近日,知名网络安全公司Recorded Future旗下的威胁研究部门Insikt Group发布报告指出,微软的GitHub网站被黑客和勒索软件组织滥用,成为他们发起攻击的新工具。报告中提到,从2023年3月至11月,越来越多的高级持续性威胁(APT)组织利用GitHub发起“受信任网站的生存”攻击。
黑客利用GitHub的可信网站发起攻击的原因有多种。首先,由于GitHub在企业中的受欢迎程度,大多数企业网络都不会阻止GitHub域名。其次,利用公开认可的TLS加密技术,简化了整个C2服务器的安装过程,降低了运行开销。此外,黑客还可以通过节省典型的托管或注册费用,降低基础设施成本。
报告中还提到,GitHub的高可用性、长正常运行时间以及低审查门槛等特点,也使得黑客更倾向于选择该平台发起攻击。而针对此类攻击,服务提供商的检测可能性有限,威胁行为者创建无法追踪的融资和支付方式也更具挑战性。
这一现象对我国网络安全构成了严重威胁,亟待加强防范。我国应加强对GitHub等国际互联网平台的监管,提高网络安全防护能力,防止黑客利用这些平台对我国关键信息基础设施进行攻击。
Title: Microsoft GitHub becomes new hacking tool
Keywords: Microsoft, GitHub, hacking
News content:
Recently, the renowned cybersecurity company Recorded Future’s Threat Research Division, Insikt Group, released a report pointing out that Microsoft’s GitHub website has been abused by hackers and ransomware organizations, becoming a new tool for them to launch attacks. The report states that from March to November 2023, more and more advanced persistent threat (APT) organizations are using GitHub to launch “living-of-trusted-sites” attacks.
There are several reasons why hackers choose to launch attacks on GitHub. Firstly, due to the popularity of GitHub in enterprises, most corporate networks do not block GitHub domains. Secondly, utilizing publicly recognized TLS encryption technology simplifies the entire C2 server installation process, reducing operating costs. Additionally, hackers can also lower infrastructure costs by saving typical hosting or registration fees.
The report also mentions that the high availability, long normal running time, and low review threshold of GitHub make it more attractive for hackers to launch attacks. This phenomenon poses a serious threat to China’s cybersecurity, and immediate measures should be taken to strengthen defense. China should strengthen the supervision of international internet platforms such as GitHub, improve cybersecurity protection capabilities, and prevent hackers from using these platforms to attack critical information infrastructure in China.
【来源】https://www.ithome.com/0/744/792.htm
Views: 1