Cyber ​​​​attack: nws yog dab tsi, nws ua haujlwm li cas, lub hom phiaj thiab yuav ua li cas tiv thaiv nws: Txiv neej nyob nruab nrab

Kev tawm tsam cyber yog definible raws li kev ua phem tawm tsam lub cev, lub cuab yeej, daim ntawv thov lossis cov khoom uas muaj lub khoos phis tawj. Nws yog ib qho kev ua si uas lub hom phiaj kom tau txais txiaj ntsig rau tus neeg tawm tsam ntawm tus nqi ntawm kev tawm tsam.

Muaj ntau hom kev tawm tsam cyber, uas sib txawv raws li lub hom phiaj kom ua tiav thiab cov txheej txheem thev naus laus zis thiab cov ntsiab lus:

• kev tawm tsam cyber los tiv thaiv kev ua haujlwm, 
• uas taw tes rau kev sib haum xeeb ntawm ib qho system, 
• qee qhov kev tawm tsam tsom cov ntaub ntawv tus kheej uas muaj los ntawm lub kaw lus lossis tuam txhab,
• cyber-activism tawm tsam hauv kev txhawb nqa ntawm cov laj thawj lossis cov ntaub ntawv thiab kev sib txuas lus
• thiab lwm yam ...

Ntawm qhov kev tawm tsam ntau tshaj plaws, nyob rau lub sijhawm tsis ntev los no, muaj kev tawm tsam rau kev lag luam thiab kev tawm tsam rau cov ntaub ntawv ntws, hu ua Man-In-The-Middle: kev tawm tsam uas tsom mus rau lub vev xaib nrov lossis cov ntaub ntawv los nyiag cov ntaub ntawv nyiaj txiag.

Cov uas ua tawm tsam cyber, ib leeg lossis hauv pab pawg, raug hu hacker

Man-in-the-middle attack

Ib tug txiv neej nyob rau hauv nruab nrab tawm tsam tshwm sim thaum ib tug hacker intervenes ntawm kev sib txuas lus ntawm ib tug neeg thiab ib tug neeg rau zaub mov. Nov yog qee hom kev tawm tsam txiv neej-hauv nruab nrab:

Session hijacking

Nyob rau hauv hom txiv neej no nyob rau hauv nruab nrab nres, ib tug attacker hijacks ib tug kev sib kho ntawm ib tug neeg ntseeg siab thiab ib tug network server. Lub khoos phis tawj tawm tsam hloov nws qhov chaw nyob IP nrog cov neeg siv khoom ntseeg siab, thaum lub server txuas ntxiv kev sib tham, ntseeg nws yog kev sib txuas lus nrog tus neeg siv khoom. Piv txwv li, kev tawm tsam tuaj yeem mus zoo li no:

1. Tus neeg siv khoom txuas rau lub server.
2. Tus neeg tua neeg lub computer tau txais kev tswj hwm ntawm tus neeg siv khoom.
3. Tus neeg tua neeg lub computer disconnects tus neeg siv khoom los ntawm lub server.
4. Tus neeg tawm tsam lub computer hloov tus neeg siv tus IP chaw nyob nrog nws tus kheej IP chaw nyob e
   thiab falsifies MAC chaw nyob ntawm tus neeg siv khoom.
5. Tus neeg tua neeg lub computer txuas ntxiv tham nrog tus neeg rau zaub mov thiab tus neeg rau zaub mov ntseeg tias nws tseem txuas lus nrog tus neeg siv khoom tiag.

IP spoofing

IP spoofing yog siv los ntawm tus neeg tawm tsam kom ntseeg tau lub kaw lus tias nws yog kev sib txuas lus nrog lub koom haum paub thiab ntseeg tau thiab yog li muab tus neeg tawm tsam nkag mus rau qhov system. Tus neeg tawm tsam xa ib pob ntawv nrog qhov chaw nyob IP ntawm tus tswv tsev paub thiab ntseeg siab tsis yog nws tus kheej qhov chaw nyob IP mus rau qhov chaw tus tswv tsev. Tus tswv tsev tuaj yeem lees txais pob ntawv thiab ua raws li, tso cai nkag mus.

replay

Ib qho kev tawm tsam rov qab tshwm sim thaum tus neeg tawm tsam cuam tshuam thiab khaws cov lus qub thiab tom qab ntawd sim xa lawv tom qab, ua ib tus neeg koom nrog. Hom no tuaj yeem yooj yim raug suav nrog cov sijhawm sib tham lossis a Nuncio (tus lej random lossis hlua uas hloov raws sijhawm).

