Nepo vanofarira vakamirira neshungu kuunzwa kwakawanda kwechishanu-chizvarwa network, cybercriminals vari kukwesha maoko avo, vachitarisira mikana mitsva yekuita purofiti. Pasinei nekuedza kwese kwevagadziri, tekinoroji ye5G ine hurema, kuzivikanwa kwayo kwakaomeswa nekushaikwa kweruzivo mukushanda mumamiriro matsva. Isu takaongorora diki 5G network uye takaona matatu marudzi ekusagadzikana, izvo zvatichakurukura mune ino post.
Chinhu chekudzidza
Ngatitarisei muenzaniso wakapfava - muenzaniso usiri weruzhinji 5G campus network (Non-Public Network, NPN), yakabatana kune yekunze kuburikidza neruzhinji nzira dzekutaurirana. Aya ndiwo ma network ayo achashandiswa seakajairika network munguva pfupi iri kutevera munyika dzese dzakapinda mujaho we5G. Iyo inogona nharaunda yekuendesa ma network echigadziriso ichi "smart" mabhizinesi, "akangwara" maguta, mahofisi emakambani makuru uye dzimwe nzvimbo dzakafanana nehupamhi hwekutonga.
NPN zvivakwa: iyo bhizinesi yakavharwa network yakabatana kune yepasi rose 5G network kuburikidza neruzhinji nzira. Kunobva: Trend Micro
Kusiyana nechina-chizvarwa network, 5G network inotariswa pane chaiyo-nguva data kugadzirisa, saka mavakirwo avo akafanana neakawanda-layered pie. Layering inobvumira kupindirana kuri nyore nekumisa maAPI ekutaurirana pakati pematanho.
Kuenzanisa kwe4G uye 5G zvivakwa. Kunobva: Trend Micro
Mhedzisiro yacho ndeyekuwedzera otomatiki uye chiyero kugona, izvo zvakakosha pakugadzirisa huwandu hukuru hweruzivo kubva kuInternet yezvinhu (IoT).
Kuparadzaniswa kwemazinga akavakirwa muchiyero che5G kunotungamirira pakubuda kwedambudziko idzva: zvirongwa zvekuchengetedza zvinoshanda mukati meNPN network inodzivirira chinhu uye gore rayo rega, zvirongwa zvekuchengetedza zvekunze kwekunze zvinodzivirira zvivakwa zvavo zvemukati. Traffic pakati peNPN uye ekunze network inoonekwa seyakachengeteka nekuti inouya kubva kune yakachengeteka masisitimu, asi chokwadi hapana anoidzivirira.
Muchidzidzo chedu chazvino Isu tinopa akati wandei mamiriro ekurwiswa kwecyber pa5G network inoshandisa:
- SIM card kusagadzikana,
- network vulnerabilities,
- identification system vulnerabilities.
Ngatitarisei kusazvibata kwega kwega mune zvakadzama.
Kusagadzikana kweSIM kadhi
SIM kadhi chinhu chakaomarara icho chinotove neseti yese yakavakirwa-mukati maapplication - SIM Toolkit, STK. Imwe yezvirongwa izvi, S @ T Browser, inogona kushandiswa kuona mawebhusaiti emukati emushandisi, asi mukuita yakakanganwa kwenguva refu uye haina kuvandudzwa kubvira 2009, sezvo mabasa aya ave kuitwa nemamwe mapurogiramu.
Dambudziko nderekuti S@T Browser yakave isina njodzi: yakanyatsogadzirirwa sevhisi yeSMS inobira SIM kadhi uye inomanikidza kuti iite mirairo inodiwa neanobira, uye mushandisi wefoni kana mudziyo haazooni chero chinhu chisina kujairika. Kurwiswa kwacho kwakatumidzwa zita uye inopa mikana yakawanda kune vanorwisa.
