Zvivako zveguta remazuva ano zvakavakwa paInternet Yezvinhu Zvishandiso: kubva kumakamera evhidhiyo mumigwagwa kuenda kumagetsi makuru emagetsi emagetsi uye zvipatara. Hackers vanokwanisa kushandura chero chinhu chakabatana kuita bot vobva vaishandisa kuita DDoS kurwisa.
Zvinangwa zvinogona kunge zvakasiyana chaizvo: vatengesi, semuenzaniso, vanogona kubhadharwa nehurumende kana mubatanidzwa, uye dzimwe nguva vanongove matsotsi anoda kunakidzwa uye kuita mari.
MuRussia, mauto ari kuwedzera kutityisa nezvinobvira cyber kurwiswa pa "akakosha zvivakwa zvivakwa" (yaive chaiyo kudzivirira kubva kune izvi, zvirinani zviri pamutemo, kuti mutemo paInternet wakasununguka wakagamuchirwa).
Zvisinei, iyi haisi nyaya inotyisa chete. Sekureva kwaKaspersky, muhafu yekutanga ya2019, matsotsi akarwisa Internet Yezvinhu zvishandiso kanopfuura miriyoni zana nguva, kazhinji vachishandisa iyo Mirai uye Nyadrop botnets. Nenzira, Russia inongova munzvimbo yechina muhuwandu hwekurwiswa kwakadaro (pasinei nemufananidzo unotyisa we "Russian hackers" yakagadzirwa neWestern press); Vatatu vepamusoro iChina, Brazil uye kunyange Egypt. USA inongova pachinhanho chechishanu.
Saka zvinoita here kubudirira kudzinga kurwiswa kwakadaro? Ngatitangei kutarisa mashoma anozivikanwa nyaya dzekurwiswa kwakadaro kuti tiwane mhinduro kumubvunzo wekuti ungachengetedza sei zvishandiso zvako zvishoma padanho rekutanga.
Bowman Avenue Dam
Bowman Avenue Dam iri mutaundi reRye Brook (New York) rine vanhu vasingasviki zviuru gumi - kureba kwayo kunongova mamita matanhatu, uye upamhi hwayo hahupfuuri mashanu. Muna 10, masangano ehungwaru eUS akaona software yakaipa mudhamu reruzivo. Ipapo vatengesi havana kushandisa data yakabiwa kuti vavhiringidze kushanda kwechivako (zvichida nokuti dhamu rakabviswa kubva paInternet panguva yekugadzirisa basa).
Bowman Avenue inodiwa kudzivirira mafashama enzvimbo dziri pedyo nerukova panguva yemafashama. Uye hapangavi nemigumisiro inoparadza kubva mukukundikana kwedhamu - mumatambudziko akaipisisa, zvivakwa zvepasi zvezvivakwa zvakati wandei parukova zvingadai zvakazara nemvura, asi izvi hazvigone kunzi mafashama.
Meya Paul Rosenberg akabva ataura kuti matsotsi angadai akavhiringa chimiro nerimwe dhamu rakakura rine zita rimwechete muOregon. Inoshandiswa kudiridza mapurazi akawanda, uko kukundikana kungakonzera kukanganisa kwakanyanya kune vagari venzvimbo.
Zvinogoneka kuti matsotsi aingodzidzira padhamu diki kuitira kuti pave paya pave nekupindira kwakanyanya pachiteshi chikuru chemagetsi emagetsi emvura kana chero chimwe chinhu chegetsi rekuUS.
Kurwiswa kweDhamo reBowman Avenue kwakazivikanwa sechikamu chekubira kwemabhanga masisitimu akabudirira kuitwa nematsotsi manomwe eIran mukati megore (DDoS kurwisa). Munguva iyi, basa re46 yemasangano makuru ezvemari munyika yakakanganiswa, uye mabhengi emabhengi emazana ezviuru zvevatengi akavharwa.
