¤ß¤º¤Û¤ä»°É©UFJ¤Ê¤É¶ä¹Ô¤òÌÏÊ路¡¢ÆüËܻԾìÁÀ¤¦¡ÖBlueNoroff¡×¤ËÃí°Õ
Kaspersky Lab¤Ï12·î27Æü(Êƹñ»þ´Ö)¡¢¡ÖBlueNoroff introduces new methods bypassing MoTW | Securelist¡×¤Ë¤ª¤¤¤Æ¡¢¶âÁ¬Åª¤ÊÆ°µ¡¤Ç¥µ¥¤¥Ð¡¼¹¶·â¤ò¼Â»Ü¤·¤Æ¤¤¤ë¥°¥ë¡¼¥×¡ÖBlueNoroff¡×¤¬¹¶·â¼êË¡¤Ë²þÁ±¤ò²Ã¤¨¤Æ¤¤¤ë¤ÈÅÁ¤¨¤¿¡£Windows¤ÎMoTW¥Þ¡¼¥¯(MoTW: Mark-of-the-Web)¤ò²óÈò¤¹¤ëÊýË¡¤¬Æ³Æþ¤µ¤ì¤Æ¤¤¤ë¤Û¤«¡¢MoTW¥Þ¡¼¥¯¤ò²óÈò¤¹¤ë¤¿¤á¤Ë¤µ¤Þ¤¶¤Þ¤Ê¥Õ¥¡¥¤¥ë¥¿¥¤¥×¤¬¥Æ¥¹¥È¤µ¤ì¤¿º¯Àפ¬¸«¤é¤ì¤ë¤ÈÊó¹ð¤µ¤ì¤Æ¤¤¤ë¡£
Windows¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¥À¥¦¥ó¥í¡¼¥É¤·¤¿¥Õ¥¡¥¤¥ë¤ËÂФ·¤ÆMoTW¥Þ¡¼¥¯(MoTW: Mark-of-the-Web)¤òÀßÄꤹ¤ë¡£Windows¤ÏMoTW¥Þ¡¼¥¯¤¬ÀßÄꤵ¤ì¤¿¥Õ¥¡¥¤¥ë¤ËÂФ¹¤ë¥»¥¥å¥ê¥Æ¥£¥ì¥Ù¥ë¤ò°ú¤¾å¤²¤ë¤è¤¦¤ËÆ°ºî¤¹¤ë¡£Î㤨¤Ð¡¢Microsoft Office¥É¥¥å¥á¥ó¥È¤Î¥Þ¥¯¥í¤Ê¤É¤òÄ̤¸¤Æ¥Ú¥¤¥í¡¼¥É¤ò¹Ô¤ª¤¦¤È¤¹¤ë¥¿¥¤¥×¤Î¥Õ¥£¥Ã¥·¥ó¥°º¾µ½¤Ê¤É¤ËMoTW¥Þ¡¼¥¯¤¬¸ú²ÌŪ¤Ëµ¡Ç½¤¹¤ë¤³¤È¤¬ÃΤé¤ì¤Æ¤¤¤ë¡£
