Ma virus a Ransomware, monga mitundu ina ya pulogalamu yaumbanda, amasintha ndikusintha kwazaka zambiri - kuchokera ku zotsekera zosavuta zomwe zimalepheretsa wogwiritsa ntchito kulowa mudongosolo, ndi "apolisi" ransomware yomwe idawopseza kuimbidwa mlandu wophwanya malamulo molakwika, tidabwera ku mapulogalamu obisa. Pulogalamu yaumbanda iyi imasunga mafayilo pama hard drive (kapena ma drive onse) ndipo amafuna dipo osati kubwezeretsa mwayi wogwiritsa ntchito makinawo, koma chifukwa chakuti chidziwitso cha wogwiritsa ntchito sichidzachotsedwa, kugulitsidwa pa darknet, kapena kuwululidwa kwa anthu pa intaneti. . Komanso, kulipira dipo sikutsimikiziranso kuti mudzalandira kiyi yochotsa mafayilo. Ndipo ayi, izi "zidachitika kale zaka zana zapitazo", koma zikadali zoopsa zapano.
Chifukwa cha kupambana kwa owononga ndi kupindula kwa mtundu uwu wa kuukira, akatswiri amakhulupirira kuti pafupipafupi ndi nzeru zawo zidzangowonjezereka m'tsogolomu. Wolemba Cybersecurity Ventures, mu 2016, ma virus a ransomware adaukira makampani pafupifupi kamodzi pa masekondi 40 aliwonse, mu 2019 izi zimachitika kamodzi pa masekondi 14 aliwonse, ndipo mu 2021 ma frequency adzakwera mpaka kuukira kumodzi masekondi 11 aliwonse. Ndizofunikira kudziwa kuti dipo lofunikira (makamaka pakuwukira makampani akuluakulu kapena zomangamanga zamatawuni) nthawi zambiri limakhala lotsika kwambiri kuposa kuwonongeka komwe kumachitika chifukwa cha chiwembucho. Motero, kuwukira kwa nyumba za boma mu May ku Baltimore, Maryland, mβdziko la United States, kunawononga zinthu zopitirira malire. , ndi ndalama za dipo zomwe akuba ndi ndalama zokwana madola 76 mu bitcoin yofanana. A , Georgia, zinawonongetsa mzindawu madola 2018 miliyoni mu August 17, ndi dipo lofunika la $52.
Akatswiri a Trend Micro adasanthula kuukira pogwiritsa ntchito ma virus a ransomware m'miyezi yoyamba ya 2019, ndipo m'nkhaniyi tikambirana zazikulu zomwe zikuyembekezera dziko lapansi theka lachiwiri.
Vuto la Ransomware: mwachidule
Tanthauzo la kachilombo ka ransomware likuwonekeratu m'dzina lake lomwe: kuwopseza kuwononga (kapena, kufalitsa) zinsinsi kapena zofunikira kwa wogwiritsa ntchito, achiwembu amagwiritsa ntchito kufuna dipo kuti abwezere mwayi wawo. Kwa ogwiritsa ntchito wamba, kuwukira koteroko sikusangalatsa, koma sikovuta: kuwopseza kutaya nyimbo kapena zithunzi kuchokera kutchuthi pazaka khumi zapitazi sikutsimikiziranso kulipira dipo.
Zinthu zikuwoneka zosiyana kwambiri ndi mabungwe. Mphindi iliyonse ya bizinesi yotsika mtengo imawononga ndalama, kotero kutaya mwayi wopeza dongosolo, mapulogalamu kapena deta ya kampani yamakono imakhala yotayika. Ichi ndichifukwa chake kuyang'ana kwa ziwopsezo za ransomware m'zaka zaposachedwa kwasintha pang'onopang'ono kuchoka ku ma virus owombera zipolopolo kupita ku kuchepetsa zochitika ndikupita kumagulu omwe akuwukira mabungwe omwe amagwira ntchito momwe mwayi wolandila dipo ndi kukula kwake ndi waukulu. Momwemonso, mabungwe akufuna kudziteteza ku ziwopsezo m'njira ziwiri zazikulu: popanga njira zobwezeretsera bwino zomangamanga ndi nkhokwe pambuyo pa kuukiridwa, komanso kutengera njira zamakono zodzitetezera pakompyuta zomwe zimazindikira ndikuwononga nthawi yomweyo pulogalamu yaumbanda.
Kuti mukhalebe apano ndikupanga mayankho ndi matekinoloje atsopano othana ndi pulogalamu yaumbanda, Trend Micro imasanthula mosalekeza zotsatira zomwe zapezeka pamakina ake achitetezo cha cyber. Malinga ndi Trend Micro , zomwe zikuchitika ndi kuwukiridwa kwa ransomware m'zaka zaposachedwa zikuwoneka motere:
Chosankha cha Victim mu 2019
Chaka chino, zigawenga zapaintaneti zakhala zikusankha kwambiri kusankha anthu omwe akuzunzidwa: akulozera mabungwe omwe sali otetezedwa komanso okonzeka kulipira ndalama zambiri kuti abwezeretse ntchito zanthawi zonse mwachangu. Ndicho chifukwa chake, kuyambira chiyambi cha chaka, kuukira angapo zalembedwa kale pa nyumba za boma ndi kasamalidwe ka mizinda ikuluikulu, kuphatikizapo Lake City (dipo - 530 madola zikwi US) ndi Riviera Beach (dipo - 600 madola zikwi US). .
