UK stops bitcoin virus

1.

The virus in the "bitcoin virus" incident is known as "ransomware". By encrypting the files in the victim's computer, you can't open them completely to ask for ransom. This is a virus attack launched by lawless elements by using "eternal blue" leaked from NSA hacker's weapon library. It does not need any operation of users. As long as it is turned on and connected to the Internet, lawless elements can implant blackmail software into computers and servers

What's more terrible is that this is just the beginning. Now this blackmail virus has spread to all over the world, including many colleges and universities in China. You can see many students on the Internet showing pictures of their computers being attacked. I have to say that hackers are really well intentioned, even in simplified Chinese

2. Australia
in October 2013, bitcoin Bank of Australia was attacked by hackers, with a loss value of more than US $1 million. This incident has aroused the concern of bitcoin security in Australia. The Reserve Bank of Australia and the Australian tax office have said they want a virtual currency tax like a business transfer tax
Bangladesh
the Central Bank of Bangladesh banned the use of virtual currency in September 2014. Using bitcoin will be punished by law
Brazil
Brazil is one of the few countries in the world that has enacted laws related to electronic currency payment systems. Brazil has not banned bitcoin
Bolivia
for regulatory reasons, the Central Bank of Bolivia (BCB) has banned the use of bitcoin. BCB believes cryptocurrency will help business entities evade taxes
Canada
bitcoin is not considered legal, that is, bitcoin is not recognized by Canadian law. Canada's tax authorities plan to implement the same tax plan as barter trade and speculative trading for the bitcoin
China
China is one of the few countries in the world that ban bitcoin completely and prohibit financial institutions and banks from dealing with bitcoin transactions. In December 2013, the people's Bank of China issued a notice calling bitcoin & quot; Virtual goods;, And prevent it from becoming money
trading has been suspended
Ecuador has banned bitcoin, but it has chosen to set up a new state-owned electronic currency and monetary system, and the currency will be protected by the assets of the Central Bank of Ecuador
EU
at present, the EU still has different views on the classification of bitcoin. In October 2012, the European Central Bank's report on virtual currency concerns the legality of bitcoin under the EU legal framework. The European Banking Regulatory Authority issued a bitcoin risk warning, saying that the use of bitcoin has not been restricted at present
Finland
Finland has relevant regulations for the use of virtual currencies such as bitcoin. The relevant regulations are issued by the Finnish tax authority Vero skatt. Any gains arising from bitcoin transactions will be subject to capital gains tax
Hong Kong
Hong Kong has no regulations for bitcoin or any other virtual currency. However, the government is closely monitoring the use of bitcoin to prohibit money laundering, fraud and other illegal activities
India
India does not explicitly stipulate or prohibit the use of bitcoin. However, the Reserve Bank of India (RBI), equivalent to the Central Bank of India, has been forced to shut down India's largest bitcoin trading platform after it issued a notice that the use of bitcoin could cause money laundering and security problems
Israel
the Israeli tax authority is considering levying income tax on bitcoin transactions. Israeli banks even blackmail bitcoin payments
Kyrgyz
Kyrgyz central bank has banned the use of digital currency and bitcoin for the reasons of lack of centralized management, high currency risk and legal problems
Russia
the Central Bank of Russia believes that bitcoin may be used for money laundering and terrorist financing. Therefore, the Russian government banned the use of bitcoin
Taiwan
Taiwan's financial supervision commission is concerned about the uncertainty and speculation of bitcoin, so Taiwan opposes the installation of bitcoin ATM
UK
at present, there are no relevant regulations for the bitcoin. Profits or losses from bitcoin transactions are subject to capital gains tax, while the purchase of bitcoin is still subject to VAT
the U.S.
the U.S. is probably the most supportive country for virtual currencies such as bitcoin. There are no final rules on bitcoin. However, there are also many new rules for the establishment of bitcoin management framework.

3.

Internet security once again because of a large-scale outbreak of computer viruses and caused everyone's attention: bit virus. The emergence of this virus will make the computer's documents locked, hackers to coerce ransom, and most of the places are important units. For example, Chinese universities and British hospitals. The data of these units are very important. Most of the time, the school is not only an ecational unit, many key universities also undertake a lot of scientific research tasks. From a certain point of view, it also shows that hackers are very selective and targeted

