勒索病毒WannaCry到底是什麼？怎麼預防？

What does the WannaCry virus do?
問：WannaCry（“想哭”）病毒到底是做什麼的？

It locks computers so that users cannot access their files or programs. Hackers ask for payment to safely release the computer.
答：WannaCry病毒會給用戶電腦加密，令用戶無法訪問電腦中的文件或程序。

This type of virus is also known as ransomware.
黑客要求用戶支付贖金來解鎖電腦。

WannaCry and its variants like Wana- Crypt and Wanna Decryptor target computers that use Microsoft's Windows operating system.
這類病毒被稱爲勒索病毒。WannaCry病毒及其變種，如Wana-Crypt和Wanna Decryptor的攻擊對象是使用微軟Windows操作系統的電腦。

How does it infect computers?
問：病毒如何感染電腦？

By e-mail. Users receive a file, usually in a format. When the user clicks on the file or opens it, the virus will automatically spread and lock up files and programs.
答：通過電子郵件。通常情況下，用戶先是收到後綴名爲的文件，用戶點擊文件或打開文件後，病毒會自動傳播並鎖住文件和程序。

Once the computer is fully infected, the user can access only two files - instructions on what to do next and the virus program itself.
一旦電腦被完全感染，用戶只能訪問兩個文件：下一步操作指示和病毒程序本身。

Other forms of ransom- ware lure users into clicking on a fake link in an e-mail or on a bogus website. It will then release a virus that corrupts the computer.
其他形式的勒索病毒會誘使用戶點擊電子郵件或虛假網站上的虛假鏈接，繼而放出病毒侵入電腦。

Ransomware is not new. Why the panic?
問：勒索病毒不是最近纔出現的。爲何引起恐慌？

The speed and scale of WannaCry's spread has alarmed security experts.
答：WannaCry病毒傳播速度之快、規模之大，震驚了網絡安全專家。

Within hours of it being discovered on Friday, over 57,000 attacks were reported across 99 countries, with Russia, Ukraine and Taiwan reportedly the top targets.
週五發現病毒後，數小時內，全球共發生57000多起病毒襲擊事件，波及99個國家。俄羅斯、烏克蘭和臺灣地區成爲攻擊的主要目標。

Operations in large organisations like Britain's National Health Service, global shipper FedEx in the United States and the Russian Interior Ministry have been affected.
諸如英國國家衛生服務局、美國聯邦快遞和俄羅斯內務部等大型機構部門的業務均受到影響。

Experts say the malicious software is spreading at a rate of five million e-mails per hour.
專家表示，惡意軟件正以每小時500萬封電子郵件的速度擴散。

This virus has been designed as a "worm", which means it can automatically spread to other computers in the same network.
這種病毒設計採用“蠕蟲”式，意味着它可以自動傳播感染同一網絡中的其他電腦。

How can one protect one's computer?
問：用戶該如何保護自己的電腦？

Microsoft has issued automatic Windows updates to defend its clients from it.
答：微軟公司已經發布了Windows自動更新來保護客戶電腦。

Additional measures include using a reputable antivirus software and a firewall, backing up files in a separate system and setting a popup blocker.
其他措施包括使用知名殺毒軟件、設置防火牆、在其他系統中備份文件以及設置彈出窗口阻止程序。

Beware of clicking links or files in e-mails or on suspicious websites.
注意不要輕易點擊電子郵件或可疑網站上的鏈接或文件。

Users who receive a ransom note should disconnect the computer from the Internet and alert the authorities.
收到贖金要求的用戶應立即斷網並上報有關部門。

Who are these hackers?
問：這些黑客是什麼來頭？

No one has claimed responsibility so far.
答：截至目前還沒有人聲稱對此次事件負責。

Experts speculate that it could be a large cyber-criminal gang.
專家猜測，這可能是一個大型的網絡犯罪團伙。

What do they want?
問：他們想要什麼？

The hackers are asking for payment of US$300 to US$600 in bitcoin, a digital currency, to restore access. Users are warned that if they do not pay up in a few days, their files will be deleted.
答：黑客要求用戶以比特幣的形式支付價值300美元到600美元的贖金來恢復文件，並威脅用戶幾天之內支付，不然文件將遭到刪除。

The hackers give instructions on how to buy bitcoin and which bitcoin address to send it to.
黑客們甚至給出操作指南，指導用戶購買比特幣併發到指定的比特幣收款地址。

Governments have advised users not to pay the ransom, as it encourages these hackers.
政府建議用戶不要支付贖金，否則只會助長黑客的囂張氣焰。

Where did this virus come from?
問：這病毒從哪來的？

The US National Security Agency was the first to discover a flaw in Microsoft's Windows operating system that allowed it to develop a way to hack, or gain access to, computers used by terrorists and enemy states.
答：美國國家安全局最早發現微軟Windows操作系統存在漏洞，並利用這個漏洞開發出病毒武器來入侵、訪問恐怖分子和敵國的計算機。

The flaw, and a tool to exploit it with malicious software, was made public last month by a hacker collective known as Shadow Brokers.
上個月，名爲“影子經紀人”的黑客團體公開了這個漏洞和利用漏洞的惡意軟件工具。