Tam sim no, tsis muaj ib qho thev naus laus zis lossis kev teeb tsa los tiv thaiv txhua tus txiv neej hauv nruab nrab tawm tsam. Feem ntau, encryption thiab daim ntawv pov thawj digital muab kev tiv thaiv zoo rau txiv neej hauv nruab nrab kev tawm tsam, kom ntseeg tau tias tsis pub leej twg paub thiab kev ncaj ncees ntawm kev sib txuas lus. Tab sis tus txiv neej-hauv-tus-nruab nrab tuaj yeem raug txhaj rau hauv nruab nrab ntawm kev sib txuas lus hauv txoj hauv kev uas tsis txawm tias cryptography tuaj yeem pab tau - piv txwv li, tus neeg tawm tsam "A" cuam tshuam rau pej xeem tus yuam sij ntawm tus neeg "P" thiab hloov nws nrog. koj tus yuam sij pej xeem. Yog li, leej twg xav xa cov lus encrypted rau P siv P tus yuam sij pej xeem yog tsis paub siv A tus yuam sij pej xeem. Yog li ntawd, A tuaj yeem nyeem cov lus npaj rau P thiab xa cov lus mus rau P, encrypted nrog P tus yuam sij pej xeem tiag tiag. P, thiab P yuav tsis pom tias cov lus tau raug cuam tshuam. Tsis tas li ntawd, A kuj tseem tuaj yeem hloov kho cov lus ua ntej xa rov qab mus rau P. Raws li koj tuaj yeem pom, P tau siv encryption thiab xav tias nws cov ntaub ntawv muaj kev nyab xeeb tab sis nws tsis yog, vim yog tus txiv neej hauv nruab nrab tawm tsam.

Yog li cas koj thiaj paub tseeb tias P's public key belongs rau P thiab tsis yog rau A? Cov tub ceev xwm daim ntawv pov thawj thiab cov haujlwm hash tau tsim los daws qhov teeb meem no. Thaum tus neeg 2 (P2) xav xa lus rau P, thiab P xav kom paub tseeb tias A yuav tsis nyeem lossis hloov cov lus thiab hais tias cov lus yog los ntawm P2, yuav tsum siv txoj hauv qab no:

1. P2 tsim tus yuam sij symmetric thiab encrypts nws nrog tus yuam sij pej xeem ntawm P.
2. P2 xa tus yuam sij encrypted symmetrical rau P.
3. P2 suav cov hash ntawm cov lus thiab digitally kos npe rau nws.
4. P2 encrypts nws cov lus thiab kos npe hash ntawm cov lus siv tus yuam sij symmetric thiab xa mus rau P.
5. P tuaj yeem tau txais tus yuam sij symmetric los ntawm P2 vim tias tsuas yog nws muaj tus yuam sij ntiag tug los txiav txim siab qhov encryption.
6. P, thiab tsuas yog P xwb, tuaj yeem txiav txim siab cov lus sib xyaw ua ke thiab kos npe hash vim nws muaj tus yuam sij sib luag.
7. Nws muaj peev xwm txheeb xyuas tau tias cov lus tsis tau hloov pauv vim nws tuaj yeem suav cov hash ntawm cov lus tau txais thiab sib piv nrog cov ntawv kos npe digitally.
8. P tseem tuaj yeem ua pov thawj rau nws tus kheej tias P2 yog tus xa khoom vim tias tsuas yog P2 tuaj yeem kos npe rau tus hash kom nws tau txheeb xyuas nrog P2 tus yuam sij pej xeem.

Malware thiab txiv neej nyob nruab nrab

Nws tuaj yeem tso tawm qhov kev tawm tsam siv malware; hauv technical jargon peb tham txog kev tawm tsam "tus txiv neej hauv qhov browser"Vim tias tus neeg tawm tsam ntawm tus kab mob kis rau lub vev xaib tshawb xyuas software.

Ib lub sijhawm cuam ​​tshuam qhov browser, tus neeg tawm tsam tuaj yeem manipulate ib nplooj ntawv web qhia tej yam txawv dua li qhov chaw qub.

