Ingqalasizinda yedolobha elikhulu yesimanje yakhiwe ku-inthanethi Yezinto: kusukela kumakhamera wevidiyo emigwaqweni kuya eziteshini ezinkulu zikagesi ophehlwa ngamanzi kanye nezibhedlela. Abaduni bayakwazi ukushintsha noma iyiphi idivayisi exhunyiwe ibe yi-bot bese beyisebenzisela ukuhlasela kwe-DDoS.
Izisusa zingahluka kakhulu: abaduni, isibonelo, bangakhokhelwa nguhulumeni noma inhlangano, futhi ngezinye izikhathi bayizigebengu ezifuna ukuzijabulisa nokwenza imali.
E-Russia, amasosha asethusa kakhulu ngokuhlaselwa kwe-cyber okungenzeka kube "izikhungo zengqalasizinda ezibucayi" (kwakuwukuvikela ngokumelene nalokhu, okungenani ngokusemthethweni, ukuthi umthetho we-inthanethi ozimele wamukelwa).
Nokho, lena akuyona nje indaba esabekayo. Ngokusho kukaKaspersky, engxenyeni yokuqala ka-2019, abaduni bahlasele i-Intanethi Yezinto izikhathi ezingaphezu kwezigidi eziyi-100, imvamisa besebenzisa i-Mirai ne-Nyadrop botnets. Ngendlela, iRussia isendaweni yesine kuphela enanini lokuhlaselwa okunjalo (naphezu kwesithombe esisabekayo "sabaduni baseRussia" esakhiwe yi-Western press); Abathathu abaphezulu yiChina, iBrazil kanye ne-Egypt. I-USA isendaweni yesihlanu kuphela.
Ngakho-ke kungenzeka yini ukuxosha ngempumelelo ukuhlaselwa okunjalo? Ake siqale sibheke izimo ezimbalwa ezaziwayo zokuhlaselwa okunjalo ukuze sithole impendulo yombuzo wokuthi ungawavikela kanjani amadivayisi akho okungenani ezingeni eliyisisekelo.
Bowman Avenue Dam
I-Bowman Avenue Dam itholakala edolobheni laseRye Brook (eNew York) elinabantu abangaphansi kwezinkulungwane eziyi-10 - ukuphakama kwalo kungamamitha ayisithupha kuphela, ububanzi balo abudluli ezinhlanu. Ngo-2013, izikhungo zezobunhloli zase-US zathola isofthiwe eyingozi ohlelweni lolwazi lwedamu. Khona-ke abaduni abazange basebenzise idatha eyebiwe ukuze baphazamise ukusebenza kwesikhungo (okungenzeka kakhulu ngenxa yokuthi idamu linqanyuliwe ku-inthanethi ngesikhathi sokulungisa).
I-Bowman Avenue iyadingeka ukuze kuvinjelwe ukugcwala kwezindawo eziseduze nomfula ngesikhathi sezikhukhula. Futhi angeke kube nemiphumela elimazayo ngenxa yokwehluleka kwedamu - esimweni esibi kakhulu, izakhiwo ezingaphansi kwezakhiwo eziningana eduze nomfudlana zizobe zigcwele amanzi, kodwa lokhu akukwazi ngisho nokubizwa ngokuthi isikhukhula.
UMeya uPaul Rosenberg wabe esephakamisa ukuthi abagebengu badukise isakhiwo nelinye idamu elikhulu elinegama elifanayo e-Oregon. Isetshenziselwa ukunisela amapulazi amaningi, lapho ukwehluleka kungadala umonakalo omkhulu kubahlali bendawo.
Kungenzeka ukuthi izigebengu bezimane beziqeqeshela edamini elincane ukuze ngokuhamba kwesikhathi bangenelele kakhulu esiteshini samandla kagesi ophehlwa ngamanzi nanoma iyiphi enye ingxenye yegridi kagesi yase-US.
Ukuhlaselwa kwedamu i-Bowman Avenue kwaqashelwa njengengxenye yochungechunge lokugetshengwa kwezinhlelo zamabhange izigebengu eziyisikhombisa zase-Iranian ezikwenze ngempumelelo phakathi nonyaka (ukuhlasela kwe-DDoS). Ngalesi sikhathi, umsebenzi wezikhungo zezezimali ze-46 ezinkulu kakhulu zezwe waphazamiseka, futhi ama-akhawunti asebhange angamakhulu ezinkulungwane zamaklayenti avinjelwe.
