{"id":479470,"date":"2023-08-09T10:40:40","date_gmt":"2023-08-09T10:40:40","guid":{"rendered":""},"modified":"2023-09-05T11:18:54","modified_gmt":"2023-09-05T11:18:54","slug":"usb-drop-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/vn\/wiki\/usb-drop-attack\/","title":{"rendered":"T\u1ea5n c\u00f4ng th\u1ea3 USB"},"content":{"rendered":"

Th\u00f4ng tin t\u00f3m t\u1eaft v\u1ec1 t\u1ea5n c\u00f4ng th\u1ea3 USB<\/p>\n

T\u1ea5n c\u00f4ng \u0111\u00e1nh r\u01a1i USB \u0111\u1ec1 c\u1eadp \u0111\u1ebfn m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng an ninh m\u1ea1ng trong \u0111\u00f3 ph\u1ea7n m\u1ec1m ho\u1eb7c ph\u1ea7n c\u1ee9ng \u0111\u1ed9c h\u1ea1i \u0111\u01b0\u1ee3c \u0111\u1eb7t v\u00e0o \u1ed5 USB v\u00e0 nh\u1eefng \u1ed5 n\u00e0y sau \u0111\u00f3 \u0111\u01b0\u1ee3c c\u1ed1 t\u00ecnh \u0111\u1ec3 l\u1ea1i \u1edf nh\u1eefng n\u01a1i c\u00f4ng c\u1ed9ng. Nh\u1eefng c\u00e1 nh\u00e2n kh\u00f4ng nghi ng\u1edd khi t\u00ecm v\u00e0 s\u1eed d\u1ee5ng c\u00e1c \u1ed5 USB n\u00e0y c\u00f3 th\u1ec3 v\u00f4 t\u00ecnh \u0111\u01b0a ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i v\u00e0o m\u00e1y t\u00ednh ho\u1eb7c m\u1ea1ng c\u1ee7a h\u1ecd, d\u1eabn \u0111\u1ebfn vi ph\u1ea1m d\u1eef li\u1ec7u, h\u1ecfng h\u1ec7 th\u1ed1ng ho\u1eb7c c\u00e1c h\u00ecnh th\u1ee9c khai th\u00e1c m\u1ea1ng kh\u00e1c.<\/p>\n

L\u1ecbch s\u1eed ngu\u1ed3n g\u1ed1c c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 USB v\u00e0 s\u1ef1 \u0111\u1ec1 c\u1eadp \u0111\u1ea7u ti\u00ean v\u1ec1 n\u00f3<\/h2>\n

Ngu\u1ed3n g\u1ed1c c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 USB c\u00f3 th\u1ec3 b\u1eaft ngu\u1ed3n t\u1eeb \u0111\u1ea7u nh\u1eefng n\u0103m 2000, v\u1edbi s\u1ef1 ph\u1ed5 bi\u1ebfn ng\u00e0y c\u00e0ng t\u0103ng v\u00e0 vi\u1ec7c s\u1eed d\u1ee5ng r\u1ed9ng r\u00e3i c\u00e1c thi\u1ebft b\u1ecb USB. C\u00e1c tr\u01b0\u1eddng h\u1ee3p t\u1ea5n c\u00f4ng th\u1ea3 USB \u0111\u1ea7u ti\u00ean \u0111\u01b0\u1ee3c ghi nh\u1eadn \u0111\u00e3 xu\u1ea5t hi\u1ec7n tr\u00ean nhi\u1ec1u di\u1ec5n \u0111\u00e0n tr\u1ef1c tuy\u1ebfn kh\u00e1c nhau, n\u00eau b\u1eadt nh\u1eefng r\u1ee7i ro ti\u1ec1m \u1ea9n. Kh\u00e1i ni\u1ec7m n\u00e0y \u0111\u00e3 \u0111\u01b0\u1ee3c c\u00f4ng nh\u1eadn r\u1ed9ng r\u00e3i h\u01a1n v\u00e0o gi\u1eefa nh\u1eefng n\u0103m 2000 v\u1edbi s\u1ef1 gia t\u0103ng c\u1ee7a c\u00e1c nh\u00f3m APT (M\u1ed1i \u0111e d\u1ecda li\u00ean t\u1ee5c n\u00e2ng cao) s\u1eed d\u1ee5ng k\u1ef9 thu\u1eadt th\u1ea3 USB nh\u01b0 m\u1ed9t ph\u1ea7n trong chi\u1ebfn l\u01b0\u1ee3c t\u1ea5n c\u00f4ng c\u1ee7a h\u1ecd.<\/p>\n

Th\u00f4ng tin chi ti\u1ebft v\u1ec1 cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 USB \u2013 M\u1edf r\u1ed9ng ch\u1ee7 \u0111\u1ec1<\/h2>\n