Nws kuj tseem tuaj yeem nyiag qhov tsis muaj hmoo ntawm cov vev xaib cuav, uas simulate cov tuam txhab lag luam lossis cov nplooj ntawv social media, piv txwv li, tau txais cov yuam sij nkag ... xav txog qhov seem!

Cia peb coj tus trojan piv txwv spyeye, siv li keylogger mus nyiag lub vev xaib ntawv pov thawj. spyeye tau tsim nyob rau hauv Russia xyoo 2009, tau nrov los ntawm browser txuas ntxiv Google Chrome, Firefox, Internet Explorer thiab Opera.

Tsim ib tug fake Access Point

Hom kawg ntawm kev tawm tsam (uas yuav zoo li tsis tseem ceeb), txawm li cas los xij, yog ib qho uas yuav luag txhua zaus ua haujlwm. Nws koom nrog tsim Access Point cuav (nrog lub npe zoo sib xws tab sis tsis zoo ib yam li qhov raug cai), yog li tsim kom muaj txuas ntawm tus neeg siv thiab tus router ntawm Wi-nkaus network.

Hais tias yog li ntawd nws zoo li coj txawv txawv thiab tsis tseem ceeb, es tsis txhob tib neeg yuav luag ib txwm poob rau nws thiab txuas mus rau qhov bogus Access Point tsim los ntawm tus neeg tawm tsam, yog li qhib lub qhov rooj ntawm nws lub cuab yeej.

Session ncuav qab zib hijacking

Lwm hom txiv neej nyob rau hauv nruab nrab tawm tsam tshwm sim thaum cov tub sab nyiag code snippets generated los ntawm koj tus browser mus txuas rau txawv websites. Hauv qhov no peb hais txog kev nyiag khoom qab zib.

Cov kab lus no, lossis cov ncuav qab zib sib tham, tuaj yeem muaj ntau txhiab cov ntaub ntawv tseem ceeb ntawm tus kheej: usernames, passwords, pre-filled forms, online activity, and even your physical address. Thaum muaj tag nrho cov ntaub ntawv no, tus neeg nyiag khoom tuaj yeem siv nws hauv ntau txoj hauv kev uas tsis muaj qhov kawg (tsis muaj qhov zoo), xws li kev dag koj hauv online, nkag mus rau cov ntaub ntawv nyiaj txiag, teeb tsa kev dag ntxias thiab tub sab nyiag los ntawm kev siv koj tus kheej thiab lwm yam.

Yog tias koj tau raug kev tawm tsam thiab xav tau rov ua haujlwm ib txwm, lossis yog tias koj tsuas xav pom kom meej thiab nkag siab zoo dua, lossis xav tiv thaiv: sau ntawv rau peb ntawm rda@hrcsrl.it. 

Tej zaum koj yuav txaus siab rau peb tshaj tawm ntawm Malware tawm tsam ->

Tus txiv neej-hauv-tus-nruab nrab ua haujlwm li cas?

Ib tug txiv neej nyob rau hauv nruab nrab tawm tsam muaj ob theem:

Theem 1: interception

Thawj qhov tseem ceeb rau tus txiv neej-hauv-tus-nruab nrab tus neeg tawm tsam yog cuam tshuam koj cov kev lag luam hauv Internet ua ntej nws mus txog qhov chaw. Muaj ob peb txoj hauv kev rau qhov no:

• IP Spoofing: Zoo li ib pawg tub sab siv daim ntawv tso cai cuav rau lub tsheb siv khiav tawm, nrog Internet Protocol (IP) chaw nyob spoofing hackers dag qhov tseeb ntawm cov ntaub ntawv lawv xa mus rau koj lub computer los ntawm kev zais nws raws li kev cai thiab ntseeg. 
• ARP Spoofing: Kuj hu ua ARP kab mob lossis kev ua phem ARP cov lus routing, MITM txoj kev tso cai rau cov neeg nyiag nkas xa cov lus tsis raug cai Qhov Chaw Nyob (ARP) lus
• Spoofing DNS: stands rau Domain Name System thiab yog ib txoj hauv kev rau hloov cov npe sau npe hauv Internet los ntawm qhov ntev thiab tsis paub tus lej IP chaw nyob rau qhov chaw nkag siab thiab nco tau yooj yim.

