Isiseko semetropolis yanamhlanje sakhiwe kwi-Intanethi yezixhobo zeZinto: ukusuka kwiikhamera zevidiyo ezindleleni ukuya kwizikhululo zamandla ombane wamanzi amakhulu kunye nezibhedlele. Abahlaseli bayakwazi ukuguqula nasiphi na isixhobo esiqhagamshelwe kwi-bot kwaye bayisebenzise ukwenza uhlaselo lweDDoS.
Iinjongo zinokuthi zihluke kakhulu: abahlaseli, umzekelo, banokuhlawulwa ngurhulumente okanye i-corporation, kwaye ngamanye amaxesha bangabaphuli-mthetho abafuna ukuzonwabisa kunye nokwenza imali.
E-Russia, umkhosi uya usoyikisa ngohlaselo lwe-cyber olunokwenzeka "kwizixhobo ezisisiseko ezisisiseko" (yayikukukhusela ngokuchanekileyo koku, ubuncinci ngokusesikweni, ukuba wamkelwa umthetho kwi-Intanethi ezimeleyo).
Nangona kunjalo, eli asilobali nje eloyikisayo. NgokukaKaspersky, kwisiqingatha sokuqala sika-2019, abahlaseli bahlasele izixhobo ze-Intanethi zeZinto ngaphezulu kwe-100 yezigidi zamaxesha, zihlala zisebenzisa iMirai kunye neNyadrop botnets. Ngendlela, iRashiya ikwindawo yesine kuphela kwinani lohlaselo olunjalo (nangona umfanekiso ombi "wabaduni baseRashiya" owenziwe yi-Western press); Abathathu abaphezulu yiChina, iBrazil kunye ne-Egypt. I-USA ikwindawo yesihlanu kuphela.
Ngoko ngaba kunokwenzeka ukurhoxisa ngempumelelo uhlaselo olunjalo? Makhe siqale sijonge kwiimeko ezimbalwa ezaziwayo zokuhlaselwa okunjalo ukufumana impendulo kumbuzo wendlela yokukhusela izixhobo zakho ubuncinane kwinqanaba elisisiseko.
Bowman Avenue Dam
I-Bowman Avenue Dam ifumaneka kwidolophu yaseRye Brook (eNew York) enabemi abangaphantsi kwe-10 lamawaka abantu - ubude bayo buziimitha ezintandathu kuphela, kwaye ububanzi bayo abudluli ezintlanu. Ngo-2013, ii-arhente zezobuntlola zase-US zafumanisa isoftware enobungozi kwinkqubo yolwazi yedama. Emva koko abahlaseli abazange basebenzise idatha ebiweyo ukuphazamisa ukusebenza kweziko (okunokwenzeka kakhulu ngenxa yokuba idama linqanyuliwe kwi-Intanethi ngexesha lomsebenzi wokulungisa).
I-Bowman Avenue iyafuneka ukunqanda izikhukhula kwiindawo ezikufutshane nomlambo ngexesha lezikhukula. Kwaye akunakubakho miphumo eyonakalisayo ngenxa yokungaphumeleli kwedama - kwimeko embi kakhulu, izakhiwo ezingaphantsi kwezakhiwo ezininzi ecaleni komlambo zaziza kukhukula ngamanzi, kodwa oku akunakubizwa ngokuba ngumkhukula.
USodolophu uPaul Rosenberg wacebisa ukuba abaduni banokubhidanisa isakhiwo kunye nelinye idama elikhulu elinegama elifanayo eOregon. Isetyenziselwa ukunkcenkceshela iifama ezininzi, apho ukusilela kunokubangela umonakalo omkhulu kubahlali bendawo.
Kusenokwenzeka ukuba abaqweqwedisi bebeziqeqeshela nje idama elincinane ukuze kamva bangenelele ngokumandundu kwisikhululo sombane esiveliswa ngamanzi okanye nayiphi na enye into yothungelwano lombane lwase-US.
Uhlaselo kwi-Bowman Avenue Dam lwaqatshelwa njengenxalenye yoluhlu lokuqhekezwa kweenkqubo zebhanki ukuba abahlaseli abasixhenxe base-Iranian baqhube ngempumelelo kwisithuba sonyaka (uhlaselo lweDDoS). Ngeli xesha, umsebenzi we-46 wamaziko amakhulu emali yelizwe waphazamiseka, kwaye ii-akhawunti zebhanki zamakhulu amawaka abathengi zavalwa.