\u0110\u1ecbnh ngh\u0129a v\u00e0 ph\u1ea1m vi<\/h3>\n

Cu\u1ed9c t\u1ea5n c\u00f4ng \u0111\u00e1nh r\u01a1i USB c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c ph\u00e2n lo\u1ea1i th\u00e0nh hai l\u0129nh v\u1ef1c ch\u00ednh:<\/p>\n

    \n
  1. T\u1ea5n c\u00f4ng d\u1ef1a tr\u00ean ph\u1ea7n m\u1ec1m<\/strong>: \u0110i\u1ec1u n\u00e0y li\u00ean quan \u0111\u1ebfn vi\u1ec7c t\u1ea3i ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i ho\u1eb7c t\u1eadp l\u1ec7nh \u0111\u1ed9c h\u1ea1i v\u00e0o \u1ed5 USB. C\u00e1c t\u1eadp l\u1ec7nh n\u00e0y s\u1ebd th\u1ef1c thi khi ch\u00e8n v\u00e0o h\u1ec7 th\u1ed1ng.<\/li>\n
  2. T\u1ea5n c\u00f4ng d\u1ef1a tr\u00ean ph\u1ea7n c\u1ee9ng<\/strong>: \u0110i\u1ec1u n\u00e0y s\u1eed d\u1ee5ng ph\u1ea7n c\u1ee9ng USB t\u00f9y ch\u1ec9nh ho\u1eb7c \u0111\u00e3 s\u1eeda \u0111\u1ed5i \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 ho\u1ea1t \u0111\u1ed9ng \u0111\u1ed9c h\u1ea1i khi \u0111\u01b0\u1ee3c c\u1eafm v\u00e0o h\u1ec7 th\u1ed1ng m\u00e1y ch\u1ee7.<\/li>\n<\/ol>\n

    M\u1ee5c ti\u00eau v\u00e0 t\u00e1c \u0111\u1ed9ng<\/h3>\n

    M\u1ee5c ti\u00eau ch\u00ednh c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 USB th\u01b0\u1eddng l\u00e0 c\u00e1c t\u1ed5 ch\u1ee9c l\u1edbn, t\u1ed5 ch\u1ee9c ch\u00ednh ph\u1ee7 ho\u1eb7c c\u00e1 nh\u00e2n c\u00f3 quy\u1ec1n truy c\u1eadp v\u00e0o th\u00f4ng tin nh\u1ea1y c\u1ea3m. C\u00e1c t\u00e1c \u0111\u1ed9ng c\u00f3 th\u1ec3 r\u1ea5t kh\u00e1c nhau, t\u1eeb \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u, t\u1ea5n c\u00f4ng ransomware, x\u00e2m ph\u1ea1m h\u1ec7 th\u1ed1ng v\u00e0 th\u1eadm ch\u00ed g\u00e2y thi\u1ec7t h\u1ea1i v\u1eadt l\u00fd cho ph\u1ea7n c\u1ee9ng th\u00f4ng qua k\u1ef9 thu\u1eadt c\u00f3 t\u00ean \u201cUSB Kill\u201d.<\/p>\n

    C\u1ea5u tr\u00fac b\u00ean trong c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 USB \u2013 C\u00e1ch th\u1ee9c ho\u1ea1t \u0111\u1ed9ng c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng th\u1ea3 r\u01a1i USB<\/h2>\n
      \n
    1. S\u1ef1 chu\u1ea9n b\u1ecb<\/strong>: K\u1ebb t\u1ea5n c\u00f4ng t\u1ea1o ho\u1eb7c mua ph\u1ea7n m\u1ec1m\/ph\u1ea7n c\u1ee9ng \u0111\u1ed9c h\u1ea1i.<\/li>\n
    2. Ph\u00e2n b\u1ed5<\/strong>: \u1ed4 USB \u0111\u01b0\u1ee3c \u0111\u1ec3 \u1edf nh\u1eefng v\u1ecb tr\u00ed m\u00e0 c\u00e1c c\u00e1 nh\u00e2n m\u1ee5c ti\u00eau c\u00f3 th\u1ec3 t\u00ecm th\u1ea5y ch\u00fang.<\/li>\n
    3. Ch\u1ea5p h\u00e0nh<\/strong>: Sau khi \u0111\u01b0\u1ee3c c\u1eafm v\u00e0o h\u1ec7 th\u1ed1ng, t\u1ea3i tr\u1ecdng \u0111\u1ed9c h\u1ea1i s\u1ebd th\u1ef1c thi.<\/li>\n
    4. Khai th\u00e1c<\/strong>: K\u1ebb t\u1ea5n c\u00f4ng gi\u00e0nh quy\u1ec1n ki\u1ec3m so\u00e1t ho\u1eb7c l\u1ea5y c\u1eafp d\u1eef li\u1ec7u.<\/li>\n<\/ol>\n

      Ph\u00e2n t\u00edch c\u00e1c t\u00ednh n\u0103ng ch\u00ednh c\u1ee7a t\u1ea5n c\u00f4ng th\u1ea3 USB<\/h2>\n