ProHoster > Pūnaewele > Nā Administration > ʻO ka leʻaleʻa o ka ʻikepili mea hoʻohana no Ianuali - ʻApelila 2019

ʻO ka leʻaleʻa o ka ʻikepili mea hoʻohana no Ianuali - ʻApelila 2019

ʻO ka leʻaleʻa o ka ʻikepili mea hoʻohana no Ianuali - ʻApelila 2019

Ma 2018, 2263 mau hihia lehulehu o ka leakage o ka ʻike huna i hoʻopaʻa inoa ʻia ma ka honua holoʻokoʻa. Ua hoʻopili ʻia ka ʻikepili pilikino a me ka ʻike uku ma 86% o nā hanana - ʻo ia ma kahi o 7,3 biliona mau moʻolelo ʻikepili hoʻohana. Ua lilo ka Japanese crypto exchange Coincheck i $534 miliona ma muli o ka hoʻopaʻapaʻa ʻana o nā wallets pūnaewele o kāna poʻe kūʻai. ʻO kēia ka nui o nā pōʻino i hōʻike ʻia.

ʻAʻole ʻike ʻia he aha nā helu no 2019. Akā ua nui nā "leaks", a he mea kaumaha kēia. Ua hoʻoholo mākou e nānā i nā leaks i kūkākūkā nui ʻia mai ka hoʻomaka ʻana o ka makahiki. "E nui aʻe," e like me kā lākou e ʻōlelo nei.

Ianuali 18: Nā waihona ohi

Ma ka lā 18 o Ianuali, ua hoʻomaka ka puka ʻana mai o nā hōʻike hoʻolaha e pili ana i kahi ʻikepili i loaʻa ma ka waihona lehulehu ma 773M nā pahu leta me nā ʻōlelo huna (me nā mea hoʻohana mai Rusia). ʻO ka ʻikepili kahi hōʻiliʻili o nā ʻikepili leaked ma kahi o ʻelua kaukani mau pūnaewele like ʻole i hōʻiliʻili ʻia i nā makahiki he nui. No ia mea i loaʻa ai ka inoa Collection #1. Ma ke ʻano o ka nui, ʻo ia ka lua o ka waihona nui loa o nā ʻōlelo hacked ma ka mōʻaukala (ʻo ka mua ka waihona o 1 billion Yahoo! mea hoʻohana, i ʻike ʻia ma 2013).

Ua ʻike koke ʻia ʻo Collection #1 he ʻāpana wale nō o ka ʻikepili ʻikepili i pau i ka lima o nā mea hackers. Ua loaʻa pū i nā poʻe loea palekana ʻike i nā "Kohi" ʻē aʻe i helu ʻia 2 a 5, a ʻo ka nui o kā lākou leo ​​he 845 GB. Aneane pau loa ka ʻike i loko o ka ʻikepili i kēia lā, ʻoiai ua pau kekahi mau loina a me nā ʻōlelo huna.

Ua hoʻopili ka loea Cybersecurity ʻo Brian Krebs i ka mea hacker nāna e kūʻai aku i nā waihona a ʻike ʻo ia ʻo Collection #1 ma kahi o ʻelua a ʻekolu paha makahiki. Wahi a ka hacker, loaʻa iā ia nā ʻikepili hou aku no ke kūʻai aku me ka nui o nā terabytes ʻoi aku.

Pepeluali 11: leak o ka ʻikepili mea hoʻohana mai 16 mau pūnaewele nui

Feberuari 11 edition of The Register hōʻike ʻiake kūʻai aku nei ke kahua kālepa Dream Market i ka ʻikepili o 620 miliona mau mea hoʻohana o nā lawelawe pūnaewele nui:

  • Dubsmash (162 miliona)
  • MyFitnessPal (151 miliona)
  • MyHeritage (92 miliona)
  • ShareThis (41 miliona)
  • HauteLook (28 miliona)
  • Animoto (25 miliona)
  • EyeEm (22 miliona)
  • 8 kūpono (20 miliona)
  • Nā ʻaoʻao keʻokeʻo (18 miliona)
  • Photolog (16 miliona)
  • 500px (15 miliona)
  • Pāʻani Armor (11 miliona)
  • BookMate (8 miliona)
  • CoffeeMeetsBagel (6 miliona)
  • Artsy (1 miliona)
  • DataCamp (700)

Ua noi aku ka poʻe hoʻouka kaua ma kahi o $20 tausani no ka ʻikepili holoʻokoʻa; hiki iā lākou ke kūʻai aku i ka waihona ʻikepili o kēlā me kēia pūnaewele.