Of course, the explanation given by Microsoft said that the virus was an attack against the vulnerability supplemented in March. In a way, hackers are also a test of users' security awareness. Microsoft has added software to the vulnerability in March. From this point of view, the hacker's attack is not brilliant. Because it is through the official patch, and then imagine no patch defects, so as to attack. Hackers also know the update awareness and security awareness of users. Of course, as a domestic company, 360 also seized this opportunity to quickly adjust the security housekeeper to check and kill the virus

from this point of view, Microsoft's vulnerability supplement is targeted and prescient, and the possible vulnerabilities should be supplemented in time

from the user's point of view, this virus attack is different from the previous one. In the past, it is generally in the form of camouflage and loading to ince customers to take the initiative to download. And this time the virus is mostly spread through the LAN, as long as you boot, the virus will invade. The document cannot be opened normally

if this virus attack has any inspiration for us to use computers and pay attention to Internet security, I think it can be inspired from at least two aspects: the first is to strengthen the security of computer systems, such as using official patches to repair vulnerabilities in time; the other is to install regular anti-virus software, update it in time, and strengthen the firewall

4. Recently, the global spread of blackmail virus not only disrupts the global network, but also makes enterprises and institutional users panic. The culprit is a blackmail software called wannacry. Once poisoned, the computer will show that "your computer has been locked and all files have been encrypted. Unless you pay the equivalent of $300 bitcoin, your files will be permanently deleted.". In addition to the UK, China has also become the victim of this massive cyber attack. To be exact, many college students who are about to graate have become victims. Many netizens in China reported on Weibo that the computer was infected with a virus, the documents were encrypted, and they were required to pay the equivalent of $300 bitcoin to unlock the computer. A lot of senior students said that their papers, which had been hard coded for one year, were not hung up by the school, but were hung up by hackers. At present, no hacker organization has claimed the attack. The general consensus of the instry is that this large-scale network attack uses the hacker tools developed by the National Security Agency (NSA). Several private network security companies said that hackers who launched cyber attacks used the hacker tool "eternal blue" developed by NSA to bind with wannacry blackmail software, and "eternal blue" can take advantage of windows system vulnerabilities to force the "hit" computers to run wannacry blackmail software. According to statistics, more than 100 countries and regions around the world are affected by blackmail virus, and it is estimated that more than 100000 computers have been infected. Fortunately, however, the spread of bitcoin blackmail virus has been put out. According to the microblog published by @ UK, a network security officer from the UK accidentally prevented a global network attack after he bought a special domain name. It is reported that after yesterday's outbreak of this large-scale network virus, security personnel all over the world began to analyze the virus samples. One of them, a British security personnel, when analyzing the virus code, found that there was a strange domain name address at the beginning of the code. Through analysis, we found that before the outbreak of the virus, there was no access to this domain name on the network. After the outbreak of the virus, the number of visits to this domain increased sharply, reaching a peak of more than 1400 per hour. This curious British network security personnel, as usual, searched the domain name information and found that the domain name has not been registered. So, he simply spent dozens of yuan to register this strange domain name. In an instant, the domain name received the connection from computers in almost all countries in the world. In fact, the expert has no idea what happened. Later, it was discovered that this handy registration made Jane a great contribution and prevented the continued spread of bitcoin blackmail virus. With the further analysis of the virus code, this domain name looks like an emergency stop switch left by the virus author to prevent the virus from getting out of control. And security personnel also found such a statement in the code. Visit the domain name, if the domain name exists, then exit everything. On the contrary, if the domain name does not exist, then continue to attack. In other words, every infected machine will visit the domain name before starting. If the domain name still does not exist, then continue to spread; If it's already registered, stop spreading. Afterwards, the security officer mocked himself on Twitter: I confess that before I registered this domain name, I had no idea that he could stop the spread of the virus. It was a complete surprise. So in the future, I can add a sentence to my resume that I accidentally prevented a global cyber attack. Later, he made a map of the distribution of infected computers according to the access information of the domain name. Each blue dot on the map represents not only a machine infected with virus, but also a machine that visited the domain name and decided to stop attacking other computers. Although there is nothing that can be done about the infected machine, this move has prevented the possibility of further large-scale outbreak.

5.

On May 12, the ninth anniversary of the Wenchuan earthquake, bitcoin virus attacks are raging in China

as for how to prevent being attacked, a Microsoft spokesman said that users who run the free antivirus software of the system on Windows computers and enable windows updates can be protected from the virus attack. Windows 10 users can set - windows updates to enable windows updates to install the latest updates. At the same time, they can set - Windows Defender to open the security center