Iranian Hamid Firouzi akazopomerwa mhosva yekurwiswa kwevapambi mumabhanga uye Bowman Avenue Dam. Zvakazoitika kuti akashandisa nzira yeGoogle Dorking kuwana "makomba" mudhamu (gare gare vezvenhau veko vakaunza pasi kurwiswa kwemhosva kune Google corporation). Hamid Fizuri anga asiri muUnited States. Sezvo kuburitswa kubva kuIran kuenda kuUnited States kusipo, matsotsi haana kugamuchira mitongo chaiyo.
2. Yemahara metro muSan Francisco
Musi waMbudzi 25, 2016, meseji yakabuda munzvimbo dzese dzemagetsi dzinotengesa zvifambiso zvevoruzhinji muSan Francisco: "Wakabiwa, data rese rakavharirwa." Makombiyuta ese eWindows eUrban Transport Agency akarwiswawo. Iyo yakaipa software HDDCryptor (encryptor inorwisa master boot rekodhi yekombuta yeWindows) yakasvika mutongi wedunhu resangano.
HDDCryptor encrypts emunharaunda hard drive uye network mafaera ichishandisa zvisina tsarukano makiyi, yobva yanyorazve hard drive'MBR kudzivirira masisitimu kubva kubhomba nemazvo. Equipment, sekutonga, inotapukirwa nekuda kwezviito zvevashandi vanovhura netsaona faira rekunyengedzera mune email, uye ipapo hutachiona hunopararira kune network.
Varwi vacho vakakumbira hurumende yomunzvimbomo kuti itaure navo netsamba [email inodzivirirwa] (hongu, Yandex). Kuti vawane kiyi yekubvisa data rese, vaida mabitcoins zana (panguva iyoyo angangoita zviuru makumi manomwe nezvitatu zvemadhora). Iwo ma hackers akapawo decrypt muchina mumwe chete bitcoin kuratidza kuti kupora kwaikwanisika. Asi hurumende yakatarisana nehutachiona hwega, kunyange hazvo zvakatora nguva inodarika zuva. Ipo hurongwa hwese huri kudzoreredzwa, kufamba pa metro kwaitwa mahara.
"Takavhura matende senzira yekuzvidzivirira kuti tideredze kukanganisa kwevatyairi," akatsanangura kudaro mutauriri wekanzuru, Paul Rose.
Vapari vemhosva vakatiwo vakawana 30 GB yemagwaro emukati kubva kuSan Francisco Metropolitan Transportation Agency uye vakavimbisa kuti vaizovaburitsa pamhepo kana rudzikinuro rusina kubhadharwa mukati memaawa makumi maviri nemana.
Nenzira, gore rakapfuura, Hollywood Presbyterian Medical Center yakarwiswa munzvimbo imwechete. Matsotsi aya akabva apihwa mari inoita zviuru gumi nezvinomwe zvemadhora kuitira kuti akwanise kudzorera macomputer epachipatara ichi.
3. Dallas Emergency Alert System
Muna Kubvumbi 2017, masireni zana nemakumi mashanu nenhanhatu akarira muDallas na23:40 p.m. kuzivisa veruzhinji nezvenjodzi. Vakazokwanisa kudzidzima kwapera maawa maviri chete. Munguva iyi, sevhisi ye156 yakagamuchira zviuru zvema alarm kubva kuvagari vemo (mazuva mashoma chiitiko ichi chisati chaitika, dutu remhepo nhatu dzakapfuura nemunzvimbo yeDallas, dzichiparadza dzimba dzakawanda).
Yechimbichimbi yekuzivisa sisitimu yakaiswa muDallas muna 2007, nemasairini aipihwa neFederal Signal. Vakuru havana kutsanangura kuti masisitimu akashanda sei, asi vakati vakashandisa "matoni." Masaini akadai anowanzo kutepfenyurwa kuburikidza nemamiriro ekunze sevhisi uchishandisa Dual-Tone Multi-Frequency (DTMF) kana Audio Frequency Shift Keying (AFSK). Iyi mirairo yakavharidzirwa iyo yakafambiswa pafrequency ye700 MHz.