Ua hacked nā pūnaewele āpau i nā manawa like ʻole. No ka laʻana, ua hōʻike ʻia ka puka kiʻi 500px i ka leak ma Iulai 5, 2018, akā ua ʻike ʻia ma hope o ke ʻano o kahi waihona me ka ʻikepili.

ʻIkepili i loko leka uila, inoa inoa a me ka ʻōlelo huna. Eia nō naʻe, hoʻokahi mea ʻoliʻoli: hoʻopili ʻia nā ʻōlelo huna ma kekahi ala a i ʻole. ʻO ia, no ka hoʻohana ʻana iā lākou, pono ʻoe e hoʻopaʻa mua i kou lolo e pili ana i ka decrypting i ka ʻikepili. ʻOiai, inā maʻalahi ka ʻōlelo huna, a laila hiki ke koho.

Pepeluali 25: Hōʻike ʻia ka waihona ʻo MongoDB

ʻO Pepeluali 25, ʻike loea palekana ʻo Bob Dyachenko ri i loaa ma ka pūnaewele, kahi waihona ʻikepili 150GB MongoDB unsecured i loaʻa ma luna o 800 miliona mau moʻolelo ʻikepili pilikino. Aia i loko o ka waihona nā leka uila, nā inoa hope, ka ʻike e pili ana i ke kāne a me ka lā hānau, nā helu kelepona, nā leka uila a me nā helu wahi, a me nā helu IP.

Aia ka ʻikepili pilikia i Verifications IO LLC, kahi i hana i ka leka uila. ʻO kekahi o kāna mau lawelawe ʻo ka nānā ʻana i nā leka uila hui. I ka manawa iʻikeʻia ai kaʻike e pili ana i kaʻikepili pilikia i loko o ka pāpāho, ua lilo ka pūnaewele o ka hui a me ka waihonaʻikepili i hikiʻole ke hiki. Ma hope mai, ua ʻōlelo nā ʻelele o Verifications IO LLC ʻaʻole i loaʻa ka ʻikepili i ka ʻikepili mai nā mea kūʻai aku o ka hui a ua hoʻopiha ʻia mai nā kumu wehe.

Malaki 10: Ua lele ka ʻikepili hoʻohana Facebook ma o FQuiz a me nā polokalamu Supertest

ʻO ka lā 10 o Malaki o The Verge hoʻouna i kahi leka ua waiho ʻo Facebook i kahi hoʻopiʻi kūʻē i ʻelua mau mea hoʻomohala Ukrainian, ʻo Gleb Sluchevsky lāua ʻo Andrei Gorbachev. Ua hoʻopiʻi ʻia lākou me ka ʻaihue o ka ʻikepili pilikino o nā mea hoʻohana.

Ua hana nā mea hoʻomohala i nā noi e hana i nā hoʻokolohua. Ua hoʻokomo kēia mau polokalamu i nā hoʻonui polokalamu kele pūnaewele i hōʻiliʻili i ka ʻikepili mea hoʻohana. I ka makahiki 2017-2018, ʻehā mau noi, me FQuiz a me Supertest, ua hiki ke ʻaihue i ka ʻikepili o kahi 63 tausani mau mea hoʻohana. ʻO ka hapa nui o nā mea hoʻohana mai Rusia a me Ukraine i hoʻopilikia ʻia.

Malaki 21: He mau haneli miliona o nā ʻōlelo huna Facebook i hoʻopili ʻole ʻia

Ma Malaki 21, ua hōʻike ka mea kākau moʻolelo ʻo Brian Krebs ma kaʻu blogUa mālama ʻo Facebook i nā miliona o nā huaʻōlelo i hoʻopili ʻole ʻia no ka manawa lōʻihi. Hiki i nā limahana 20 o ka hui ke ʻike i nā ʻōlelo huna ma waena o 200 a me 600 miliona mau mea hoʻohana Facebook no ka mea ua mālama ʻia lākou ma ke ʻano kikokikona. Ua hoʻokomo pū ʻia kekahi mau ʻōlelo huna Instagram i loko o kēia waihona mālama ʻole. ʻAʻole koke e hoʻolaha ʻia ka ʻoihana pūnaewele ponoʻī hooiaioia ʻike.

Ua ʻōlelo ʻo Pedro Canahuati, ka hope pelekikena o Facebook no ka ʻenekinia, palekana a me ka pilikino, ua hoʻoponopono ʻia ka pilikia me ka mālama ʻana i nā ʻōlelo huna. A ma ka laulā, ua hoʻolālā ʻia nā ʻōnaehana login Facebook e hana i nā ʻōlelo huna hiki ʻole ke heluhelu ʻia. ʻAʻole i loaʻa i ka hui nā hōʻike e komo pono ʻole ʻia nā ʻōlelo huna ʻole.

