Ngelixa abantu abanomdla belindele ukungeniswa kobuninzi bothungelwano lwesizukulwana sesihlanu, abaphuli-mthetho be-cybercriminal bahlikihla izandla zabo, belindele amathuba amatsha okwenza inzuzo. Naphezu kwayo yonke imizamo yabaphuhlisi, iteknoloji ye-5G iqulethe ubuthathaka, ukuchongwa okuyinkimbinkimbi ngenxa yokungabikho kwamava ekusebenzeni kwiimeko ezintsha. Sivavanye inethiwekhi encinci ye-5G kwaye sachonga iintlobo ezintathu zobuthathaka, esiza kuxoxa ngazo kule post.
Injongo yokufunda
Makhe siqwalasele owona mzekelo ulula - imodeli non-public campus network network 5G (Non-Public Network, NPN), eqhagamshelwe kwihlabathi langaphandle ngokusebenzisa amajelo onxibelelwano loluntu. Zizo ezi nethiwekhi ziya kusetyenziswa njengothungelwano oluqhelekileyo kuwo onke amazwe ajoyine ugqatso lwe-5G kungekudala. Ubume obunokwenzeka bokuhambisa amanethiwekhi olu lungelelwaniso ngamashishini "ahlakaniphile", izixeko "ezihlakaniphile", iiofisi zeenkampani ezinkulu kunye nezinye iindawo ezifanayo ezinolawulo oluphezulu.
Iziseko zophuhliso zeNPN: inethiwekhi evaliweyo yeshishini iqhagamshelwe kuthungelwano lwehlabathi jikelele lwe-5G ngokusebenzisa amajelo oluntu. Umthombo: Trend Micro
Ngokungafaniyo neenethiwekhi zesizukulwana sesine, uthungelwano lwe-5G lugxininise ekuqhubeni idatha yexesha langempela, ngoko ke i-architecture yabo ifana ne-pie ene-multi-layered pie. Ukumaleko kuvumela unxibelelwano olulula ngokumisela i-APIs yonxibelelwano phakathi kweeleya.
Ukuthelekiswa kwe-4G kunye ne-5G izakhiwo. Umthombo: Trend Micro
Isiphumo kukunyuswa kokuzenzekela kunye namandla okulinganisa, abaluleke kakhulu ekusetyenzweni kweemali ezinkulu zolwazi oluvela kwi-Intanethi yeZinto (IoT).
Ukwahlukaniswa kwamanqanaba akhiwe kumgangatho we-5G kukhokelela ekuveleni kwengxaki entsha: iinkqubo zokhuseleko ezisebenza ngaphakathi kwenethiwekhi ye-NPN zikhusela into kunye nefu layo langasese, iinkqubo zokhuseleko zenethiwekhi zangaphandle zikhusela iziseko zabo zangaphakathi. I-Traffic phakathi kwe-NPN kunye neenethiwekhi zangaphandle zibhekwa njengekhuselekile kuba zivela kwiinkqubo ezikhuselekileyo, kodwa ngokwenene akukho mntu ukhuselayo.
Kuphononongo lwethu lwamva nje Sibonisa iimeko ezininzi zohlaselo lwe-cyber kwiinethiwekhi ze-5G ezixhaphazayo:
- Ubuthathaka bekhadi leSIM,
- ubuthathaka kwinethiwekhi,
- ubuthathaka kwinkqubo yokuchonga.
Makhe sijonge ubuthathaka ngamnye ngokweenkcukacha ezithe vetshe.
Ubuthathaka bekhadi leSIM
Ikhadi leSIM sisixhobo esintsonkothileyo eside sibe neseti epheleleyo yezicelo ezakhelwe ngaphakathi-i-SIM Toolkit, STK. Enye yale nkqubo, i-S @ T Browser, ingasetyenziselwa ukujonga iisayithi zangaphakathi zomqhubi, kodwa ekusebenzeni sele ilibele ixesha elide kwaye ayizange ihlaziywe ukususela ngo-2009, ekubeni le misebenzi ngoku yenziwa ngezinye iinkqubo.
Ingxaki kukuba i-S @ T Browser yajika yaba sengozini: inkonzo elungiselelwe ngokukodwa i-SMS igxotha i-SIM khadi kwaye inyanzelisa ukuba iphumeze imiyalelo efunekayo yi-hacker, kwaye umsebenzisi wefowuni okanye isixhobo akayi kuqaphela into engaqhelekanga. Olu hlaselo lwathiywa igama kwaye inika amathuba amaninzi kubahlaseli.
