Pezani Chiwonetsero
Lowani muakaunti

Kodi Mwadziwonetsera Nokha Posachedwapa?

by Sep 14, 2023BI/Analytics0 ndemanga

 

Tikukamba za chitetezo mumtambo

Kuwonekera Kwambiri

Tiyeni tiyike motere, mukuda nkhawa ndi chiyani povumbulutsa? Kodi zinthu zanu zamtengo wapatali ndi ziti? Nambala Yanu ya Chitetezo cha Anthu? Zambiri za akaunti yanu yaku banki? Zolemba zachinsinsi, kapena zithunzi? Mawu anu a mbewu ya crypto? Ngati mumayang'anira kampani, kapena muli ndi udindo wosunga deta, mutha kuda nkhawa ndi mitundu yomweyi yomwe ikusokonezedwa, koma pa ab.roadndi scale. Mwapatsidwa chitetezo ndi makasitomala anu ndi makasitomala anu.

Monga ogula, timaona chitetezo cha deta yathu mopepuka. Nthawi zambiri masiku ano deta imasungidwa mumtambo. Ogulitsa angapo amapereka ntchito zomwe zimalola makasitomala kusunga zosunga zobwezeretsera kuchokera pamakompyuta awo am'deralo kupita kumtambo. Ganizirani za izo ngati hard drive pafupifupi kumwamba. Izi zimalengezedwa ngati njira yotetezeka komanso yosavuta yotetezera deta yanu. Zosavuta, inde. Mutha kupezanso fayilo yomwe mwayichotsa mwangozi. Mutha kubwezeretsa hard drive yonse yomwe deta idawonongeka.

Koma kodi ndi zotetezeka? Mumapatsidwa loko ndi kiyi. Chinsinsi chake ndi, nthawi zambiri, dzina lolowera ndi mawu achinsinsi. Imabisidwa ndipo imadziwika ndi inu nokha. Ichi ndichifukwa chake akatswiri achitetezo amakulimbikitsani kuti mawu anu achinsinsi akhale otetezeka. Ngati wina apeza password yanu, ali ndi kiyi yanyumba yanu yeniyeni.

Inu mukudziwa zonsezi. Mawu anu achinsinsi pamtambo wosunga zobwezeretsera amakhala ndi zilembo 16, ali ndi zilembo zazikulu ndi zazing'ono, manambala ndi zilembo zingapo zapadera. Mumasintha miyezi isanu ndi umodzi iliyonse chifukwa mukudziwa kuti zimapangitsa kuti zikhale zovuta kwa wowononga. Ndizosiyana ndi mawu achinsinsi anu ena - simugwiritsa ntchito mawu achinsinsi pamasamba angapo. Kodi chingachitike ndi chiyani?

Makampani ena amapereka zomwe adazitcha "Personal Cloud." Kumadzulo Digital ndi imodzi mwamakampani omwe amapereka njira yosavuta yosungira deta yanu kumalo anu amtambo mumtambo. Ndi malo osungira pa intaneti omwe amapezeka pa intaneti. Imalumikiza mu rauta yanu ya Wi-Fi kuti mutha kuyipeza kulikonse mkati mwa netiweki yanu. Mosavuta, chifukwa imalumikizidwanso ndi intaneti, mutha kupeza zambiri zanu kuchokera kulikonse pa intaneti. Ndi kuphweka kumabwera ndi chiopsezo.

Mkhalidwe Wonyengerera

Kumayambiriro kwa chaka chino, obera adathyola ku Western Digital's machitidwe ndipo adatha kutsitsa pafupifupi 10 Tb ya data. Otumiza akudawo adasunga zidziwitso kuti awombole ndikuyesa kukambirana zamalonda kumpoto kwa US $ 10,000,000 kuti zibwezeretsedwe bwino. Deta ili ngati mafuta. Kapena mwina golide ndi fanizo labwinoko. M'modzi mwa obera adalankhula kuti asatchule dzina. Ayi! TechCrunch adamufunsa ali mkati mwa bizinesi iyi. Chosangalatsa ndichakuti deta yomwe idasokonekera idaphatikizapo Western Digitalsatifiketi yosayina code. Izi ndizofanana ndiukadaulo waukadaulo wa retina scan. Satifiketiyo ikufuna kuzindikiritsa mwiniwake kapena wonyamula. Ndi sikani ya retina iyi, palibe mawu achinsinsi omwe amafunikira kuti mupeze data "yotetezedwa". Mwanjira ina, ndi satifiketi iyi, bizinesi yachipewa chakuda imatha kuyenda pakhomo lakumaso kwa digital nyumba yachifumu.

