Microsoft \u0111\u00e3 gi\u00f3ng l\u00ean h\u1ed3i chu\u00f4ng c\u1ea3nh b\u00e1o v\u1ec1 Lumma Stealer, m\u1ed9t lo\u1ea1i m\u00e3 \u0111\u1ed9c chuy\u00ean \u0111\u00e1nh c\u1eafp th\u00f4ng tin, h\u01a1n 394.000 h\u1ec7 th\u1ed1ng m\u00e1y t\u00ednh Windows tr\u00ean to\u00e0n c\u1ea7u \u0111\u00e3 tr\u1edf th\u00e0nh n\u1ea1n nh\u00e2n c\u1ee7a ph\u1ea7n m\u1ec1m nguy hi\u1ec3m n\u00e0y.<\/p>\n\n\n\n
\u0110\u00e2y l\u00e0 d\u1ea1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i d\u01b0\u1edbi h\u00ecnh th\u1ee9c d\u1ecbch v\u1ee5 “Malware-as-a-Service” (MaaS), do nh\u00f3m tin t\u1eb7c c\u00f3 t\u00ean Storm-2477 ph\u00e1t tri\u1ec3n v\u00e0 ph\u00e1t t\u00e1n r\u1ed9ng r\u00e3i trong gi\u1edbi t\u1ed9i ph\u1ea1m m\u1ea1ng.<\/p>\n\n\n\n
Ph\u00e2n t\u00edch c\u1ee7a Microsoft cho th\u1ea5y, c\u00e1c nh\u00f3m tin t\u1eb7c \u0111\u00e3 tri\u1ec3n khai h\u00e0ng lo\u1ea1t th\u1ee7 \u0111o\u1ea1n tinh vi \u0111\u1ec3 ph\u00e1t t\u00e1n m\u00e3 \u0111\u1ed9c n\u00e0y. Ph\u1ed5 bi\u1ebfn nh\u1ea5t l\u00e0 th\u00f4ng qua email l\u1eeba \u0111\u1ea3o (phishing), qu\u1ea3ng c\u00e1o \u0111\u1ed9c h\u1ea1i (malvertising) – \u0111i\u1ec3n h\u00ecnh nh\u01b0 c\u00e1c trang gi\u1ea3 m\u1ea1o th\u00f4ng b\u00e1o “t\u1ea3i xu\u1ed1ng Notepad” ho\u1eb7c “c\u1eadp nh\u1eadt Chrome” nh\u1eb1m \u0111\u00e1nh l\u1eeba ng\u01b0\u1eddi d\u00f9ng nh\u1ea5p v\u00e0o.<\/p>\n\n\n\n
Kh\u00f4ng d\u1eebng l\u1ea1i \u1edf \u0111\u00f3, Lumma c\u00f2n \u0111\u01b0\u1ee3c c\u00e0i c\u1eafm trong c\u00e1c trang web b\u1ecb t\u1ea5n c\u00f4ng, t\u1ef1 \u0111\u1ed9ng t\u1ea3i xu\u1ed1ng m\u00e3 \u0111\u1ed9c khi truy c\u1eadp, ho\u1eb7c \u1ea9n m\u00ecnh trong c\u00e1c ph\u1ea7n m\u1ec1m t\u01b0\u1edfng ch\u1eebng “s\u1ea1ch” nh\u01b0ng \u0111\u00e3 b\u1ecb c\u00e0i trojan. Th\u1eadm ch\u00ed, nh\u1eefng b\u1ea3ng CAPTCHA gi\u1ea3 m\u1ea1o c\u0169ng \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 \u0111\u00e1nh l\u1eeba ng\u01b0\u1eddi d\u00f9ng, t\u1ea1o \u0111i\u1ec1u ki\u1ec7n cho Lumma x\u00e2m nh\u1eadp h\u1ec7 th\u1ed1ng.<\/p>\n\n\n\n
Microsoft \u0111\u1eb7c bi\u1ec7t khuy\u1ebfn c\u00e1o ng\u01b0\u1eddi d\u00f9ng ch\u1ec9 n\u00ean t\u1ea3i ph\u1ea7n m\u1ec1m t\u1eeb c\u00e1c ngu\u1ed3n ch\u00ednh th\u1ed1ng, uy t\u00edn nh\u1eb1m gi\u1ea3m thi\u1ec3u nguy c\u01a1 b\u1ecb t\u1ea5n c\u00f4ng.<\/p>\n\n\n\n
Tuy nhi\u00ean, t\u1eadp \u0111o\u00e0n n\u00e0y c\u0169ng c\u1ea3nh b\u00e1o r\u1eb1ng, ngay c\u1ea3 khi ng\u01b0\u1eddi d\u00f9ng \u0111\u00e3 c\u1ea9n tr\u1ecdng t\u1ea3i tr\u00ecnh duy\u1ec7t t\u1eeb trang ch\u1ee7 ch\u00ednh th\u1ee9c, h\u1ec7 th\u1ed1ng v\u1eabn c\u00f3 th\u1ec3 b\u1ecb Lumma x\u00e2m nh\u1eadp th\u00f4ng qua c\u00e1c ph\u01b0\u01a1ng th\u1ee9c ph\u00e1t t\u00e1n tinh vi kh\u00e1c.<\/p>\n\n\n\n
M\u1ed9t khi \u0111\u00e3 th\u00e2m nh\u1eadp th\u00e0nh c\u00f4ng v\u00e0o thi\u1ebft b\u1ecb, Lumma c\u00f3 kh\u1ea3 n\u0103ng \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u t\u1eeb h\u00e0ng lo\u1ea1t tr\u00ecnh duy\u1ec7t ph\u1ed5 bi\u1ebfn hi\u1ec7n nay. Trong \u0111\u00f3, c\u00e1c tr\u00ecnh duy\u1ec7t s\u1eed d\u1ee5ng nh\u00e2n Chromium nh\u01b0 Google Chrome, Microsoft Edge, hay nh\u00e2n Gecko nh\u01b0 Mozilla Firefox \u0111\u1ec1u n\u1eb1m trong t\u1ea7m ng\u1eafm c\u1ee7a m\u00e3 \u0111\u1ed9c n\u00e0y.<\/p>\n\n\n\n
Kh\u1ea3 n\u0103ng \u0111\u00e1nh c\u1eafp th\u00f4ng tin c\u1ee7a Lumma \u0111\u01b0\u1ee3c Microsoft \u0111\u00e1nh gi\u00e1 l\u00e0 v\u00f4 c\u00f9ng nghi\u00eam tr\u1ecdng v\u00e0 \u0111a d\u1ea1ng.<\/p>\n","protected":false},"excerpt":{"rendered":"
Microsoft \u0111\u00e3 gi\u00f3ng l\u00ean h\u1ed3i chu\u00f4ng c\u1ea3nh b\u00e1o v\u1ec1 Lumma Stealer, m\u1ed9t lo\u1ea1i m\u00e3 \u0111\u1ed9c chuy\u00ean \u0111\u00e1nh c\u1eafp th\u00f4ng tin, […]<\/p>\n","protected":false},"author":6,"featured_media":9877,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-9875","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bao-mat"],"views":2663,"_links":{"self":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts\/9875","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/comments?post=9875"}],"version-history":[{"count":1,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts\/9875\/revisions"}],"predecessor-version":[{"id":9876,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts\/9875\/revisions\/9876"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/media\/9877"}],"wp:attachment":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/media?parent=9875"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/categories?post=9875"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/tags?post=9875"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}