¥µ¥¤¥Ð¡¼¹¶·â¼Ô¤ÏWindows¤Î¤³¤¦¤·¤¿MoTW¥Þ¡¼¥¯Ëɸ浡ǽ¤ò²óÈò¤¹¤ëÊýË¡¤òÌϺ÷¤·¤Æ¤ª¤ê¡¢¤½¤ÎÂåɽŪ¤ÊÊýË¡¤È¤·¤ÆISO¥Ç¥£¥¹¥¯¥¤¥á¡¼¥¸¤ÈVHD²¾Áۥϡ¼¥É¥Ç¥£¥¹¥¯¥¤¥á¡¼¥¸¤Î¥Õ¥¡¥¤¥ë¤òÍøÍѤ¹¤ëÊýË¡¤¬ÃΤé¤ì¤Æ¤¤¤ë¡£º£²ó¤ÎÄ´ºº¤ÇBlueNoroff¤âƱÍͤμêË¡¤òºÎÍѤ·¤¿¤³¤È¤¬¤ï¤«¤Ã¤¿¤Û¤«¡¢¤½¤ì°Ê³°¤Î¥Õ¥¡¥¤¥ë¥¿¥¤¥×¤Ë¤Ä¤¤¤Æ¤â¥Æ¥¹¥È¤ò¼Â»Ü¤·¤Æ¤¤¤ë¤³¤È¤¬ÌÀ¤é¤«¤Ë¤Ê¤Ã¤¿¡£
¤µ¤é¤ËKaspersky Lab¤ÏʬÀϤηë²Ì¡¢BlueNoroff¤¬ÆüËܸì¤Î¥Õ¥¡¥¤¥ë̾¤ò»ÈÍѤ·¤Æ¤¤¤ë¤³¤È¤ä¡¢ÆüËܤζä¹Ô¤ä¶âÍ»¥µ¡¼¥Ó¥¹¡¢¥Ù¥ó¥Á¥ã¡¼¥¥ã¥Ô¥¿¥ë¤Ê¤É¤òÌÏÊ路¤Æ¤¤¤ë¤³¤È¤Ê¤É¤«¤é¡¢ÆüËܻԾì¤Ë¶¯¤¤´Ø¿´¤ò»ý¤Ã¤Æ¤¤¤ë¤È»ØŦ¤·¤Æ¤¤¤ë¡£
ÌÏÍͤµ¤ì¤Æ¤¤¤ë¼ç¤Ê¶âÍ»µ¡´Ø¤Ï¼¡¤Î¤È¤ª¤ê¡£
ABF Capital
Angel Bridge
ANOBAKA
Bank of America
Beyond Next Ventures
Trans-Pacific Technology Fund
Z Venture Capital
¤ß¤º¤Û¥Õ¥£¥Ê¥ó¥·¥ã¥ë¥°¥ë¡¼¥×
»°°æ½»Í§¶ä¹Ô
»°É©UFJ¥Õ¥£¥Ê¥ó¥·¥ã¥ë¡¦¥°¥ë¡¼¥×
BlueNoroff¤Ï¼ÂºÝ¤Ë¿ôÉ´Ëü¥É¥ëÁêÅö¤Î°Å¹æ»ñ»º¤òÀà¼è¤¹¤ë¤Ê¤É¡¢¥µ¥¤¥Ð¡¼¹¶·â¤«¤éÍø±×¤ò¾å¤²¤ë¤³¤È¤ËÀ®¸ù¤·¤Æ¤¤¤ë¤È»ØŦ¤µ¤ì¤Æ¤¤¤ë¡£¸½ºß¤â¥Þ¥ë¥¦¥§¥¢ÇÛ¿®¤ò²þÁ±¤¹¤ë¤¿¤á¤Î¼è¤êÁȤߤò·Ñ³¤·¤Æ¤ª¤ê¡¢º£¸å¤â¤³¤Î¥°¥ë¡¼¥×¤Ë¤è¤ë¥µ¥¤¥Ð¡¼¥»¥¥å¥ê¥Æ¥£¹¶·â¤¬·Ñ³¤¹¤ë²ÄǽÀ¤¬¹â¤¤¤È¤¤¤¦¡£