Western Digital adakana kuyankhapo poyankha zonena za hacker kuti akadali mu network ya WD. Wowononga yemwe sanatchulidwe dzina adakhumudwa kuti oimira ku Western Digital sanayankhe mafoni ake. Mwalamulo, mu a cholengeza munkhani, Kumadzulo Digital adalengeza kuti, "Kutengera ndi kafukufukuyu mpaka pano, Kampani ikukhulupirira kuti gulu losavomerezeka lidapeza zina kuchokera ku makina ake ndipo likuyesetsa kumvetsetsa momwe detayo idakhalira." Choncho, Western Digital ndi amayi, koma wowonongayo akulankhula. Ponena za momwe adachitira, wowonongayo akufotokoza momwe adagwiritsira ntchito zofooka zodziwika bwino ndipo adatha kupeza deta mumtambo monga woyang'anira dziko lonse lapansi.

Woyang'anira padziko lonse lapansi, mwachilengedwe chake, ali ndi mwayi wopeza chilichonse. Safuna mawu achinsinsi anu. Ali ndi makiyi apamwamba.

Western Digital Sali Yekha

A kafukufuku chaka chatha adapeza kuti 83% yamakampani omwe adafunsidwa anali nawo oposa oposa kuphwanya kwa data, 45% yomwe inali yochokera pamtambo. The pafupifupi mtengo wa kuphwanya deta ku United States unali US $ 9.44 miliyoni. Mitengo idagawika m'magulu anayi amtengo - bizinesi yotayika, kuzindikira ndi kukwera, zidziwitso ndi kuyankha kwaposachedwa. (Sindikutsimikiza kuti dipo la data lili m'gulu lanji. Sizikudziwika ngati aliyense wa omwe adafunsidwawo adalipira zomwe akufuna.) Nthawi zambiri zimatengera bungwe kuti lizindikire ndikuyankha kuphwanya kwa data ndi pafupifupi miyezi 9. Ndiye sizodabwitsa kuti miyezi ingapo pambuyo pa Western Digital poyamba adavomereza kuphwanya deta, akufufuzabe.

Ndizovuta kunena ndendende kuti ndi makampani angati omwe adaphwanya ma data. Ndikudziwa kampani imodzi yayikulu yosungidwa mwachinsinsi yomwe idawukiridwa ndi ransomware. Eni ake anakana kukambirana ndipo sanalipira. Izi zikutanthauza, m'malo mwake, maimelo otayika ndi mafayilo a data. Iwo anasankha kumanganso chirichonse kuchokera ku zosunga zobwezeretsera osakhudzidwa ndikubwezeretsanso mapulogalamu. Panali nthawi yochepa kwambiri komanso kutayika kwa ntchito. Chochitikachi sichinakhalepo pa TV. Kampaniyo inali ndi mwayi chifukwa 66% makampani ang'onoang'ono mpaka apakatikati omwe amawukiridwa ndi ransomware amatha kusiya bizinesi mkati mwa miyezi 6.

  • 30,000 mawebusayiti ndi anadula tsiku ndi tsiku
  • Mafayilo 4 miliyoni ndi kuba tsiku lililonse
  • 22 biliyoni mbiri anali kubedwa mu 2021

Ngati mudachitapo bizinesi ndi, kapena kugwiritsa ntchito ntchito za Capital One, Marriott, Equifax, Target kapena Uber, ndizotheka kuti mawu anu achinsinsi adasokonezedwa. Iliyonse mwamakampani akuluwa idasokonekera kwambiri pakuphwanya deta.

 

  • Capital One: Wobera adapeza mwayi kwa makasitomala 100 miliyoni ndi omwe adalemba ntchito pogwiritsa ntchito chiwopsezo chachitetezo chamakampani.
  • Marriott: Kuphwanya kwa data kudavumbulutsa zambiri za makasitomala 500 miliyoni (kuphwanya uku sikunadziwike kwa zaka 4).
  • Equifax: Zambiri zaumwini pamtambo pa makasitomala 147 miliyoni zidawululidwa.
  • Cholinga: Zigawenga zapaintaneti zapeza manambala 40 miliyoni a kirediti kadi.
  • Uber: Ma hackers adasokoneza laputopu ya wopanga ndipo adapeza ogwiritsa ntchito 57 miliyoni ndi madalaivala 600,000.
  • LastPass[1]: Obera adaba zidziwitso zamakasitomala 33 miliyoni pakuphwanya kusungidwa kwamtambo pakampani yoyang'anira mawu achinsinsi. Wowukirayo adapeza mwayi wosungira mitambo ya Lastpass pogwiritsa ntchito "kiyi yosungiramo mtambo ndi makiyi osungiramo zida ziwiri" zobedwa m'malo ake opanga.