Zowonongeka ndi mafakitale, ma vectors akuluakulu akuwoneka motere:
- 27% - mabungwe a boma;
- 20% - kupanga;
- 14% - chisamaliro chaumoyo;
- 6% - malonda ogulitsa;
- 5% - maphunziro.
Zigawenga za pa intaneti nthawi zambiri zimagwiritsa ntchito OSINT (public source intelligence) kukonzekera kuwukira ndikuwunika phindu lake. Mwa kusonkhanitsa zambiri, amamvetsetsa bwino za bizinesi ya bungwe komanso kuopsa kwa mbiri yomwe angakumane nayo chifukwa cha kuwukira. Obera amayang'ananso machitidwe ofunikira kwambiri ndi ma subsystems omwe atha kukhala olekanitsidwa kapena olumala pogwiritsa ntchito ma virus a ransomware - izi zimawonjezera mwayi wolandila dipo. Pomaliza, machitidwe a cybersecurity amawunikidwa: palibe chifukwa choyambitsa chiwopsezo pakampani yomwe akatswiri a IT amatha kuibweza ndi mwayi waukulu.
Mu theka lachiwiri la 2019, izi zidzakhalabe zofunikira. Obera apeza madera atsopano omwe kusokonezeka kwamabizinesi kumabweretsa kuwonongeka kwakukulu (mwachitsanzo, zoyendera, zomangamanga zofunikira, mphamvu).
Njira zolowera ndi matenda
Zosintha zikuchitikanso nthawi zonse m'derali. Zida zodziwika kwambiri zimakhalabe zabodza, kutsatsa koyipa pamawebusayiti ndi masamba omwe ali ndi kachilomboka, komanso zachinyengo. Nthawi yomweyo, "wothandizira" wamkulu pakuwukira akadali wogwiritsa ntchito omwe amatsegula masambawa ndikutsitsa mafayilo kudzera pa maulalo kapena kuchokera ku imelo, zomwe zimayambitsa matenda enanso pamaneti onse a bungwe.
Komabe, mu theka lachiwiri la 2019 zida izi zidzawonjezedwa ku:
- kugwiritsa ntchito kwambiri ziwonetsero pogwiritsa ntchito uinjiniya wa anthu (kuwukira komwe wozunzidwayo amachita mwakufuna kwawo zomwe wobera akufuna kapena akupereka chidziwitso, akukhulupirira, mwachitsanzo, kuti akulankhula ndi woimira oyang'anira kapena kasitomala wa bungwe), zomwe zimathandizira kusonkhanitsa zidziwitso za ogwira ntchito kuchokera kumalo omwe anthu angapeze;
- kugwiritsa ntchito zidziwitso zabedwa, mwachitsanzo, ma logins ndi mapasiwedi a machitidwe akutali, omwe angagulidwe pa darknet;
- kuthyolako ndi kulowa mkati komwe kungalole owononga patsamba kuti apeze machitidwe ovuta ndikugonjetsa chitetezo.
Njira zobisika zowukira
Chifukwa cha kupita patsogolo kwachitetezo cha cybersecurity, kuphatikiza Trend Micro, kuzindikira mabanja akale a ransomware kwakhala kosavuta m'zaka zaposachedwa. Kuphunzira pamakina ndi matekinoloje owunikira machitidwe amathandizira kuzindikira pulogalamu yaumbanda isanalowe m'dongosolo, chifukwa chake obera amayenera kupeza njira zina zobisalira.
Zomwe zimadziwika kale ndi akatswiri pankhani yachitetezo cha IT ndi matekinoloje atsopano a anthu ophwanya malamulo a pakompyuta cholinga chake ndi kuletsa mabokosi amchenga posanthula mafayilo okayikitsa ndi makina ophunzirira makina, kupanga pulogalamu yaumbanda yopanda fayilo komanso kugwiritsa ntchito mapulogalamu omwe ali ndi zilolezo, kuphatikiza mapulogalamu ochokera kwa ogulitsa cybersecurity ndi mautumiki osiyanasiyana akutali ndi mwayi wopeza. maukonde a bungwe.
Mapeto ndi malingaliro
Kawirikawiri, tikhoza kunena kuti mu theka lachiwiri la 2019 pali mwayi waukulu wotsutsa mabungwe akuluakulu omwe amatha kulipira chiwombolo chachikulu kwa ophwanya malamulo a pa intaneti. Komabe, obera samangokhalira kupanga njira zowononga komanso pulogalamu yaumbanda okha. Ena a iwo, mwachitsanzo, gulu lodziwika bwino la GandCrab, lomwe lilipo kale , pokhala ndi ndalama zokwana madola 150 miliyoni a US, pitirizani kugwira ntchito molingana ndi ndondomeko ya RaaS (ransomware-as-a-service, kapena "ransomware viruses as a service", poyerekezera ndi ma antivayirasi ndi machitidwe a chitetezo cha cyber). Ndiko kuti, kugawidwa kwa chiwombolo chopambana ndi crypto-lockers chaka chino chikuchitidwa osati ndi omwe adawalenga, komanso ndi "antchito".
M'mikhalidwe yotereyi, mabungwe amayenera kusinthira nthawi zonse machitidwe awo a cybersecurity ndi njira zobwezeretsera deta pakagwa chiwembu, chifukwa njira yokhayo yothanirana ndi ma virus a ransomware sikupereka dipo ndi kulanda olemba awo gwero la phindu.
Source: www.habr.com