Kauj ruam 2: decryption

Tom qab cuam tshuam koj lub vev xaib kev khiav tsheb, hackers yuav tsum decrypt nws. Nov yog qee qhov feem ntau siv decryption txoj kev rau MITM tawm tsam:

• HTTPS spoofing
• BEASTSSL
• SSL hijacking
• SSL Sawb

Yog tias koj tau raug kev tawm tsam thiab xav tau rov ua haujlwm ib txwm, lossis yog tias koj tsuas xav pom kom meej thiab nkag siab zoo dua, lossis xav tiv thaiv: sau ntawv rau peb ntawm rda@hrcsrl.it. 

Tej zaum koj yuav txaus siab rau peb tshaj tawm ntawm Malware tawm tsam ->

Kev tiv thaiv tib neeg hauv nruab nrab

Thaum txiv neej nyob rau hauv nruab nrab kev tawm tsam muaj peev xwm txaus ntshai heev, koj tuaj yeem ua ntau yam los tiv thaiv lawv los ntawm kev txo qis kev pheej hmoo thiab khaws koj cov ntaub ntawv, nyiaj txiag thiab ... lub meej mom zoo.

Ib txwm siv VPN

Muab tso yooj yim, VPN yog ib qho program lossis app uas zais, zais, thiab npog txhua yam ntawm koj lub neej online, xws li email, sib tham, tshawb nrhiav, them nyiaj, thiab txawm tias koj qhov chaw nyob. VPNs pab koj tiv thaiv Tus txiv neej hauv nruab nrab kev tawm tsam thiab tiv thaiv ib qho Wi-Fi network los ntawm kev nkag mus rau tag nrho koj cov kev khiav hauv internet thiab tig mus rau hauv cov lus gibberish thiab siv tsis tau rau txhua tus neeg uas sim soj ntsuam koj.

Tau txais ib qho antivirus zoo

Koj kiag li yuav tsum tau txais ib qho zoo thiab txhim khu kev qha antivirus software
Yog tias koj cov peev nyiaj nruj, koj tuaj yeem nrhiav tau ntau yam dawb antivirus online

Kev soj ntsuam kev nyab xeeb

Nws yog cov txheej txheem tseem ceeb rau kev ntsuas koj lub tuam txhab qib kev ruaj ntseg tam sim no.
Ua li no nws yog ib qho tsim nyog yuav tsum koom nrog pawg Cyber ​​​​Team npaj kom txaus, muaj peev xwm ua tiav kev soj ntsuam ntawm lub xeev uas lub tuam txhab pom nws tus kheej nrog rau IT kev ruaj ntseg.
Kev tsom xam tuaj yeem ua tiav synchronously, los ntawm kev xam phaj ua los ntawm Cyber ​​​​Team lossis
kuj asynchronous, los ntawm kev sau daim ntawv nug hauv online.

Peb tuaj yeem pab koj, hu rau HRC srl cov kws tshaj lij los ntawm kev sau ntawv rau rda@hrcsrl.it.

SECURITY AWARENESS: paub tus yeeb ncuab

Ntau tshaj 90% ntawm hacker tawm tsam pib nrog cov neeg ua haujlwm ua haujlwm.
Kev paub yog thawj riam phom los tawm tsam kev pheej hmoo cyber.

Nov yog qhov peb tsim "Awareness", peb tuaj yeem pab koj, hu rau HRC srl cov kws tshaj lij los ntawm kev sau ntawv rau rda@hrcsrl.it.

MANAGED DETECTION & RESPONSE (MDR): kev tiv thaiv qhov kawg

Cov ntaub ntawv lag luam muaj txiaj ntsig zoo rau cybercriminals, uas yog vim li cas cov ntsiab lus kawg thiab cov servers raug tsom. Nws yog ib qho nyuaj rau kev daws teeb meem kev ruaj ntseg ib txwm los tawm tsam cov kev hem thawj tshwm sim. Cybercriminals hla kev tiv thaiv kab mob, ua kom zoo dua ntawm cov koom haum IT pab pawg tsis muaj peev xwm saib xyuas thiab tswj xyuas cov xwm txheej kev nyab xeeb ib puag ncig.

Nrog peb MDR peb tuaj yeem pab koj, hu rau HRC srl cov kws tshaj lij los ntawm kev sau ntawv rau rda@hrcsrl.it.