Simjacking kurwisa mu5G network. Kunobva: Trend Micro
Kunyanya, inobvumira anorwisa kuendesa dhata pamusoro penzvimbo yemunyoreri, identifier yemudziyo wake (IMEI) uye cell tower (Cell ID), pamwe nekumanikidza foni kufona nhamba, kutumira SMS, kuvhura chinongedzo mukati. browser, uye kunyange kudzima SIM kadhi.
Mune 5G network, kusagadzikana uku kweSIM makadhi kunova dambudziko rakakura kupihwa huwandu hwemidziyo yakabatana. Nyangwe , muchizvarwa chechishanu network ichiri . Uye sezvo zvese zvichishanda seizvi, haugone kutarisira kukurumidza kutsiva SIM makadhi aripo.
Kushandisa kwakashata kutenderera. Kunobva: Trend Micro
Kushandisa Simjacking kunobvumidza iwe kumanikidza SIM kadhi kuita roaming mode uye kuimanikidza kuti ibatanidze kune cell tower inodzorwa neanorwisa. Muchiitiko ichi, munhu anorwisa achakwanisa kushandura masisitimu eSIM kadhi kuti ateerere kutaurirana parunhare, kuunza malware uye kuita mhando dzakasiyana dzekurwiswa uchishandisa mudziyo une SIM card yakakanganiswa. Chii chichamubvumira kuita izvi inyaya yekuti kudyidzana nemidziyo mukufamba-famba kunoitika nekupfuura nzira dzekuchengetedza dzakatorwa kune zvishandiso mu "kumba" network.
Network vulnerabilities
Vanorwisa vanogona kushandura marongero eSIM card yakakanganiswa kugadzirisa matambudziko avo. Iko kureruka uye kubira kwekurwiswa kweSimjaking kunobvumira kuti iitwe nguva dzose, ichibata kutonga pamusoro pezvishandiso zvakawanda uye zvakanyanya, zvishoma nezvishoma uye nemoyo murefu () vachicheka zvidimbu zvemambure sezvimedu zvesalami () Zvakanyanya kuoma kuteedzera kuita kwakadaro, uye mumamiriro ezvinhu eiyo yakaoma yakagoverwa 5G network, zvinenge zvisingaite.
Zvishoma nezvishoma sumo mune 5G network uchishandisa Low uye Slow + Salami kurwisa. Kunobva: Trend Micro
Uye sezvo 5G network isina akavakirwa-mukati ekuchengetedza ekuchengetedza eSIM makadhi, vanorwisa zvishoma nezvishoma vachakwanisa kumisikidza yavo yemitemo mukati meiyo 5G yekutaurirana domain, vachishandisa akabatwa SIM makadhi kuba mari, kubvumidza padanho retiweki, kuisa malware uye zvimwe. mabasa asiri pamutemo.
Chinonyanya kunetsa chitarisiko pane hacker maforamu ezvishandiso zvinogadzira otomatiki kubatwa kweSIM makadhi uchishandisa Simjaking, sezvo kushandiswa kwezvishandiso zvakadaro zvechishanu-chizvarwa network kunopa vanorwisa mikana isingaverengeke yekuyera kurwiswa uye kugadzirisa yakavimbika traffic.
Identification vulnerabilities
Iyo SIM kadhi inoshandiswa kuona mudziyo pane network. Kana iyo SIM kadhi ichishanda uye iine chiyero chakanaka, chigadziro chinowanzoonekwa sechiri pamutemo uye hachikonzeri kufungira pamwero wekuona masisitimu. Zvichakadaro, kusagadzikana kweSIM kadhi pachayo kunoita kuti iyo yese yekuzivikanwa sisitimu panjodzi. IT kuchengetedza masisitimu haingokwanise kuteedzera mudziyo wakabatana zvisiri pamutemo kana ichinyoresa panetiweki ichishandisa data yekuzivikanwa yakabiwa kuburikidza neSimjaking.
Zvinoitika kuti hacker inobatanidza kunetiweki kuburikidza neyakavharwa SIM kadhi inowana mukana weiyo muridzi chaiye, sezvo IT masisitimu asisatarise zvishandiso zvakapfuura kuzivikanwa padanho retiweki.