U-Iranian Hamid Firouzi kamva wahlawuliswa ngohlaselo lwe-hacker kwiibhanki kunye ne-Bowman Avenue Dam. Kwavela ukuba wasebenzisa indlela ye-Google Dorking ukufumana "imingxuma" edamini (kamva umshicileli wendawo wehlisa uthotho lwezityholo ezichasene ne-Google corporation). UHamid Fizuri wayengekho eUnited States. Ekubeni i-extradition esuka e-Iran ukuya kwi-States ayikho, abahlaseli abazange bafumane naziphi na izigwebo zokwenyani.
2.Indlela yangaphantsi yasimahla eSan Francisco
Ngomhla wama-25 kaNovemba ka-2016, kwavela umyalezo kuzo zonke iitheminali ze-elektroniki ezithengisa iipasi zezithuthi zikawonke-wonke eSan Francisco: βUgqekeziwe, yonke idatha ifihliwe.β Zonke iikhompyutha zeeWindows ze-Arhente yezoThutho eziDolophini nazo zahlaselwa. Isoftware enobungozi HDDCryptor (i-encryptor ehlasela irekhodi yokuqala yekhompyutha yeWindows) ifikelele kwisilawuli sendawo yombutho.
I-HDDCryptor ifihla iidrayivu zasekuhlaleni kunye neefayile zothungelwano zisebenzisa izitshixo ezenziwe ngokungenamkhethe, emva koko ibhale kwakhona ii-hard drives' MBR ukunqanda iinkqubo ukusuka ekuqaleni ngokuchanekileyo. Izixhobo, njengomthetho, zichaphazeleka ngenxa yezenzo zabasebenzi abavula ngephutha ifayile ye-decoy kwi-imeyile, kwaye ke intsholongwane isasazeka kwinethiwekhi.
Aba bahlaseli bacela urhulumente wasekuhlaleni ukuba aqhagamshelane nabo ngeleta [imeyile ikhuselwe] (Ewe, Yandex). Ukufumana isitshixo sokuqhawula yonke idatha, bafuna i-bitcoins ye-100 (ngelo xesha malunga ne-73 yamawaka eedola). Abaduni baphinde banikezela ngokucofa umatshini omnye kwi-bitcoin enye ukubonisa ukuba ukubuyisela kunokwenzeka. Kodwa urhulumente wajongana nale ntsholongwane yedwa, nangona ithathe ngaphezulu kosuku. Ngelixa yonke inkqubo ibuyiselwa, ukuhamba kwi-metro kwenziwe simahla.
βSivule iinguqu njengenyathelo lokunciphisa ifuthe lolu hlaselo kubakhweli,β ucacise watsho isithethi sikamasipala uPaul Rose.
Abaphuli-mthetho baphinde bathi baye bafumana ukufikelela kwi-30 GB yamaxwebhu angaphakathi kwi-Arhente yezoThutho yeMetropolitan yaseSan Francisco kwaye bathembisa ukuvuza kwi-intanethi ukuba intlawulelo ayizange ihlawulwe kwiiyure ze-24.
Ngendlela, kunyaka ongaphambili, iHollywood Presbyterian Medical Centre yahlaselwa kwimeko efanayo. Emva koko aba baqweqwedisi bahlawulwa i-17 yeedola ukuze babuyisele indlela yokusebenzisa inkqubo yekhompyutha yesibhedlele.
3. I-Dallas Emergency Alert System
Ngo-Aprili 2017, ii-siren ze-23 eziphuthumayo zakhala e-Dallas ngo-40: 156 ntambama ukwazisa uluntu ngeemeko eziphuthumayo. Bakwazi ukucima emva kweeyure ezimbini kuphela. Ngeli xesha, inkonzo ye-911 ifumene amawaka eefowuni ze-alamu ezivela kubahlali basekuhlaleni (kwiintsuku ezimbalwa ngaphambi kwesiganeko, iinkanyamba ezintathu ezibuthathaka zadlula kwindawo yaseDallas, zitshabalalisa izindlu ezininzi).
Inkqubo yesaziso esingxamisekileyo yafakwa eDallas ngo-2007, kunye neesiren ezibonelelwa yiFederal Signal. Abasemagunyeni abazange bacacise indlela ezisebenza ngayo iinkqubo, kodwa bathi basebenzise "iithoni." Iimpawu ezinjalo zisasazwa ngenkonzo yemozulu kusetyenziswa iDual-Tone Multi-Frequency (DTMF) okanye iAudio Frequency Shift Keying (AFSK). Le yimiyalelo entsonkothileyo eyaye yathunyelwa rhoqo kuma-700 MHz.
