UGoogle upapashe “Lusebenza kangakanani ucoceko olusisiseko lweakhawunti ekuthinteleni ukubiwa kweakhawunti” malunga nento anokuyenza umnini-akhawunti ukukuthintela ukubiwa ngabaphuli-mthetho. Sinikezela ingqalelo yakho ngoguqulelo lwesi sifundo.
Enyanisweni, eyona ndlela isebenzayo, esetyenziswa yiGoogle ngokwayo, ayizange ifakwe kwingxelo. Kwafuneka ndibhale ngale ndlela ngokwam ekugqibeleni.
Yonke imihla sikhusela abasebenzisi kumakhulu amawaka emalinge yokugqekeza iakhawunti. ivela kwi-automated bots kunye nokufikelela kwiinkqubo zomntu wesithathu zokuqhekeka iphasiwedi, kodwa ukukhwabanisa kunye nohlaselo olujoliswe kuyo lukhona. Ngaphambili sixelele ukuba njani , njengokufaka inombolo yefowuni, inokukunceda ukuba uhlale ukhuselekile, kodwa ngoku sifuna ukubonakalisa ngokusebenza.
Ukuhlaselwa kwe-phishing kuyinzame yokukhohlisa umsebenzisi ukuba anike ngokuzithandela ulwazi lomhlaseli oluya kuba luncedo kwinkqubo yokukhwabanisa. Umzekelo, ngokukopa ujongano lwesicelo esisemthethweni.
Uhlaselo olusebenzisa i-automated bots ziinzame ezinkulu zokugqekeza ezingajoliswanga kubasebenzisi abathile. Iqhele ukwenziwa kusetyenziswa isoftwe efumaneka esidlangalaleni kwaye inokusetyenziswa nangabaqeshwanga abangaqeqeshwanga. Abahlaseli abazi nto malunga neempawu zabasebenzisi abathile - baqalisa inkqubo kwaye "babambe" zonke iirekhodi zesayensi ezingakhuselwanga kufutshane.
Ukuhlaselwa okujoliswe kuyo kukukhwabanisa kwee-akhawunti ezithile, apho ulwazi olongezelelweyo luqokelelwa malunga ne-akhawunti nganye kunye nomnini wayo, ukuzama ukunqanda kunye nokuhlalutya i-traffic, kunye nokusetyenziswa kwezixhobo eziyinkimbinkimbi zokukhwabanisa zinokwenzeka.
(Inqaku lomguquleli)
Siye sasebenzisana nabaphandi abavela kwiYunivesithi yaseNew York kunye neYunivesithi yaseCalifornia ukufumanisa ukuba ucoceko olusisiseko lweakhawunti lusebenza njani ekuthinteleni ukuqweqwediswa kweakhawunti.
Uphononongo lonyaka malunga и yanikezelwa ngoLwesithathu kwintlanganiso yeengcali, abenzi bomgaqo-nkqubo kunye nabasebenzisi ababiziweyo .
Uphando lwethu lubonisa ukuba ukongeza nje inombolo yefowuni kwiakhawunti yakho kaGoogle kunokuvalela ukuya kuthi ga kwi-100% yohlaselo lwe-bot oluzenzekelayo, i-99% yohlaselo lwe-bulk phishing, kunye ne-66% yohlaselo ekujoliswe kulo kuphando lwethu.
Ukhuseleko oluzenzekelayo olusebenzayo lukaGoogle ngokuchasene nokuqweqwediswa kweakhawunti
Sisebenzisa ukhuseleko oluzenzekelayo olusebenzayo ukukhusela ngcono bonke abasebenzisi bethu kwi-akhawunti yokugqekeza. Nantsi indlela esebenza ngayo: Ukuba sibhaqa iinzame zokungena ezikrokrisayo (umzekelo, kwindawo entsha okanye isixhobo), siya kucela ubungqina obungakumbi bokuba nguwe ngenene. Esi siqinisekiso sisenokuqinisekisa ukuba unofikelelo kwinombolo yefowuni ethembekileyo, okanye ukuphendula umbuzo owazi impendulo echanekileyo kuwo.
Ukuba usayinelwe kwifowuni yakho okanye unike inombolo yefowuni kwiisetingi zeakhawunti yakho, singakunika umgangatho ofanayo wokhuseleko njengesiqinisekiso esimanyathelo amabini. Sifumene ukuba ikhowudi ye-SMS ethunyelwe kwinombolo yefowuni yokubuyisela incede ukuvimba i-100% ye-automated bots, i-96% yokuhlaselwa kwe-phishing eninzi, kunye ne-76% yokuhlaselwa okujoliswe kuyo. Kwaye isixhobo sikhuthaza ukuqinisekisa ukuthengiselana, ukutshintshwa okukhuselekileyo ngakumbi kweSMS, kwanceda ukukhusela i-100% ye-automated bots, i-99% yokuhlaselwa kwe-phishing mass, kunye ne-90% yokuhlaselwa okujoliswe kuyo.
Ukhuseleko olusekwe kubunini besixhobo kunye nolwazi lweenyani ezithile lunceda ukuchasana ne-automated bots, ngelixa ukhuseleko lobunini besixhobo lunceda ukunqanda ubuqhetseba kunye nohlaselo olujoliswe kuko.
