u1ea7ng c\u00f4ng ngh\u1ec7 th\u00f4ng tin c\u1ee7a t\u1ed5 ch\u1ee9c, l\u00e0m t\u00ea li\u1ec7t to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng. Tr\u00ean m\u00e1y t\u00ednh n\u1ea1n nh\u00e2n s\u1ebd xu\u1ea5t hi\u1ec7n th\u00f4ng b\u00e1o t\u1ea5t c\u1ea3 d\u1eef li\u1ec7u \u0111\u00e3 b\u1ecb m\u00e3 h\u00f3a, k\u00e8m v\u1edbi m\u1ed9t h\u01b0\u1edbng d\u1eabn chi ti\u1ebft c\u00e1ch g\u1eedi ti\u1ec1n chu\u1ed9c \u0111\u1ec3 gi\u1ea3i m\u00e3 kh\u00f4i ph\u1ee5c l\u1ea1i d\u1eef li\u1ec7u.<\/p>\n

\"H\u00ecnh
H\u00ecnh 2: C\u00e1ch th\u1ee9c ho\u1ea1t \u0111\u1ed9ng c\u1ee7a ransomware<\/figcaption><\/figure>\n
\"H\u00ecnh
H\u00ecnh 3: \u0110o\u1ea1n tin nh\u1eafn th\u00f4ng b\u00e1o h\u1ec7 th\u1ed1ng \u0111\u00e3 b\u1ecb nhi\u1ec5m ransomware v\u00e0 y\u00eau c\u1ea7u chuy\u1ec3n ti\u1ec1n \u0111\u1ec3 chu\u1ed9c l\u1ea1i d\u1eef li\u1ec7u<\/figcaption><\/figure>\n

Qua hai v\u1ee5 t\u1ea5n c\u00f4ng ransomware v\u00e0o VNDIRECT v\u00e0 PVOIL, ta c\u00f3 th\u1ec3 th\u1ea5y \u0111\u01b0\u1ee3c nh\u1eefng h\u1eadu qu\u1ea3 n\u1eb7ng n\u1ec1 t\u1eeb c\u00e1ch th\u1ee9c t\u1ea5n c\u00f4ng n\u00e0y. N\u00f3 kh\u00f4ng ch\u1ec9 g\u00e2y ra s\u1ef1 phi\u1ec1n to\u00e1i v\u00e0 m\u1ea5t th\u1eddi gian khi kh\u00f4ng th\u1ec3 truy c\u1eadp \u0111\u01b0\u1ee3c d\u1eef li\u1ec7u, m\u00e0 c\u00f2n g\u00e2y ra nh\u1eefng t\u1ed5n th\u1ea5t t\u00e0i ch\u00ednh v\u00f4 c\u00f9ng l\u1edbn cho doanh nghi\u1ec7p, kh\u00f4ng ch\u1ec9 l\u00e0 kho\u1ea3n ti\u1ec1n chu\u1ed9c ph\u1ea3i tr\u1ea3 cho k\u1ebb t\u1ea5n c\u00f4ng, hay kho\u1ea3n doanh thu kh\u00f4ng th\u1ec3 ki\u1ebfm \u0111\u01b0\u1ee3c trong qu\u00e1 tr\u00ecnh t\u1ea1m ng\u01b0ng ho\u1ea1t \u0111\u1ed9ng kinh doanh \u0111\u1ec3 x\u1eed l\u00fd v\u00e0 kh\u00f4i ph\u1ee5c h\u1ec7 th\u1ed1ng, m\u00e0 c\u00f2n l\u00e0 s\u1ef1 m\u1ea5t uy t\u00edn, danh ti\u1ebfng c\u1ee7a c\u00e1 nh\u00e2n doanh nghi\u1ec7p, g\u00e2y ra nh\u1eefng h\u1ec7 l\u1ee5y l\u00e2u d\u00e0i v\u1ec1 sau.<\/p>\n

C\u00e1ch th\u1ee9c ph\u00f2ng tr\u00e1nh<\/strong><\/p>\n

Th\u1ea5y \u0111\u01b0\u1ee3c t\u1ea7m quan tr\u1ecdng c\u1ee7a vi\u1ec7c b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u doanh nghi\u1ec7p v\u00e0 ph\u00f2ng ch\u1ed1ng m\u00e3 \u0111\u1ed9c t\u1ea5n c\u00f4ng, c\u00e1c c\u01a1 quan, t\u1ed5 ch\u1ee9c, doanh nghi\u1ec7p c\u1ea7n n\u00e2ng cao nh\u1eadn th\u1ee9c v\u1ec1 an to\u00e0n th\u00f4ng tin cho t\u1eebng c\u00e1 nh\u00e2n trong \u0111\u1ed9i ng\u0169 nh\u00e2n l\u1ef1c, c\u00f9ng v\u1edbi vi\u1ec7c \u00e1p d\u1ee5ng c\u00e1c ch\u00ednh s\u00e1ch t\u0103ng c\u01b0\u1eddng b\u1ea3o m\u1eadt h\u1ec7 th\u1ed1ng. M\u1ed9t s\u1ed1 l\u01b0u \u00fd quan tr\u1ecdng \u0111\u1ec3 ph\u00f2ng ch\u1ed1ng ransomware:<\/p>\n