U-Iranian Hamid Firouzi kamuva wabekwa icala lochungechunge lokuhlasela kwama-hacker emabhange kanye ne-Bowman Avenue Dam. Kuvele ukuthi wasebenzisa indlela ye-Google Dorking ukuthola βizimboboβ edamini (kamuva abezindaba bendawo behlise inqwaba yezinsolo ezibhekiswe ku-Google corporation). U-Hamid Fizuri wayengekho e-United States. Njengoba ukukhishwa kwe-Iran kuya e-United States akukho, abaduni abazange bathole imisho yangempela.
2.Isitimela esihamba ngaphansi komhlaba samahhala e-San Francisco
Ngomhla zingama-25 kuNovemba 2016, kwavela umyalezo kuzo zonke izikhumulo ze-elekthronikhi ezithengisa amaphasi ezithuthi zomphakathi e-San Francisco: βUgqekeziwe, yonke imininingwane ibethelwe.β Wonke amakhompyutha ama-Windows e-Urban Transport Agency aphinde ahlaselwa. Isofthiwe enobungozi i-HDDCryptor (i-encryptor ehlasela irekhodi lokuqalisa lekhompyutha ye-Windows) ifinyelele isilawuli sesizinda senhlangano.
I-HDDCryptor ibhala ngemfihlo amadrayivu aqinile endawo namafayela enethiwekhi isebenzisa okhiye abakhiqizwe ngokungahleliwe, bese ibhala kabusha i-MBR yamadrayivu aqinile ukuze ivimbele amasistimu ukuthi aqale ngokulungile. Imishini, njengomthetho, itheleleka ngenxa yezenzo zabasebenzi abavula ngephutha ifayela le-decoy ku-imeyili, bese igciwane lisakazeka kunethiwekhi yonkana.
Abahlaseli bameme uhulumeni wendawo ukuthi ubathinte ngeposi [i-imeyili ivikelwe] (yebo, Yandex). Ukuze bathole ukhiye wokuqopha yonke imininingwane, bafuna ama-bitcoins ayi-100 (ngaleso sikhathi cishe amadola ayizinkulungwane ezingama-73). Abaduni baphinde banikela ngokuhlehlisa umshini owodwa nge-bitcoin eyodwa ukufakazela ukuthi ukululama kungenzeka. Kodwa uhulumeni wabhekana naleli gciwane eyedwa, nakuba kuthathe isikhathi esingaphezu kosuku. Ngenkathi lonke uhlelo lubuyiselwa, ukuhamba kumetro kwenziwe mahhala.
"Sivule ama-turntile njengesinyathelo sokunciphisa umthelela walokhu kuhlasela kubagibeli," kuchaza okhulumela umasipala uPaul Rose.
Izigebengu ziphinde zathi zikwazile ukufinyelela ku-30 ββGB wemibhalo yangaphakathi evela e-San Francisco Metropolitan Transportation Agency futhi zathembisa ukuthi zizoziputshuza ku-inthanethi uma isihlengo singakhokhwanga phakathi namahora angama-24.
Ngendlela, ngonyaka ngaphambili, iHollywood Presbyterian Medical Center yahlaselwa esifundeni esifanayo. Laba bagebengu babe sebekhokhelwa u-$17 ukuze baphinde bangene ohlelweni lwamakhompyutha esibhedlela.
3. Uhlelo lwe-Dallas Emergency Alert
Ngo-April 2017, kwakhala izinhlabamkhosi eziyi-23 eziphuthumayo e-Dallas ngo-40:156 p.m. ukwazisa umphakathi ngezimo eziphuthumayo. Bakwazile ukucisha ngemva kwamahora amabili kuphela. Ngalesi sikhathi, isevisi ye-911 yathola izinkulungwane zezingcingo ezivela kubahlali bendawo (ezinsukwini ezimbalwa ngaphambi kwesigameko, iziphepho ezintathu ezibuthakathaka zadlula endaweni yaseDallas, zacekela phansi izindlu eziningana).
Isistimu yesaziso esiphuthumayo yafakwa e-Dallas ngo-2007, nama-siren ahlinzekwa yi-Federal Signal. Iziphathimandla azizange zinebe kabanzi ngokuthi izinhlelo zisebenza kanjani, kodwa zathi zisebenzisa "amathoni." Amasignali anjalo ngokuvamile asakazwa ngesevisi yesimo sezulu kusetshenziswa i-Dual-Tone Multi-Frequency (DTMF) noma i-Audio Frequency Shift Keying (AFSK). Lena imiyalo ebethelwe eyasakazwa ngemvamisa engu-700 MHz.