Malaki 21: Leak ʻikepili mea kūʻai mai Toyota

I ka hopena o Malaki, ua hana ʻo Toyota ka mea hana kaʻa Iapana haʻiʻia Ua hiki i ka poʻe hackers ke ʻaihue i ka ʻikepili pilikino a hiki i ka 3,1 miliona mau mea kūʻai aku ʻoihana. Ua hacked nā ʻōnaehana o nā māhele kālepa Toyota a me ʻelima mau lālā i ka lā Malaki 21.

ʻAʻole i hōʻike ka hui i ka ʻikepili pilikino o nā mea kūʻai aku i ʻaihue. Eia naʻe, ua ʻōlelo ʻo ia ʻaʻole i loaʻa i nā mea hoʻouka ka ʻike e pili ana i nā kāleka panakō.

Malaki 21: hoʻolaha i nā ʻikepili mai nā maʻi ma ka ʻāina Lipetsk ma ka pūnaewele EIS

Ma Malaki 21, nā mea hana o ka neʻe ʻana o ka lehulehu "Patient Control" i hōʻikeʻia i ka ʻike i paʻi ʻia e ka Lipetsk Region Health Department ma ka pūnaewele EIS, ua hāʻawi ʻia ka ʻikepili pilikino o nā maʻi.

Ua kau ʻia kekahi mau kudala ma ka pūnaewele kūʻai aupuni no ka hoʻolako ʻana i nā lawelawe lapaʻau pilikia: pono e hoʻoneʻe ʻia nā mea maʻi i nā ʻoihana ʻē aʻe ma waho o ka ʻāina. Aia nā wehewehe i ka ʻike e pili ana i ka inoa hope o ka mea maʻi, ka helu home, ka maʻi maʻi, ka code ICD, profile, a pēlā aku. ʻO ka mea kupaianaha, ua paʻi ʻia ka ʻikepili maʻi ma kahi ākea ʻaʻole i emi iho ma mua o ʻewalu mau manawa i ka makahiki i hala wale nō (!).

Ua ʻōlelo ke poʻo o ke Keʻena Ola Ola ʻo Lipetsk, ʻo Yuri Shurshukov, ua hoʻomaka ʻia kahi hoʻokolokolo kūloko a e kala ʻia i nā maʻi i paʻi ʻia ka ʻikepili. Ua hoʻomaka pū ke keʻena hoʻopiʻi o ka ʻāina ʻo Lipetsk e nānā i ka hanana.

ʻApelila 04: Leak ʻikepili o 540 miliona mau mea hoʻohana Facebook

ʻO ka hui palekana ʻike UpGuard hōʻike ʻia e pili ana i ka ʻikepili o ka ʻoi aku o 540 miliona mau mea hoʻohana Facebook i loaʻa i ka lehulehu.

Ua loaʻa nā pou o nā lālā o ka ʻoihana pūnaewele me nā manaʻo, makemake, a me nā inoa moʻokāki ma ka paepae kikohoʻe Mexican Cultura Colectiva. A i loko o ka app At the Pool i kēia manawa, ua loaʻa nā inoa, nā ʻōlelo huna, nā leka uila a me nā ʻikepili ʻē aʻe.

ʻApelila 10: ua lele ka ʻikepili mai nā mea maʻi ambulance mai ka ʻāina ʻo Moscow ma ka pūnaewele

Ma nā keʻena kōkua kōkua olakino (EMS) ma ka ʻāina ʻo Moscow, manaʻo paha aia kahi leak data. Ua hoʻomaka nā keʻena mālama kānāwai i ka nānā mua ʻana i nā hōʻike o ka hanana.

Ua ʻike ʻia kahi faila 17,8 GB e loaʻa ana ka ʻike e pili ana i nā kelepona ambulance ma ka ʻāina ʻo Moscow ma kekahi o nā lawelawe mālama faila. Aia i loko o ka palapala ka inoa o ka mea nāna i kāhea aku i ka ambulance, ka helu kelepona kelepona, ka helu wahi i hea ʻia ai ka hui, ka lā a me ka manawa o ke kelepona ʻana, ʻo ke ʻano o ka mea maʻi. Ua hoʻopili ʻia ka ʻikepili o nā kamaʻāina o Mytishchi, Dmitrov, Dolgoprudny, Korolev a me Balashikha. Ua manaʻo ʻia ua waiho ʻia ke kumu e nā mea hana o kahi hui hacker Ukrainian.

