Original title: bitcoin blackmailed by hackers on campus networks of many universities in China
What is the onion blackmail virus? How should the onion blackmail virus be cracked
Sihai.com: Recently, a computer virus named eternal blue has spread globally. Just a few days ago, the national network and information security information notification Center issued a notice that the global blackmail virus has changed. This mutation is faster than ever before, spreading faster, and suffering from a wide range of frightening!
To know how to prevent this global computer virus, let's first understand what the eternal blue virus is? What is onion software? The following editor to bring you detailed information summary and computer virus prevention details!
The way to prevent the virus attack of blackmail software is here
Recently, many colleges and universities in China have been infected with extortion software. The disk files will be encrypted by viruses. Encryption uses high-intensity encryption algorithm to solve the problem. In addition to paying high ransom, the attacker often has no other way to decrypt the files. Only paying high ransom can decrypt the recovered files, causing serious losses to learning materials and personal data. According to the network security agency, this is a virus attack launched by illegal elements using the "eternal blue" leaked from NSA's hacker Arsenal. "Eternal blue" will scan the windows machine that opens the 445 file sharing port. Without any user operation, as long as the computer is turned on and connected to the Internet, lawbreakers can plant malicious programs such as blackmail software, remote control Trojan horse, virtual currency mining machine, etc. in the computer and server.
64 global bitcoin research reports
Here we remind the campus network users:
1. Install the latest security patch for the computer. Microsoft has released patch ms17-010 to fix the system vulnerability of "eternal blue" attack. Please install this security patch as soon as possible at https://technet.microsoft.com/zh-cn/library/security/ms17-010.
2. Close ports 445, 135, 137, 138 and 139, and close network sharing.
3. Strengthen the awareness of network security: do not click the unknown link, download the unknown file, or open the unknown email.
4. As soon as possible (regularly in the future), back up the important documents in your computer to the mobile hard disk and U disk, and then save the disk offline after the backup.
5. It is recommended that users still use Windows XP. Users of Windows 2003 operating system should upgrade to Windows 7 / windows 10 or windows 2008 / 2012 / 2016 operating system as soon as possible.
6. Install the genuine operating system, office software, etc.