Ukuba awunayo inombolo yefowuni emiselwe kwiakhawunti yakho, sinokusebenzisa iindlela zokhuseleko ezibuthathaka ngokusekwe kwinto esiyaziyo ngawe, njengendawo apho ugqibele khona ukungena kwiakhawunti yakho. Oku kusebenza kakuhle ngokuchasene ne-bots, kodwa inqanaba lokukhusela kwi-phishing lingahla liye kwi-10%, kwaye akukho khuselo malunga nokuhlaselwa okujoliswe kuyo. Oku kungenxa yokuba amaphepha enkohliso kunye nabahlaseli ekujoliswe kubo banokukunyanzela ukuba uveze naluphi na ulwazi olongezelelweyo uGoogle anokucela ukuba uqinisekiswe.
Ukunika uncedo olunjalo lokhuseleko, umntu unokubuza ukuba kutheni singayifuni kulo lonke igama lokungena. Impendulo kukuba iya kudala ubunzima obongezelelweyo kubasebenzisi (ingakumbi abangalungiselelwanga - approx. inguqulelo) kwaye inganyusa umngcipheko wokunqunyanyiswa kweakhawunti. Uvavanyo lufumanise ukuba i-38% yabasebenzisi khange babe nokufikelela kwifowuni yabo xa bengena kwiakhawunti yabo. Enye i-34% yabasebenzisi abakwazanga ukukhumbula idilesi yabo yesibini ye-imeyile.
Ukuba uye waphulukana nofikelelo kwifowuni yakho okanye awukwazi ukungena, ungasoloko ubuyela kwisixhobo esithembekileyo obungena kuso ngaphambili ukuze ufikelele kwiakhawunti yakho.
Ukuqonda ukuhlaselwa kwe-hack-for-hire
Apho uninzi lokhuseleko oluzenzekelayo luvala uninzi lwe-bots kunye nohlaselo lobuqhetseba, uhlaselo ekujoliswe kulo luba yingozi ngakumbi. Njengenxalenye yemizamo yethu eqhubekayo yoku , sihlala sichonga amaqela amatsha olwaphulo-mthetho lokuqesha abiza umyinge we-750 yeedola ukuze aqhekeze iakhawunti enye. Aba bahlaseli bahlala bexhomekeke kwii-imeyile zokukhohlisa ezizenza amalungu osapho, oogxa, amagosa karhulumente, okanye uGoogle. Ukuba ekujoliswe kuko akunikezeli kwimizamo yokuqala yokukhohlisa, ukuhlaselwa okulandelayo kuyaqhubeka ngaphezu kwenyanga.
Umzekelo wohlaselo lwe phishing ye man-in-the-middle eqinisekisa ukuchaneka kwegama lokugqitha ngexesha lokwenyani. Iphepha le-phishing ke likhuthaza amaxhoba ukuba afake iikhowudi zokuqinisekisa zeSMS ukufikelela kwi-akhawunti yexhoba.
Siqikelela ukuba umsebenzisi omnye kuphela kwisigidi okulo mngcipheko mkhulu. Abahlaseli abajongi abantu nje. Ngelixa uphando lubonisa ukuba ukhuseleko lwethu oluzenzekelayo lunokunceda ukulibazisa kwaye luthintele ukuya kuthi ga kwi-66% yohlaselo ekujoliswe kulo esilufundileyo, sisacebisa ukuba abasebenzisi abasemngciphekweni omkhulu babhalise kunye nathi. . Njengoko kuphawulwe ngexesha lophando lwethu, abasebenzisi abasebenzisa kuphela izitshixo zokhuseleko (oko kukuthi, uqinisekiso lwamanyathelo amabini usebenzisa iikhowudi ezithunyelwe kubasebenzisi - malunga. inguqulelo), baye baba ngamaxhoba okulotywa kwemikhonto.
Thatha ixesha elincinci ukukhusela iakhawunti yakho
Usebenzisa amabhanti ezihlalo ukukhusela ubomi kunye nemilenze ngelixa uhamba ngeemoto. Kwaye ngoncedo lwethu ungaqinisekisa ukhuseleko lweakhawunti yakho.
Uphando lwethu lubonisa ukuba enye yezona zinto zilula onokuzenza ukukhusela iakhawunti yakho kaGoogle kukuseta inombolo yefowuni. Kubasebenzisi abasengozini enkulu njengeentatheli, amatshantliziyo asekuhlaleni, iinkokeli zoshishino kunye namaqela ephulo lezopolitiko, inkqubo yethu kuya kunceda ukuqinisekisa umgangatho ophezulu wokhuseleko. Unokukhusela iiakhawunti zakho ezingezizo zikaGoogle kwiihacks eziyimfihlo ngokufaka ulwandiso .
Kuyathakazelisa ukuba uGoogle akayilandeli ingcebiso ayinika abasebenzisi bayo. ukuqinisekiswa kwezinto ezimbini kubasebenzi bayo abangaphezu kwama-85. Ngokutsho kwabameli be-corporation, ukususela ekuqaleni kokusebenzisa amathokheni e-hardware, akukho nanye ukubiwa kwe-akhawunti erekhodiweyo. Thelekisa amanani achazwe kule ngxelo. Ngaloo ndlela kuyacaca ukuba ukusetyenziswa kwe-hardware iimpawu kuqinisekiso lwezinto ezimbini ekuphela kwendlela ethembekileyo yokukhusela zombini iiakhawunti kunye nolwazi (kwaye kwezinye iimeko nemali).
Ukukhusela iiakhawunti zeGoogle, amathokheni adalwe ngokwemigangatho yeFIDO U2F isetyenziswa, umzekelo . Kwaye ukuqinisekiswa kwezinto ezimbini kwiinkqubo zeWindows, Linux kunye neMacOS, .
(Inqaku lomguquleli)
umthombo: www.habr.com