Kuzivikanwa kwakavimbiswa pakati pesoftware uye netiweki layer kunowedzera rimwe dambudziko: matsotsi anogona nemaune kugadzira "ruzha" rwekupindira kwekuona masisitimu nekugara vachiita zviito zvakasiyana-siyana zvekufungira pachinzvimbo chemidziyo yakabatwa zviri pamutemo. Sezvo masisitimu ekuona otomatiki akavakirwa pakuongorora kwenhamba, ma alarm threshold anowedzera zvishoma nezvishoma, kuve nechokwadi chekuti kurwiswa chaiko hakuitwe. Kuratidzwa kwenguva refu kwerudzi urwu kunokwanisa kushandura mashandiro etiweki yese uye kugadzira mapofu ehuwandu hwekuona masisitimu. Matsotsi anodzora nzvimbo dzakadai anogona kurwisa data mukati metiweki nemidziyo yemuviri, kukonzera kunyimwa basa, uye kukonzera kumwe kukuvadza.
Solution: Unified Identity Verification
Kusagadzikana kweiyo yakadzidzwa 5G NPN network imhedzisiro yekupatsanurwa kwemaitiro ekuchengetedza padanho rekutaurirana, pamwero weSIM makadhi nemidziyo, pamwe chete pamwero wekudyidzana pakati pemanetiweki. Kugadzirisa dambudziko iri, zvinodikanwa zvinoenderana nemusimboti we zero trust () Ita shuwa kuti zvishandiso zvinobatanidza kunetiweki zvinotenderwa padanho rega rega nekushandisa chitupa chemubatanidzwa uye yekuwana yekudzora modhi ().
Iyo ZTA musimboti ndeyekuchengetedza kuchengetedza kunyangwe mudziyo usingadzoreki, uchifamba, kana kunze kwetiweki perimeter. Iyo federated identity modhi inzira yekuchengetedzwa kwe5G inopa imwechete, inopindirana dhizaini yekusimbisa, kodzero dzekuwana, kuvimbika kwedata, uye zvimwe zvikamu uye matekinoroji mu5G network.
Iyi nzira inobvisa mukana wekuunza "roaming" shongwe munetiweki uye kuendesa akabatwa SIM makadhi kwairi. IT masisitimu anozokwanisa kuona zvizere kubatana kwemidziyo yekune dzimwe nyika uye kuvhara spurious traffic inogadzira ruzha rwehuwandu.
Kuti udzivirire SIM kadhi kubva pakushandurwa, zvinodikanwa kuunza mamwe macheki ekuvimbika mukati mayo, anogona kuitwa muchimiro che blockchain-based SIM application. Chishandiso chinogona kushandiswa kutendesa zvishandiso nevashandisi, pamwe nekutarisa kutendeseka kweiyo firmware uye SIM kadhi marongero ese kana uchifamba uye uchishanda pane network yepamba.
Ngatidimburei
Mhinduro kumatambudziko akacherechedzwa ekuchengetedza 5G anogona kuunzwa semusanganiswa wenzira nhatu:
- kushandiswa kweiyo federated modhi yekuzivikanwa uye yekuwana kutonga, iyo inovimbisa kutendeseka kwedata mune network;
- kuve nechokwadi chekuonekwa kuzere kwekutyisidzira nekushandisa registry yakagoverwa kuratidza kuve pamutemo uye kuvimbika kweSIM makadhi;
- kuumbwa kweiyo yakagoverwa kuchengetedza system isina miganhu, kugadzirisa nyaya dzekudyidzana nemidziyo mukutenderera.
Kuitwa kwemaitiro ematanho aya kunotora nguva uye mitengo yakakomba, asi kuiswa kwe5G network kuri kuitika kwese kwese, izvo zvinoreva kuti basa rekubvisa hurema rinoda kutanga izvozvi.
Source: www.habr.com