Chinese hackers kunzvenga chokwadi chezvinhu zviviri, asi izvi hazvina chokwadi. Pazasi pane fungidziro dzekambani yeDutch Fox-IT, iyo inonyanya kukoshesa cybersecurity consulting services. Zvinofungidzirwa, izvo pasina humbowo hwakananga, kuti boka revatsotsi rinonzi APT20 riri kushandira masangano ehurumende yeChina.
Hacker chiitiko chinonzi kuboka reAPT20 chakatanga kuwanikwa muna 2011. Muna 2016-2017, boka rakanyangarika kubva mukutariswa kwenyanzvi, uye nguva pfupi yadarika Fox-IT yakawana tsananguro yekukanganiswa kweAPT20 mumambure emumwe wevatengi vayo, akakumbira kuongorora kutyorwa kwecybersecurity.
Sekureva kwaFox-IT, mumakore maviri apfuura, boka reAPT20 ranga richibira nekuwana data kubva kumasangano ehurumende, makambani makuru uye vanopa masevhisi muUS, France, Germany, Italy, Mexico, Portugal, Spain, UK neBrazil. APT20 hackers vanga vachishanda munzvimbo dzakaita sendege, hutano, mari, inishuwarenzi, simba, uye kunyangwe munzvimbo dzakaita sekubhejera nekukiya zvemagetsi.
Kazhinji, APT20 hackers vakashandisa kusasimba mumasevha ewebhu uye, kunyanya, muJboss bhizinesi rekushandisa chikuva chekupinda masisitimu evakabatwa. Mushure mekuwana nekuisa mabhomba, matsotsi akapinda mumanetiweki evabirwa mune ese angangoita masisitimu. Maakaundi akawanikwa anobvumira varwisi kuba data vachishandisa maturusi akajairwa, pasina kuisa malware. Asi dambudziko guru nderekuti boka reAPT20 rakanzi rakakwanisa kunzvenga-mbiri-chinhu chechokwadi vachishandisa ma tokens.
Vatsvagiri vanoti vakawana humbowo hwekuti hackers akabatana neVPN maakaundi akadzivirirwa nehuviri-chinhu chechokwadi. Izvi zvakaitika sei, Fox-IT nyanzvi dzinogona kungofungidzira. Iyo inonyanya kuitika ndeyekuti matsotsi akakwanisa kuba iyo RSA SecurID software tokeni kubva kune yakabiwa system. Uchishandisa chirongwa chakabiwa, matsotsi anogona kuzogadzira-nguva imwe chete macode ekunzvenga maviri-chinhu kudzivirira.
Mumamiriro ezvinhu akajairika izvi hazvibviri kuita. Chiratidzo chesoftware hachishande pasina chiratidzo chehardware chakabatana nehurongwa hwenzvimbo. Pasina iyo, chirongwa cheRSA SecurID chinoburitsa chikanganiso. Chiratidzo chesoftware chinogadzirwa kune yakatarwa sisitimu uye, kuve nekuwana kune Hardware yemunhu akabatwa, zvinokwanisika kuwana chaiyo nhamba yekumhanyisa software tokeni.
Fox-IT nyanzvi dzinoti kuti utange (yakabiwa) software tokeni, haufanirwe kuwana komputa yemunhu akabatwa uye hardware tokeni. Iyo yese yakaoma yekutanga verification inopfuura chete kana uchipinza iyo yekutanga chizvarwa vector - isina kurongeka 128-bit nhamba inoenderana neicho chiratidzo () Nhamba iyi haina hukama nembeu, iyo inobva yabatana nekugadzirwa kwechiratidzo chepurogiramu chaiyo. Kana Cheki yeSecurID Chiratidzo cheMbeu ichikwanisa kusvetuka (yakaiswa zvigamba), saka hapana chinokutadzisa kuburitsa macode emvumo yezvinhu zviviri mune ramangwana. Fox-IT inotaura kuti kupfuura cheki inogona kuwanikwa nekushandura murairo mumwe chete. Mushure meizvi, hurongwa hwemunhu anenge abatwa huchave hwakavhurika uye zviri pamutemo kune anorwisa pasina kushandisa zvakakosha zvekushandisa uye mabhomba.
Source: 3dnews.ru