欢迎大家扫描上面二维码，加主编为好友

朋友圈会额外推送更多实时信息

中国多所高校被黑，加油站断网；台湾是重点攻击目标之一；英国医疗系统瘫痪；德国铁路也受影响，在全球几十个国家，企业、机构和普通用户的电脑出现故障。

（德国之声中文网）据IT专家称，攻击来自于所谓的勒索病毒，这种病毒将电脑文件加密，只有在支付赎金的情况下，才会将文件解密。IT安全公司卡巴斯基(Kaspersky)的专家雷夫（Costin Raiu）表示，至少发生了4.5万次攻击，分布在全球74个国家。安全公司Avast所估测的攻击数目还有更高，称在99个国家发生了7.5万次攻击。该公司的安全专家科瑞斯特金（Jakub Kroustek）说，目前攻击的重点是俄罗斯、乌克兰和台湾。

这次袭击的整体规模究竟有多大，目前尚不清楚。专家们表示，该勒索病毒传播很快。据Forcepoint Security Labs公司称，包含着该病毒的邮件以近每小时500万封的速度发出，所使用的是"Wanna Cry"（"想哭"）恶意软件（也被称作Wanna Decryptor）。

据中国媒体报道，该国一些高校被黑，多地部分中国石油旗下加油站在13日0点左右也突然出现断网，目前无法使用支付宝、微信、银联卡等联网支付方式，只能使用现金支付，加油站加油业务正常运行。

中国网络安全公司360首席安全工程师郑文彬告诉新华社记者，电脑被这种勒索软件感染后，其中文件会被加密锁住，支付黑客所要求赎金后才能解密恢复。据悉，勒索金额最高达5个比特币，目前价值人民币5万多元。 据郑文彬介绍，中国此次遭受攻击的主要是教育网用户。这种勒索软件利用微软"视窗"操作系统445端口的漏洞，中国一些网络运营商此前已封锁了该端口，但教育网并未设限。

英国医院成为攻击目标

黑客攻击导致了英国医疗系统大规模瘫痪

黑客攻击导致了英国医院和诊所的大规模瘫痪。由于公共卫生系统NHS（英国国家医疗服务体系）的IT系统出现了故障，救护车不得不被分流到其他医院，很多病人未能获诊，常规手术被临时取消。至少21家医院表示，遇到了较大故障。不过英国首相梅表示，攻击者并非特别把医院系统作为目标，这是一次"国际性袭击"。

在西班牙，很多企业电脑感染了该病毒，其中包括电信公司Telefonica。该公司的发言人，感染病毒的电脑将被要求支付比特币，以便可以重新解锁数据。该发言人表示，这目前没有影响到该公司的顾客和服务。

据报道，澳大利亚、比利时、法国、意大利、墨西哥一些机构的电脑中招。在美国，联邦快递FedEx遭遇黑客攻击、受到影响，并为此向顾客致歉。俄罗斯内政部的一名发言人称，该部的约一千台电脑成为攻击目标。不过据俄罗斯文传电讯社援引消息人士称，没有因为黑客攻击而丢失信息。

据以色利软件安全公司Check Point Software称，黑客攻击同样发生在德国。该公司的发言人建议各机构，对其IT系统进行排查，拦截可疑的危险邮件附件，过滤掉恶意代码。

德铁在周五夜间发布消息称，遭遇黑客攻击，因为一些领域受木马病毒袭击，出现部分系统瘫痪。不过，"铁路交通依旧可用"。此前，社交媒体推特（Twitter）上有照片显示，铁路电子指示屏上可以看到错误及赎金提示。

德国铁路电子指示屏上的提示功能受影响

发现了安全漏洞

黑客利用的应该是之前被美国国家安全局（NSA）所发现的一个安全漏洞。那些被泄露出来的NSA文件提到了这个漏洞。据安全公司卡巴斯基称，今年4月名为" Shadow Brokers"的黑客组织发布了这些信息，称NSA发现了这些漏洞。当时在西方IT安全圈，很多人怀疑黑客与俄罗斯情报部门有联系。

今年3月，微软针对该漏洞(MS17-010)推出了一个补丁软件，可以阻拦该恶意软件的传播机制。据专家表示，很多电脑还没有开始运行该补丁。德国联邦信息安全局提醒应该进行电脑升级。微软的该补丁已经在3月14日发布。

王凡/安静（法新社，德新社，路透社）

EHSCity信息安全短片见下

Wanna Cry ransomware cyber attack: 104 countries hit, India among worst affected, US NSA attracts criticism

WANNA CRY ROUNDUP: ALL THAT HAPPENED

1. On Friday, media reports started highlighting that a ransomware attack had brought down computer systems in UK hospitals. It soon emerged that the attack was global with reports of affected computers coming in from all over the globe.

2. The ransomware - Wanna Cry - infected computers and encrypted all the data stored on the hard drives. In lieu of decrypting the data, Wanna Cry demanded payment ranging between $300 (around Rs 19,000) to $600 (around Rs 39,000) in bitcoin.

3. As of Saturday, no hacker or hacker group had come forward to claim responsibility for the cyber attack, which used an exploit first developed by the US NSA. The European Cybercrime Centre said, "The recent attack is at an unprecedented level and will require a complex international investigation to identify the culprits.

4. Some experts said the threat had receded as of Sunday, in part because MalwareTech registered a domain that he noticed the malware was trying to connect to, limiting Wanna Cry's spread. Microsoft also issued emergency security patches for a range of Windows versions.

5. The Indian Computer Emergency Response Team (ICERT or CERT-In) was said to be monitoring the situation continuously. Earlier on Saturday CERT-In was reported to have issued an adivsory asking computer users in India to upgrade their systems to the latest Windows patch level.

6. In Brazil, the social security system had to disconnect its computers and cancel public access. The state-owned oil company Petrobras and Brazil's Foreign Ministry also disconnected computers as a precautionary measure, and court systems went down, too.

7. In Russia, government agencies insisted that all attacks had been resolved. Russian Interior Ministry, which runs the national police, said the problem had been "localized" with no information compromised. Russia's health ministry said its attacks were "effectively repelled."

8. Germany's national railway said Saturday departure and arrival display screens at its train stations were affected, but there was no impact on actual train services. Deutsche Bahn said it deployed extra staff to help customers.

9. French carmaker Renault's assembly plant in Slovenia halted production after it was targeted. Radio Slovenia said Saturday the Revoz factory in the southeastern town of Novo Mesto stopped working Friday evening to stop the malware from spreading.

10. Elsewhere in Europe, the attack hit Spain's Telefonica, a global broadband and telecommunications company, and knocked ticketing offline for Norway's IF Odd, a 132-year-old soccer club.

11. "I believe many companies have not yet noticed," said William Saito, a cyber security adviser to Japan's government. "Things could likely emerge on Monday" as staff return to work.

12. China's information security watchdog said "a portion" of Windows systems users in the country were infected, according to a notice posted on the official Weibo page of the Beijing branch of the Public Security Bureau on Saturday. Xinhua state news agency said some secondary schools and universities were hit.

欢迎大家积极投稿，一经采用，根据供稿质量我们发10—100元不等的红包表示感谢。您的一次分享可能会挽救一条生命。投稿及领稿费请添加编辑个人微信号 1602923531 或扫描如下二维码.

欢迎大家扫描下面二维码，加主编为好友

朋友圈会额外推送更多实时信息