ÆüËܤòɸŪ¤È¤·¤¿¥µ¥¤¥Ð¡¼¹¶·â¤Ïǯ¡¹¹ªÌ¯¤Ë¤Ê¤Ã¤Æ¤ª¤ê¡¢¥Õ¥£¥Ã¥·¥ó¥°º¾µ½¥á¡¼¥ë¤ÎÃʳ¬¤Ç¿¿µ¶¤ÎȽÃǤ¬Æñ¤·¤¤¤â¤Î¤âÁý¤¨¤Æ¤¤¤ë¡£¥á¡¼¥ë¤òÆɤó¤Ç¾¯¤·¤Ç¤â°ãÏ´¶¤ò´¶¤¸¤¿¤Î¤Ç¤¢¤ì¤Ð¡¢°ìöºî¶È¤Î¼ê¤ò»ß¤á¤Æ¥ê¥ó¥¯¤äźÉÕ¥Õ¥¡¥¤¥ë¤Î³Îǧ¡¢ÅÅÏääÀµµ¬¤Î¥ë¡¼¥È¤ò·Ðͳ¤·¤¿ÀèÊý¤Ø¤ÎÏ¢Íí³Îǧ¤ò¹Ô¤¦¤Ê¤É¡¢´ðËÜŪ¤Ê¥»¥¥å¥ê¥Æ¥£Âкö¤òÅ°Ä줷¤Æ¤¤¤¯¤³¤È¤¬Ë¾¤Þ¤ì¤ë¡£
Windows¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¥À¥¦¥ó¥í¡¼¥É¤·¤¿¥Õ¥¡¥¤¥ë¤ËÂФ·¤ÆMoTW¥Þ¡¼¥¯(MoTW: Mark-of-the-Web)¤òÀßÄꤹ¤ë¡£Windows¤ÏMoTW¥Þ¡¼¥¯¤¬ÀßÄꤵ¤ì¤¿¥Õ¥¡¥¤¥ë¤ËÂФ¹¤ë¥»¥¥å¥ê¥Æ¥£¥ì¥Ù¥ë¤ò°ú¤¾å¤²¤ë¤è¤¦¤ËÆ°ºî¤¹¤ë¡£Î㤨¤Ð¡¢Microsoft Office¥É¥¥å¥á¥ó¥È¤Î¥Þ¥¯¥í¤Ê¤É¤òÄ̤¸¤Æ¥Ú¥¤¥í¡¼¥É¤ò¹Ô¤ª¤¦¤È¤¹¤ë¥¿¥¤¥×¤Î¥Õ¥£¥Ã¥·¥ó¥°º¾µ½¤Ê¤É¤ËMoTW¥Þ¡¼¥¯¤¬¸ú²ÌŪ¤Ëµ¡Ç½¤¹¤ë¤³¤È¤¬ÃΤé¤ì¤Æ¤¤¤ë¡£
¥µ¥¤¥Ð¡¼¹¶·â¼Ô¤ÏWindows¤Î¤³¤¦¤·¤¿MoTW¥Þ¡¼¥¯Ëɸ浡ǽ¤ò²óÈò¤¹¤ëÊýË¡¤òÌϺ÷¤·¤Æ¤ª¤ê¡¢¤½¤ÎÂåɽŪ¤ÊÊýË¡¤È¤·¤ÆISO¥Ç¥£¥¹¥¯¥¤¥á¡¼¥¸¤ÈVHD²¾Áۥϡ¼¥É¥Ç¥£¥¹¥¯¥¤¥á¡¼¥¸¤Î¥Õ¥¡¥¤¥ë¤òÍøÍѤ¹¤ëÊýË¡¤¬ÃΤé¤ì¤Æ¤¤¤ë¡£º£²ó¤ÎÄ´ºº¤ÇBlueNoroff¤âƱÍͤμêË¡¤òºÎÍѤ·¤¿¤³¤È¤¬¤ï¤«¤Ã¤¿¤Û¤«¡¢¤½¤ì°Ê³°¤Î¥Õ¥¡¥¤¥ë¥¿¥¤¥×¤Ë¤Ä¤¤¤Æ¤â¥Æ¥¹¥È¤ò¼Â»Ü¤·¤Æ¤¤¤ë¤³¤È¤¬ÌÀ¤é¤«¤Ë¤Ê¤Ã¤¿¡£