Vakuru veguta vakakurudzira kuti vapambi vakarekodha masaini akatepfenyurwa panguva yekuyedzwa kweyambiro system vobva vaaridza vachidzosera (yechinyakare replay kurwisa). Kuti vazviite, matsotsi aingofanira kutenga michina yekuyedza yekushanda neredhiyo frequency; inogona kutengwa pasina matambudziko muzvitoro zvine hunyanzvi.
Nyanzvi dzekambani yekutsvagisa yeBastille dzakacherekedza kuti kurwiswa kwakadaro kunoreva kuti vapambi vakanyatsoongorora mashandiro eguta rekuzivisa emergency, mafambiro, uye macode.
Meya weDallas akapa chirevo zuva raitevera kuti vapambi vaizowanikwa vorangwa, uye kuti masisitimu ese ekunyevera muTexas achagadziridzwa. Zvisinei, vakapara mhosva havana kumbowanikwa.
***
Pfungwa yemaguta akangwara inouya nenjodzi dzakakomba. Kana iyo metropolis sisitimu yekutonga ikabiwa, vanorwisa vanowana kure kure kudzora mamiriro emigwagwa uye zvine hungwaru zvinhu zveguta.Njodzi dzinobatanidzwawo nekubiwa kwedhatabhesi, iyo inosanganisira kwete chete ruzivo pamusoro pezvivakwa zveguta rose, asiwo data yega yevagari. Hatifanire kukanganwa nezve kunyanyisa kushandiswa kwemagetsi uye netiweki kuwandisa - matekinoroji ese akasungirirwa kumatanho ekutaurirana uye node, kusanganisira magetsi anopedzwa.
Iyo yekushushikana mwero wevaridzi veIoT mudziyo wave kusvika zero
Muna 2017, Trustlook yakaita ongororo yezinga rekuziva kwevaridzi vemidziyo yeIoT nezve kuchengetedzeka kwavo. Zvakazoitika kuti 35% yevakapindura havachinje default (fekitari) password vasati vatanga kushandisa mudziyo. Uye vanopfuura hafu yevashandisi havaisi yechitatu-bato software zvachose kudzivirira kubva kune hacker kurwiswa. 80% yevaridzi vemidziyo yeIoT havasati vambonzwa nezveMirai botnet.
Panguva imwecheteyo, nekuvandudzwa kweInternet yezvinhu, nhamba yekurwiswa kwecyber inongowedzera. Uye kunyange zvazvo makambani ari kutenga "smart" zvishandiso, kukanganwa nezvemitemo yekuchengeteka, ma-cybercriminals ari kuwana mikana yakawanda yekuita mari kubva kune vashandisi vasina hanya. Semuenzaniso, vanoshandisa network yemidziyo ine hutachiona kuita DDoS kurwisa kana sevhavhavha yezvimwe zviitiko zvakashata. Uye zvizhinji zveizvi zvisingafadzi zviitiko zvinogona kudzivirirwa kana iwe ukatevera mitemo iri nyore:
- Chinja password yefekitari usati watanga kushandisa mudziyo
- Isa yakavimbika internet kuchengetedza software pamakomputa ako, mahwendefa uye smartphones.
- Ita tsvakurudzo yako usati watenga. Midziyo iri kuve yakangwara nekuti inounganidza yakawanda yemunhu data. Iwe unofanirwa kuziva kuti ndeupi rudzi rweruzivo ruchaunganidzwa, ruchachengetwa uye kuchengetedzwa sei, uye kuti ruchagovaniswa here nevechitatu mapato.
- Tarisa webhusaiti yemugadziri wemidziyo nguva nenguva kuti uwane zvigadziriso zve firmware
- Usakanganwa kuongorora irogi yechiitiko (kunyanya ongorora ese USB port kushandiswa)
Source: www.habr.com