Ukuhlaselwa kweSimjacking kwinethiwekhi ye-5G. Umthombo: Trend Micro
Ngokukodwa, ivumela umhlaseli ukuba adlulisele idatha malunga nendawo yombhalisi, isazisi sesixhobo sakhe (IMEI) kunye nenqaba yeseli (ID yeSeli), kunye nokunyanzela ifowuni ukuba icofe inombolo, ithumele iSMS, ivule ikhonkco kuyo. umkhangeli zincwadi, kwaye uvale iSIM khadi.
Kwiinethiwekhi ze-5G, obu buthathaka bamakhadi e-SIM buba yingxaki enkulu enikwe inani lezixhobo ezixhunyiwe. Nangona , kwiinethiwekhi zesizukulwana sesihlanu kusekho . Kwaye ekubeni yonke into isebenza ngolu hlobo, awukwazi ukulindela ukutshintshwa ngokukhawuleza kwamakhadi e-SIM akhoyo.
Ukusetyenziswa okukhohlakeleyo kokuzulazula. Umthombo: Trend Micro
Ukusebenzisa i-Simjacking kukuvumela ukuba unyanzelise ikhadi leSIM kwimowudi yokuzulazula kwaye uyinyanzele ukuba idibanise kwinqaba yeseli elawulwa ngumhlaseli. Kule meko, umhlaseli uya kukwazi ukuguqula izicwangciso zekhadi le-SIM ukuze aphulaphule iingxoxo zefowuni, angenise i-malware kwaye enze iintlobo ezahlukeneyo zohlaselo esebenzisa isixhobo esinekhadi le-SIM elithotyiweyo. Yintoni eya kumvumela ukuba enze oku kukuba ukusebenzisana kunye nezixhobo ekuzuleni kwenzeka ngokudlula iinkqubo zokhuseleko ezamkelwe kwizixhobo kwinethiwekhi "yasekhaya".
Ubuthathaka benethiwekhi
Abahlaseli banokutshintsha iisetingi zeSIM khadi esichengeni ukusombulula iingxaki zabo. Ukukhululeka okuhambelanayo kunye nokufihlakala kohlaselo lweSimjaking luvumela ukuba lwenziwe ngokuqhubekayo, lubambe ulawulo kwizixhobo ezitsha ngakumbi nangakumbi, kancinci nangomonde () ukusika amaqhekeza omnatha njengezilayi zesalami (). Kunzima kakhulu ukulandelela impembelelo enjalo, kwaye kwimeko yenethiwekhi ye-5G eyinkimbinkimbi, akunakwenzeka.
Ukungeniswa ngokuthe ngcembe kwinethiwekhi ye-5G usebenzisa ukuhlaselwa kwe-Low and Slow + Salami. Umthombo: Trend Micro
Kwaye ekubeni iinethiwekhi ze-5G zingenalo ulawulo lwezokhuseleko olwakhelwe ngaphakathi kwi-SIM khadi, abahlaseli baya kukwazi ukuseka imithetho yabo kwi-domain yonxibelelwano ye-5G, besebenzisa ii-SIM khadi ezibanjiweyo ukuba imali, ukugunyaza kwinqanaba lenethiwekhi, ukufaka i-malware kunye nezinye. imisebenzi engekho mthethweni.
Eyona nto ixhalabisayo kukubonakala kwiiforam ze-hacker zezixhobo ezenza ukubanjwa kwamakhadi e-SIM usebenzisa i-Simjaking, ekubeni ukusetyenziswa kwezixhobo ezinjalo kuthungelwano lwesizukulwana sesihlanu kunika abahlaseli phantse amathuba angenamkhawulo wokuhlaselwa kunye nokuguqula i-traffic ethembekileyo.
Ukuchongwa kobuthathaka
ISIM khadi isetyenziselwa ukuchonga isixhobo esikwinethiwekhi. Ukuba i-SIM khadi iyasebenza kwaye ine-balance balance, ifowuni ngokuzenzekelayo ithathwa njengesemthethweni kwaye ayibangeli ukukrokra kwinqanaba lokufumanisa iinkqubo. Ngeli xesha, ukuba sesichengeni kweSIM khadi ngokwayo kwenza yonke inkqubo yokuchonga ibe sesichengeni. Iinkqubo zokhuseleko lwe-IT ngokulula aziyi kukwazi ukulandelela isixhobo esiqhagamshelwe ngokungekho mthethweni ukuba sibhalisa kuthungelwano sisebenzisa idatha yokuchonga ebiwe ngeSimjaking.
Kuvela ukuba i-hacker edibanisa kwinethiwekhi ngokusebenzisa i-SIM khadi ye-hacked ifumana ukufikelela kwinqanaba lomnini wangempela, ekubeni iinkqubo ze-IT azisajongi izixhobo ezigqithise ukuchongwa kwinqanaba lenethiwekhi.