¤µ¤é¤ËKaspersky Lab¤ÏʬÀϤηë²Ì¡¢BlueNoroff¤¬ÆüËܸì¤Î¥Õ¥¡¥¤¥ë̾¤ò»ÈÍѤ·¤Æ¤¤¤ë¤³¤È¤ä¡¢ÆüËܤζä¹Ô¤ä¶âÍ»¥µ¡¼¥Ó¥¹¡¢¥Ù¥ó¥Á¥ã¡¼¥¥ã¥Ô¥¿¥ë¤Ê¤É¤òÌÏÊ路¤Æ¤¤¤ë¤³¤È¤Ê¤É¤«¤é¡¢ÆüËܻԾì¤Ë¶¯¤¤´Ø¿´¤ò»ý¤Ã¤Æ¤¤¤ë¤È»ØŦ¤·¤Æ¤¤¤ë¡£
ÌÏÍͤµ¤ì¤Æ¤¤¤ë¼ç¤Ê¶âÍ»µ¡´Ø¤Ï¼¡¤Î¤È¤ª¤ê¡£
ABF Capital
Angel Bridge
ANOBAKA
Bank of America
Beyond Next Ventures
Trans-Pacific Technology Fund
Z Venture Capital
¤ß¤º¤Û¥Õ¥£¥Ê¥ó¥·¥ã¥ë¥°¥ë¡¼¥×
»°°æ½»Í§¶ä¹Ô
»°É©UFJ¥Õ¥£¥Ê¥ó¥·¥ã¥ë¡¦¥°¥ë¡¼¥×
BlueNoroff¤Ï¼ÂºÝ¤Ë¿ôÉ´Ëü¥É¥ëÁêÅö¤Î°Å¹æ»ñ»º¤òÀà¼è¤¹¤ë¤Ê¤É¡¢¥µ¥¤¥Ð¡¼¹¶·â¤«¤éÍø±×¤ò¾å¤²¤ë¤³¤È¤ËÀ®¸ù¤·¤Æ¤¤¤ë¤È»ØŦ¤µ¤ì¤Æ¤¤¤ë¡£¸½ºß¤â¥Þ¥ë¥¦¥§¥¢ÇÛ¿®¤ò²þÁ±¤¹¤ë¤¿¤á¤Î¼è¤êÁȤߤò·Ñ³¤·¤Æ¤ª¤ê¡¢º£¸å¤â¤³¤Î¥°¥ë¡¼¥×¤Ë¤è¤ë¥µ¥¤¥Ð¡¼¥»¥¥å¥ê¥Æ¥£¹¶·â¤¬·Ñ³¤¹¤ë²ÄǽÀ¤¬¹â¤¤¤È¤¤¤¦¡£
ÆüËܤòɸŪ¤È¤·¤¿¥µ¥¤¥Ð¡¼¹¶·â¤Ïǯ¡¹¹ªÌ¯¤Ë¤Ê¤Ã¤Æ¤ª¤ê¡¢¥Õ¥£¥Ã¥·¥ó¥°º¾µ½¥á¡¼¥ë¤ÎÃʳ¬¤Ç¿¿µ¶¤ÎȽÃǤ¬Æñ¤·¤¤¤â¤Î¤âÁý¤¨¤Æ¤¤¤ë¡£¥á¡¼¥ë¤òÆɤó¤Ç¾¯¤·¤Ç¤â°ãÏ´¶¤ò´¶¤¸¤¿¤Î¤Ç¤¢¤ì¤Ð¡¢°ìöºî¶È¤Î¼ê¤ò»ß¤á¤Æ¥ê¥ó¥¯¤äźÉÕ¥Õ¥¡¥¤¥ë¤Î³Îǧ¡¢ÅÅÏääÀµµ¬¤Î¥ë¡¼¥È¤ò·Ðͳ¤·¤¿ÀèÊý¤Ø¤ÎÏ¢Íí³Îǧ¤ò¹Ô¤¦¤Ê¤É¡¢´ðËÜŪ¤Ê¥»¥¥å¥ê¥Æ¥£Âкö¤òÅ°Ä줷¤Æ¤¤¤¯¤³¤È¤¬Ë¾¤Þ¤ì¤ë¡£
