Hello, Habr! A yau muna son yin magana game da sabbin hare-haren yanar gizo waɗanda aka gano kwanan nan ta hanyar tankunan binciken tsaro na yanar gizo. A ƙasan yanke labarin wani labari ne game da asarar manyan bayanai daga masana'anta na siliki, labari game da rufe hanyar sadarwa a cikin birni baki ɗaya, ɗan bayani game da haɗarin sanarwar Google, ƙididdiga kan kutse na tsarin likitancin Amurka da kuma hanyar haɗin yanar gizo. Acronis YouTube channel.
Baya ga kare bayanan ku kai tsaye, mu a Acronis kuma muna sa ido kan barazanar, haɓaka gyare-gyare don sabbin lahani, da kuma shirya shawarwari don tabbatar da kariya ga tsarin daban-daban. Don wannan dalili, an ƙirƙiri cibiyar sadarwa ta duniya na cibiyoyin tsaro, Acronis Cyber Protection Operations Centers (CPOCs), kwanan nan. Waɗannan cibiyoyin suna bincikar zirga-zirga koyaushe don gano sabbin nau'ikan malware, ƙwayoyin cuta da cryptojacking.
A yau muna so muyi magana game da sakamakon CPOCs, wanda yanzu ana buga shi akai-akai akan tashar Acronis YouTube. Anan akwai mafi kyawun labarai guda 5 game da abubuwan da suka faru waɗanda za a iya kaucewa tare da aƙalla kariya ta asali daga Ransomware da phishing.
Black Kingdom ransomware ya koyi yin sulhu da masu amfani da Pulse VPN
Mai ba da sabis na VPN Pulse Secure, wanda kashi 80% na kamfanoni na Fortune 500 ke dogaro da shi, an sha fama da harin fansa na Black Kingdom. Suna amfani da rashin lafiyar tsarin da ke ba su damar karanta fayil kuma cire bayanan asusun daga ciki. Bayan haka, ana amfani da shiga da kalmar sirri da aka sace don shiga hanyar sadarwar da aka lalata.
Kodayake Pulse Secure ya riga ya fito da facin don magance wannan raunin, kamfanonin da ba su riga sun shigar da sabuntawar suna cikin haɗari ba.
Koyaya, kamar yadda gwaje-gwajen suka nuna, mafita waɗanda ke amfani da hankali na wucin gadi don gano barazanar, kamar Acronis Active Protection, ba sa ƙyale Black Kingdom cutar da kwamfutocin masu amfani da ƙarshe. Don haka idan kamfanin ku yana da irin wannan kariyar ko tsarin tare da ginanniyar tsarin sarrafa sabuntawa (misali, Acronis Cyber Protect), ba lallai ne ku damu da Black Kingdom ba.
Harin Ransomware akan Knoxville yana haifar da rufe hanyar sadarwa
A ranar 12 ga Yuni, 2020, birnin Knoxville (Amurka, Tennessee) ya fuskanci wani gagarumin harin Ransomware, wanda ya kai ga rufe hanyoyin sadarwar kwamfuta. Musamman jami'an tilasta bin doka sun rasa ikon mayar da martani ga abubuwan da suka faru sai dai ga gaggawa da barazana ga rayuwar mutane. Kuma ko da kwanaki bayan kawo karshen harin, gidan yanar gizon birnin ya buga sanarwar cewa babu sabis na kan layi.
Binciken farko da aka gudanar ya nuna cewa harin ya samo asali ne sakamakon wani babban harin da aka kai da aika sakonnin email na bogi ga ma'aikatan sabis na birnin. A wannan yanayin, an yi amfani da kayan fansa kamar Maze, DoppelPaymer ko NetWalker. Kamar yadda yake a cikin misalin da ya gabata, da hukumomin birni sun yi amfani da matakan kariya na Ransomware, da irin wannan harin ba zai yuwu a kai ba, saboda tsarin kariyar AI nan take yana gano bambance-bambancen na'urorin fansa da ake amfani da su.