Izikhulu zedolobha ziphakamise ukuthi abahlaseli baqophe amasiginali asakazwa ngesikhathi kuhlolwa uhlelo lwesexwayiso base bewadlala bewabuyisela emuva (ukuhlasela kwe-replay yakudala). Ukuze bakwenze, abaduni bekufanele bathenge kuphela izinto zokuhlola zokusebenza ngamaza omsakazo; zingathengwa ngaphandle kwezinkinga ezitolo ezikhethekile.
Ochwepheshe benkampani yocwaningo i-Bastille baphawule ukuthi ukuhlasela okunjalo kusho ukuthi abahlaseli bakuhlolisise kahle ukusebenza kohlelo lwezaziso eziphuthumayo lwedolobha, amaza namakhodi.
Imeya yaseDallas ikhiphe isitatimende ngakusasa sokuthi abagebengu bazotholakala futhi bajeziswe, nokuthi zonke izinhlelo zokuxwayisa eTexas zizokwenziwa zibe yisimanjemanje. Nokho, izigebengu azizange zitholakale.
***
Umqondo wamadolobha ahlakaniphile uza nezingozi ezinkulu. Uma isistimu yokulawula yedolobha elikhulu igetshengwa, abahlaseli bazothola ukufinyelela bekude ukuze balawule izimo zethrafikhi kanye nezinto ezibalulekile zedolobhakazi.Izingozi ziphinde zihlotshaniswe nokwebiwa kwemininingwane yolwazi, engafaki ulwazi olumayelana nengqalasizinda yedolobha kuphela, kodwa nedatha yomuntu siqu yabahlali. Akufanele sikhohlwe mayelana nokusetshenziswa kukagesi ngokweqile kanye nokugcwala kwenethiwekhi - bonke ubuchwepheshe buboshelwe eziteshini zokuxhumana namanodi, okuhlanganisa nogesi osetshenzisiwe.
Izinga lokukhathazeka labanikazi bedivayisi ye-IoT lisondela ku-zero
Ngo-2017, i-Trustlook yenze ucwaningo lwezinga lokuqwashisa abanikazi bedivayisi ye-IoT mayelana nokuphepha kwabo. Kuvele ukuthi u-35% wabaphenduli abayishintshi iphasiwedi ezenzakalelayo (yasefekthri) ngaphambi kokuqala ukusebenzisa idivayisi. Futhi ngaphezu kwengxenye yabasebenzisi abayifaki isofthiwe yezinkampani zangaphandle nhlobo ukuze bavikeleke ekuhlaselweni kwama-hacker. I-80% yabanikazi bedivayisi ye-IoT abakaze bezwe nge-Mirai botnet.
Ngesikhathi esifanayo, ngokuthuthukiswa kwe-Intanethi Yezinto, inani lokuhlaselwa kwe-cyber lizokhula kuphela. Futhi ngenkathi izinkampani zithenga amadivayisi βahlakaniphileβ, zikhohlwa imithetho eyisisekelo yokuphepha, izigebengu ze-inthanethi zithola amathuba amaningi okwenza imali kubasebenzisi abanganaki. Isibonelo, basebenzisa amanethiwekhi emishini ethelelekile ukwenza ukuhlasela kwe-DDoS noma njengeseva elibamba kweminye imisebenzi enonya. Futhi eziningi zalezi zigameko ezingajabulisi zingavinjelwa uma ulandela imithetho elula:
- Shintsha iphasiwedi yasekuqaleni ngaphambi kokuthi uqale ukusebenzisa idivayisi
- Faka isofthiwe ethembekile yokuphepha kwe-inthanethi kumakhompyutha akho, amaphilisi nama-smartphone.
- Yenza ucwaningo lwakho ngaphambi kokuthenga. Amadivayisi ahlakaniphile ngoba aqoqa idatha yomuntu siqu eningi. Kufanele wazi ukuthi yiluphi uhlobo lolwazi oluzoqoqwa, ukuthi luzogcinwa futhi luvikelwe kanjani, nokuthi luzokwabelwana yini nezinkampani zangaphandle.
- Hlola iwebhusayithi yomkhiqizi wedivayisi njalo ukuze uthole izibuyekezo ze-firmware
- Ungakhohlwa ukuhlola ilogu yomcimbi (ikakhulukazi hlaziya konke ukusetshenziswa kwembobo ye-USB)
Source: www.habr.com