Amagosa esixeko acebise ukuba abahlaseli barekhode imiqondiso yesandi eyasasazwa ngexesha lovavanyo lwenkqubo yesilumkiso baze bayidlale kwakhona (uhlaselo lwakudala lokuphindaphinda). Ukuyenza, abahlaseli kufuneka bathenge kuphela izixhobo zovavanyo lokusebenza ngeefrikhwensi zikanomathotholo; inokuthengwa ngaphandle kweengxaki kwiivenkile ezikhethekileyo.
Iingcali zenkampani yophando i-Bastille yaqaphela ukuba ukuhlaselwa okunjalo kuthetha ukuba abahlaseli bafunde ngokucokisekileyo ukusebenza kwenkqubo yesaziso esiphuthumayo yesixeko, iifrikhwensi kunye neekhowudi.
Usodolophu waseDallas ukhuphe ingxelo kusuku olulandelayo ukuba abaqweqwedisi baya kufunyanwa kwaye bohlwaywe, kwaye zonke iinkqubo zokulumkisa eTexas ziya kuphuculwa. Noko ke, abenzi bobubi abazange bafunyanwe.
***
Ingcamango yezixeko ezihlakaniphile iza neengozi ezinzulu. Ukuba inkqubo yolawulo ye-metropolis igqekeziwe, abahlaseli baya kufumana ukufikelela kude nokulawula iimeko zetrafikhi kunye nezinto ezibalulekileyo zesixeko.Imingcipheko ikwanxulunyaniswa nokubiwa kogcino-lwazi, olungabandakanyi kuphela ulwazi malunga neziseko zophuhliso zesixeko, kodwa kunye nedatha yobuqu yabahlali. Asimele sikhohlwe malunga nokusetyenziswa kombane ngokugqithisileyo kunye nokugqithiswa kwenethiwekhi - zonke iitekhnoloji zibotshelelwe kumajelo onxibelelwano kunye neenodi, kubandakanya umbane osetyenzisiweyo.
Inqanaba lokuxhalaba labanini besixhobo se-IoT lisondela kwi-zero
Ngo-2017, iTrustlook yenze uphononongo lwenqanaba lokwazisa abanini besixhobo se-IoT malunga nokhuseleko lwabo. Kwavela ukuba i-35% yabaphenduli abayitshintshi i-password engagqibekanga (yefektri) ngaphambi kokuqala ukusebenzisa isixhobo. Kwaye ngaphezu kwesiqingatha sabasebenzisi abayifaki isoftware yomntu wesithathu konke konke ukukhusela kuhlaselo lwe-hacker. I-80% yabanini besixhobo se-IoT abazange bave ngeMirai botnet.
Ngexesha elifanayo, ngophuhliso lwe-Intanethi ye-Intanethi, inani lokuhlaselwa kwe-cyber liya kwanda kuphela. Kwaye ngelixa iinkampani zithenga izixhobo "ezihlakaniphile", ukulibala malunga nemithetho yokhuseleko olusisiseko, i-cybercriminals zifumana amathuba amaninzi okwenza imali kubasebenzisi abangakhathali. Umzekelo, basebenzisa uthungelwano lwezixhobo ezosulelekileyo ukwenza uhlaselo lwe-DDoS okanye njengeseva yommeleli weminye imisebenzi ekhohlakeleyo. Kwaye uninzi lwezi ziganeko ezingathandekiyo zinokuthintelwa ukuba ulandela imithetho elula:
- Guqula igama lokugqithisa lasefektri phambi kokuba uqale ukusebenzisa isixhobo
- Faka isoftware ethembekileyo yokhuseleko lwe-intanethi kwiikhompyuter zakho, iitafile kunye nee-smartphones.
- Yenza uphando lwakho phambi kokuthenga. Izixhobo ziba zihlakaniphile kuba ziqokelela iinkcukacha ezininzi zobuqu. Kuya kufuneka ulumkele uhlobo lolwazi oluya kuqokelelwa, luya kugcinwa kwaye lukhuselwe njani, kwaye luya kwabelwana ngalo namaqela esithathu.
- Jonga iwebhusayithi yomenzi wesixhobo rhoqo ngohlaziyo lwe-firmware
- Ungalibali ukuphicotha irekhodi lomnyhadala (ngokuphambili hlalutya konke ukusetyenziswa kwezibuko le-USB)
umthombo: www.habr.com