Ukuchongwa okuqinisekisiweyo phakathi kwesoftware kunye neengqimba zenethiwekhi yongeza omnye umngeni: abaphuli-mthetho banokwenza ngabom "ingxolo" yeenkqubo zokubona ukungena ngokungena ngokuqhubekayo ngokwenza izenzo ezahlukeneyo ezikrokrelayo egameni lezixhobo ezisemthethweni ezithinjiweyo. Ekubeni iinkqubo zokufumanisa ngokuzenzekelayo zisekelwe kuhlalutyo lwamanani, i-alarm thresholds iya kunyuka ngokuthe ngcembe, iqinisekisa ukuba ukuhlaselwa kwangempela akuphendulwanga. Uvezo lwexesha elide olulolu hlobo luyakwazi ukutshintsha ukusebenza kwenethiwekhi yonke kunye nokudala amabala angaboniyo kwiinkqubo zokubona. Izigebenga ezilawula ezo ndawo zinokuhlasela idatha ngaphakathi kwinethiwekhi kunye nezixhobo ezibonakalayo, zibangele ukukhanyelwa kwenkonzo, kwaye zenze enye ingozi.
Isisombululo: UQinisekiso lweSazisi esiManyeneyo
Ubuthathaka benethiwekhi ye-5G ye-NPN efundwayo yisiphumo sokuqhekeka kweenkqubo zokhuseleko kwinqanaba lonxibelelwano, kwinqanaba le-SIM khadi kunye nezixhobo, kunye nakwinqanaba lokuzulazula ukusebenzisana phakathi kwamanethiwekhi. Ukusombulula le ngxaki, kuyimfuneko ngokuhambelana nomgaqo we-zero trust (Qinisekisa ukuba izixhobo eziqhagamshela kuthungelwano ziqinisekisiwe kwinqanaba ngalinye ngokuphumeza isazisi esidibeneyo kunye nemodeli yolawulo lofikelelo ().
Umgaqo we-ZTA kukugcina ukhuseleko naxa isixhobo singalawulwa, sihamba, okanye singaphandle komda womnatha. Imodeli yesazisi esidibeneyo yindlela yokhuseleko lwe-5G olubonelela ngoyilo olulodwa, oluhambelanayo lokuqinisekisa, amalungelo okufikelela, ukuthembeka kwedatha, kunye namanye amacandelo kunye nobuchwepheshe kwiinethiwekhi ze-5G.
Le ndlela isusa ukuba nokwenzeka kokwazisa inqaba "ejikelezayo" kwinethiwekhi kwaye iqondise kwakhona amakhadi eSIM afakiweyo kuyo. Iinkqubo ze-IT ziya kukwazi ukubona ngokupheleleyo ukudityaniswa kwezixhobo zangaphandle kunye nokuthintela i-traffic spurious eyenza ingxolo yezibalo.
Ukukhusela i-SIM khadi ekuguqulweni, kuyimfuneko ukuzisa abahloli bengqibelelo abongezelelweyo kuyo, mhlawumbi iphunyezwe ngendlela yesicelo se-SIM esisekelwe kwi-blockchain. Isicelo singasetyenziselwa ukuqinisekiswa kwezixhobo kunye nabasebenzisi, kunye nokujonga ingqibelelo ye-firmware kunye nesetingi zekhadi leSIM zombini xa uzulazula kwaye xa usebenza kwinethiwekhi yasekhaya.
Sishwankathela
Isisombululo kwiingxaki zokhuseleko ze-5G ezichongiweyo zinokuboniswa njengendibaniselwano yeendlela ezintathu:
- ukuphunyezwa kwemodeli edibeneyo yokuchongwa kunye nolawulo lokufikelela, oluya kuqinisekisa ukunyaniseka kwedatha kwinethiwekhi;
- ukuqinisekisa ukubonakala okupheleleyo kwezoyikiso ngokuphumeza irejistri esasaziweyo ukuqinisekisa ukuba semthethweni kunye nokuthembeka kwamakhadi eSIM;
- ukubunjwa kwenkqubo yokhuseleko esasazwayo ngaphandle kwemida, ukuxazulula imiba yokusebenzisana kunye nezixhobo ekuzuleni.
Ukuphunyezwa okusebenzayo kwala manyathelo kuthatha ixesha kunye neendleko ezinzulu, kodwa ukuthunyelwa kweenethiwekhi ze-5G kwenzeka kuyo yonke indawo, oko kuthetha ukuba umsebenzi wokuphelisa ubuthathaka kufuneka uqale ngoku.
umthombo: www.habr.com