6. On the evening of May 12, wannacry blackmail virus spread in many countries around the world. The network of many domestic colleges and universities was attacked by blackmail virus. A large number of students' Graation Theses and other important information were encrypted by the virus, which can only be recovered by paying ransom< Br > yesterday, a reporter from Beijing Youth Daily learned that the virus affected not only the campus network, but also some enterprises and institutions< According to a staff member of Zhengzhou branch of China Unicom, on May 14, e to the influence of bitcoin blackmail virus, all the unit computers were paralyzed< On May 13, the entry-exit Office of Xiangshui Public Security Bureau announced that e to the new virus attack on the public security network, the entry-exit business was temporarily suspended, and the specific recovery time was waiting for notice< Br > "after a night, the data didn't recover." Yesterday, a police officer in Shandong told the Beiqing daily that the computer stored in the unit was locked e to the influence of blackmail virus, and he could only do nothing to learn computer science< < br > some gas stations of PetroChina are affected < br > the gas stations of PetroChina are also affected. Yesterday, PetroChina announced in its official website that at about 22:30 on May 12, e to the global outbreak of bitcoin blackmail virus, the normal operation of some gas stations of PetroChina was affected. The virus causes the network payment functions of gas station, such as gas card, bank card and third-party payment, cannot be used. However, the operation of basic businesses such as refueling and sales is normal, and the capital security of the refueling card account is not affected< Br > yesterday afternoon, a reporter from Beijing Youth Daily contacted five PetroChina gas stations in Beijing< Among them, the staff of PetroChina Shouqi No.12 gas station said that since the 13th, e to the influence of the new virus, the mobile payment, gas card payment and other payment methods of the gas station have been affected. Although the emergency repair was carried out in the morning, the network is still unstable. The staff of PetroChina Guomen gas station told Beijing Youth Daily that as of 4 p.m., Guomen gas station still only accepted cash payment or gas card payment< PetroChina said yesterday afternoon that according to the technical solutions verified on site, it began to implement the recovery work station by station. More than 80% of gas stations have recovered their network connection, and the gas stations infected by the virus are graally recovering the functions of gas cards, bank cards and third-party payment< The staff of PetroChina Dahu villa southwest, PetroChina Dongpeng gas station and PetroChina Jingshun gas station told the Beijing Youth Daily that the functions of mobile payment and gas card payment had been restored before noon< At one time, the spread of the virus was stopped by accident< Br > a 22-year-old British network engineer noticed on the evening of the 12th that the blackmail virus was constantly trying to enter an extremely special and non-existent website, so he paid 8.5 pounds (about 75 yuan) to register the domain name, trying to obtain data about the blackmail virus through this website, British media reported on the 13th< It is incredible that the further spread of blackmail virus in the world has been stopped since then< According to the analysis of the engineer and colleagues, this strange website is likely to be a "checkpoint" set by the blackmail virus developer to avoid being captured by the network security personnel, and the behavior of registering the website inadvertently triggered the "suicide switch" of the program< Br > in other words, the blackmail virus must visit the non-existent website before each attack. If the website does not exist, it means that the blackmail virus has not attracted the attention of the security personnel and can continue to move freely on the network; Once the web address exists, it means that the virus may be intercepted and analyzed< Br > in this case, in order to avoid getting more data from network security personnel or even controlling it in turn, the blackmail virus will stop spreading< < br > new varieties of blackmail virus have appeared < br > British network engineers and some network security experts who accidentally blocked the blackmail virus said that this method only temporarily prevented the further attack and spread of the blackmail virus, but it can not help the users who have suffered from the blackmail virus, and it is not a complete solution to the blackmail virus< They speculate that the new version of blackmail virus is likely to make a comeback without this "suicide switch". This kind of speculation really soon became a reality< Br > yesterday, the national network and information security information notification Center issued an emergency report: monitoring found that a variant of wannacry blackmail virus, wannacry 2.0, broke out all over the world. Different from the previous version, this variant can not close the spread of the variant by registering a domain name, and the spread speed of this variant may be faster< Br > the Information Office of Beijing Municipal Party committee, Beijing Municipal Public Security Bureau and Beijing Municipal Commission of economy and information technology also jointly issued the notice on the emergence of variants of wannacry blackmail worm and suggestions on its disposal< Br > the notice requires all units to immediately organize intranet detection. Once poisoned machines are found, they should be immediately disconnected from the network. It is strictly prohibited to use U-disk, mobile hard disk and other devices that can carry out ferry attacks "Notice" said that at present it appears that the hard disk format can clear the virus< Br>, the suspect hitherto, the European Cyber Crime Center affiliated to the European Union's Interpol 13 said that the scale of the extortion virus attack hitherto unknown, and that it is necessary to find suspects through complex international investigations. The European Union Interpol has been working with many countries to investigate the attack.

7.

Around 20:00 on May 12, 2017, bitcoin blackmail computer virus broke out in the world, which is a global blackmail software infection event

5.360 security guard has provided "NSA Arsenal immunization tool", which can be downloaded and installed

8. Don't open strange files, don't click suspicious links