ʻApelila 12: Papa inoa ʻeleʻele ʻo Central Bank
ʻIkepili o nā mea kūʻai panakō mai ka papa inoa ʻeleʻele o ka Central Bank o nā refuseniks ma lalo o ke kānāwai anti-money laundering ua loaʻa ma ka Pūnaewele 12 o Aperila. Ke kamaʻilio nei mākou e pili ana i ka ʻike mai kahi kokoke i 120 tausani mau mea kūʻai aku i hōʻole ʻia i ka lawelawe e like me ke kānāwai no ka hakakā ʻana i ka hoʻopiʻi kālā a me ke kālā kālā o ka hoʻoweliweli (115-FZ).

ʻO ka hapa nui o ka waihona ʻikepili he mau kanaka a me nā ʻoihana hoʻokahi, ʻo ke koena he hui kānāwai. No kēlā me kēia kanaka, aia ka ʻikepili e pili ana i ko lākou inoa piha, ka lā hānau, ka helu a me ka helu passport. E pili ana i nā ʻoihana hoʻokahi - inoa piha a me INN, e pili ana i nā hui - inoa, INN, OGRN. Ua ʻae ʻole kekahi o nā panakō i ka poʻe nūpepa e pili ana ka papa inoa i nā mea kūʻai aku i hōʻole ʻia. Hoʻopili ka waihona i nā "refuseniks" mai Iune 26, 2017 a hiki i Dekemaba 6, 2017.

ʻApelila 15: Paʻi ʻia ka ʻikepili pilikino o nā kaukani ʻAmelika a me nā limahana FBI

Ua hiki i kahi hui cybercriminal ke hack i kekahi mau pūnaewele pili me ka US Federal Bureau of Investigation. A ua hoʻopuka ʻo ia i nā faila he nui ma ka Pūnaewele me ka ʻike pilikino o nā tausani o nā mākaʻi a me nā ʻelele federal.

Me ka hoʻohana ʻana i nā mea i loaʻa i ka lehulehu, hiki i nā mea hoʻouka ke loaʻa i nā kumuwaiwai pūnaewele o kahi hui e pili ana me ka FBI Academy ma Quantico (Virginia). No ia mea palapalaʻo ia TechCrunch.
Aia ka waihona i ʻaihue ʻia nā inoa o nā luna kānāwai US a me nā luna federal, ko lākou mau helu wahi, nā helu kelepona, ka ʻike e pili ana i kā lākou leka uila a me nā kūlana. Aia ma kahi o 4000 mau helu like ʻole i ka huina.

ʻApelila 25: Leak ʻikepili mea hoʻohana Docker Hub

Ua loaʻa i nā Cybercriminals ke komo i ka waihona o ka waihona kiʻi pahu pahu nui loa o ka honua, ʻo Docker Hub, ka hopena i ka ʻikepili o kahi o 190 tausani mau mea hoʻohana i hoʻohālikelike ʻia. Aia ka waihona i nā inoa inoa, nā hashes password, a me nā hōʻailona no GitHub a me Bitbucket repositories i hoʻohana ʻia no ka hana ʻana o Docker.

Hoʻokele Docker Hub hai mea hoʻohana e pili ana i ka hanana ma ka Pōʻalima, ʻApelila 26. Wahi a ka ʻike kūhelu, ua ʻike ʻia ke komo ʻole ʻana i ka waihona ma ʻApelila 25. ʻAʻole i pau ka hoʻokolokolo ʻana i ka hanana.

Hiki iā ʻoe ke hoʻomanaʻo i ka moʻolelo me Doc +, ʻaʻole i lōʻihi loa i hoʻomālamalama ʻia ma Habré, ʻoluʻolu ʻole ke kūlana me ka uku o na makaainana i ka makai kaapuni a me ka FSSP a me na leaks e ae ana e wehewehe nei ashotog.

He hopena

ʻO ka palekana o kaʻikepili i mālamaʻia e nā keʻena aupuni, ma nā pūnaewele kaiaulu a ma nā pūnaewele nui, a me ka nui o kaʻaihue, he mea weliweli. He mea kaumaha no ka lilo ʻana o ka leaks i mea maʻamau. ʻAʻole ʻike ka nui o ka poʻe nona ka ʻikepili pilikino. A inā ʻike lākou, ʻaʻole lākou e hana i mea e pale ai iā lākou iho.

Source: www.habr.com

Pākuʻi i ka manaʻo hoʻopuka