MDR yog ib qho kev txawj ntse uas saib xyuas kev sib txuas hauv network thiab ua kev soj ntsuam tus cwj pwm
operating system, txheeb xyuas cov kev ua ub ua no thiab tsis xav tau.
Cov ntaub ntawv no raug xa mus rau SOC (Security Operation Center), ib lub chaw kuaj xyuas los ntawm
Cov kws tshuaj ntsuam xyuas cybersecurity, muaj cov ntawv pov thawj tseem ceeb cybersecurity.
Nyob rau hauv qhov xwm txheej ntawm qhov tsis xws luag, SOC, nrog 24/7 tswj kev pabcuam, tuaj yeem cuam tshuam ntau theem ntawm qhov hnyav, los ntawm kev xa email ceeb toom rau cais tus neeg siv khoom los ntawm lub network.
Qhov no yuav pab thaiv cov kev hem thawj ntawm lub paj thiab zam kev puas tsuaj tsis tuaj yeem.

SECURITY WEB MONITORING: tsom xam ntawm DARK WEB

Lub vev xaib tsaus yog hais txog cov ntsiab lus ntawm World Wide Web hauv darknets uas tuaj yeem ncav cuag hauv Is Taws Nem los ntawm cov software tshwj xeeb, teeb tsa thiab nkag mus.
Nrog peb Kev Saib Xyuas Kev Ruaj Ntseg Hauv Web peb tuaj yeem tiv thaiv thiab muaj kev tawm tsam cyber, pib los ntawm kev txheeb xyuas lub tuam txhab sau npe (piv txwv li: ilwebcreativo.it ) thiab tus kheej e-mail chaw nyob.

Tiv tauj peb los ntawm kev sau ntawv rau rda@hrcsrl.it, peb tuaj yeem npaj txoj kev npaj kho mob cais tawm qhov kev hem thawj, tiv thaiv nws txoj kev sib kis, thiab defipeb ua qhov tsim nyog kho. Kev pabcuam yog muab 24/XNUMX los ntawm Ltalis

CYBERDRIVE: daim ntawv thov ruaj ntseg rau kev sib koom thiab kho cov ntaub ntawv

CyberDrive yog tus tswj hwm cov ntaub ntawv huab nrog cov qauv kev nyab xeeb siab ua tsaug rau kev ywj pheej ntawm txhua cov ntaub ntawv. Ua kom muaj kev ruaj ntseg ntawm cov ntaub ntawv koom nrog thaum ua haujlwm hauv huab thiab sib qhia thiab kho cov ntaub ntawv nrog lwm tus neeg siv. Yog tias qhov kev twb kev txuas ploj lawm, tsis muaj cov ntaub ntawv khaws cia ntawm tus neeg siv lub PC. CyberDrive tiv thaiv cov ntaub ntawv los ntawm kev ploj vim yog kev puas tsuaj los yog raug nyiag los ntawm lub cev lossis digital.

"Lub CUBE": lub revolutionary daws

Qhov tsawg tshaj plaws thiab muaj zog tshaj plaws nyob rau hauv-ib-lub thawv datacenter muab kev suav lub zog thiab kev tiv thaiv los ntawm kev puas tsuaj rau lub cev thiab cov laj thawj. Tsim los rau kev tswj cov ntaub ntawv nyob rau hauv ntug thiab robo ib puag ncig, khw muag khoom ib puag ncig, chaw ua haujlwm tshaj lij, chaw ua haujlwm nyob deb thiab cov lag luam me uas qhov chaw, nqi thiab kev siv hluav taws xob yog qhov tseem ceeb. Nws tsis xav tau cov chaw zov me nyuam thiab cov khoom khib nyiab. Nws tuaj yeem muab tso rau hauv txhua yam ntawm ib puag ncig ua tsaug rau qhov cuam tshuam zoo nkauj hauv kev sib raug zoo nrog cov chaw ua haujlwm. "Lub Cube" muab kev lag luam software technology ntawm kev pabcuam ntawm cov lag luam me thiab nruab nrab.

Tiv tauj peb los ntawm kev sau ntawv rau rda@hrcsrl.it.

Tej zaum koj yuav txaus siab rau peb Tus Txiv Neej Hauv Nruab Nrab

Ercole Palmeri: Innovation addicted

[ultimate_post_list id=”12982″]