MaxLinear ya ba da rahoton wani hari na Maze da yoyon bayanai
Haɗin gwiwar masana'antar-kan-chip MaxLinear ya tabbatar da cewa Maze ransomware ya kai hari kan cibiyoyin sadarwarsa. an sace kusan 1TB na bayanai, gami da bayanan sirri da kuma bayanan kuɗi na ma'aikata. Masu shirya harin sun riga sun buga 10 GB na wannan bayanai.
Sakamakon haka, MaxLinear dole ne ya ɗauki dukkan hanyoyin sadarwar kamfanin a layi tare da hayar masu ba da shawara don gudanar da bincike. Yin amfani da wannan harin a matsayin misali, bari mu sake maimaitawa: Maze sanannen sananne ne kuma sanannen nau'in fansa. Idan kuna amfani da tsarin kariya na MaxLinear Ransomware, zaku iya adana kuɗi da yawa kuma ku guji lalata sunan kamfanin.
Malware ya fito ta hanyar Alerts na Google na karya
Maharan sun fara amfani da Alerts na Google don aika sanarwar karya bayanan karya. Sakamakon haka, bayan karɓar saƙonni masu ban tsoro, masu amfani da tsoro sun je rukunin yanar gizon karya kuma sun zazzage malware a cikin bege na "warware matsalar."
Sanarwa na mugunta suna aiki a cikin Chrome da Firefox. Koyaya, sabis na tace URL, gami da Acronis Cyber Protect, sun hana masu amfani akan cibiyoyin sadarwa masu kariya daga danna hanyoyin haɗin da suka kamu da cutar.
Ma'aikatar Kiwon Lafiya ta Amurka ta ba da rahoton cin zarafin Tsaro na HIPAA 393 a bara
Ma'aikatar Kiwon Lafiya ta Amurka da Sabis na Jama'a (HHS) ta ba da rahoton leken asiri 393 na bayanan lafiyar mara lafiya na sirri wanda ya haifar da keta buƙatun Dokar Inshorar Lafiya da Lantarki (HIPAA) daga Yuni 2019 zuwa Yuni 2020. Daga cikin wadannan, al'amura 142 sun faru ne sakamakon hare-haren da ake kai wa kungiyar Likitoci na Gundumar da Marinette Wisconsin, inda aka fitar da bayanan kiwon lafiya na lantarki guda 10190 da 27137, bi da bi.
Abin takaici, aikin ya nuna cewa har ma masu amfani da horarwa na musamman da shirye-shiryen, waɗanda aka maimaita akai-akai cewa kada su bi hanyoyin haɗin gwiwa ko buɗe abubuwan da aka makala daga imel ɗin da ake tuhuma, na iya zama waɗanda abin ya shafa. Kuma ba tare da tsarin sarrafa kansa ba don toshe ayyukan da ake tuhuma da kuma tace URL don hana isarwa zuwa rukunin yanar gizo na karya, yana da matukar wahala a kare kai daga manyan hare-hare masu amfani da kyawawan dalilai, akwatunan wasiku masu inganci da babban matakin injiniyan zamantakewa.
Idan kuna sha'awar labarai game da sabbin barazanar, zaku iya biyan kuɗi zuwa tashar Acronis YouTube, inda muke raba sabbin sakamakon sa ido na CPOC a kusa da ainihin lokaci. Hakanan zaka iya biyan kuɗi zuwa shafinmu akan Habr.com, saboda za mu watsa mafi kyawun sabuntawa da sakamakon bincike anan.
Masu amfani da rajista kawai za su iya shiga cikin binciken. don Allah.
Shin kun sami sahihan sahihan imel ɗin phishing a cikin shekarar da ta gabata?
-
33,3%Da 7
-
66,7%No14
Masu amfani 21 sun kada kuri'a. Masu amfani 6 sun kaurace.
source: www.habr.com