Mutha kuyang'ana kuti muwone ngati mwawululidwa pakuphwanya deta patsamba lino: kodi ndasokonekera? Lowetsani imelo adilesi yanu ndipo ikuwonetsani kuchuluka kwa ma data omwe adilesi ya imelo yapezeka. Mwachitsanzo, ndidalemba imodzi mwama adilesi anga a imelo ndipo ndidapeza kuti idakhala gawo la kuphwanya kwa data 25, kuphatikiza Evite. , Dropbox, Adobe, LinkedIn ndi Twitter.

Kuthamangitsa Osafuna Osafuna

Sipangakhale kuvomereza kwa anthu ndi Western Digital ndendende zomwe zinachitika. Chochitikacho chikuwonetsa zinthu ziwiri: zomwe zili mumtambo zimakhala zotetezeka monga momwe osungira ndipo osunga makiyi ayenera kusamala kwambiri. Kufotokozera m'mawu a Peter Parker Principle, kupeza mizu kumabwera ndi udindo waukulu.

Kunena zowona, wogwiritsa ntchito mizu ndi woyang'anira padziko lonse lapansi sali ofanana ndendende. Onse ali ndi mphamvu zambiri koma ayenera kukhala ma akaunti osiyana. Wogwiritsa ntchito mizu ndiye mwini wake ndipo ali ndi mwayi wopeza akaunti yamtambo yamakampani pamlingo wotsika kwambiri. Chifukwa chake, akauntiyi imatha kufufuta zonse, ma VM, zidziwitso zamakasitomala - chilichonse chomwe bizinesi yapeza mumtambo. Mu AWS, alipo okha Ntchito 10, kuphatikizapo kukhazikitsa ndi kutseka akaunti yanu ya AWS, zomwe zimafunadi kupeza mizu.

Maakaunti a Administrator ayenera kupangidwa kuti azigwira ntchito zoyang'anira (duh). Nthawi zambiri pamakhala maakaunti angapo a Administrator omwe nthawi zambiri amakhala otengera munthu, mosiyana ndi akaunti imodzi. Chifukwa maakaunti a Administrator amalumikizidwa ndi munthu, mutha kuwunika mosavuta omwe adasintha chilengedwe.

Mwayi Wochepa Wachitetezo Chapamwamba

Kafukufuku wophwanya deta adasanthula zotsatira za zinthu 28 pakukula kwa kuphwanya kwa data. Kugwiritsa ntchito chitetezo cha AI, njira ya DevSecOps, kuphunzitsa antchito, kudziwika ndi kasamalidwe ka mwayi, MFA, kusanthula kwachitetezo zonse zinali ndi zotsatira zabwino pakuchepetsa ndalama za dollar zomwe zidatayika pazochitika. Pomwe, kulephera kutsatira malamulo, zovuta zamakina achitetezo, kuchepa kwa luso lachitetezo, komanso kusamuka kwamtambo zinali zinthu zomwe zidapangitsa kuti chiwonjezeko chokwera cha mtengo wapakati wa kuphwanya kwa data.

Pamene mukusamukira kumtambo, muyenera kukhala tcheru kuposa kale poteteza deta yanu. Nazi njira zina zowonjezera zochepetsera chiopsezo chanu ndikuyendetsa malo otetezeka kuchokera ku a chitetezo kaonedwe:

1. Kutsimikizika kwa Muli-factor: khazikitsani MFA ya mizu ndi maakaunti onse a Administrator. Ngakhale kuli bwino, gwiritsani ntchito chipangizo cha MFA chakuthupi. Wobera yemwe angakhale wobera sangafunike dzina la akaunti ndi mawu achinsinsi, komanso MFA yakuthupi yomwe imapanga nambala yolumikizidwa.

2. Mphamvu mu manambala ang'onoang'ono: Chepetsani amene ali ndi mwayi wofikira muzu. Akatswiri ena achitetezo amati osapitilira 3 ogwiritsa ntchito. Sinthani mwayi wogwiritsa ntchito mizu mosamala. Ngati mukuchita kasamalidwe ka ID komanso osakwera kwina kulikonse, chitani apa. Ngati m'modzi mwa anthu okhulupirira asiya bungwe, sinthani mawu achinsinsi. Bwezerani chipangizo cha MFA.

3. Mwayi Wofikira Akaunti: Mukamapereka maakaunti atsopano kapena maudindo, onetsetsani kuti apatsidwa mwayi wocheperako mwachisawawa. Yambani ndi mfundo zochepetsera mwayi wofikira ndipo kenaka perekani zilolezo zina ngati pakufunika. Mfundo yopereka chitetezo chocheperako kuti mukwaniritse ntchito ndi chitsanzo chomwe chidzadutsa miyezo yotsata chitetezo cha SOC2. Lingaliro ndiloti aliyense wogwiritsa ntchito kapena ntchito ayenera kukhala ndi chitetezo chochepa chofunikira kuti agwire ntchito yofunikira. Kuchuluka kwa mwayi umene ukuphwanyidwa, m'pamenenso pali chiopsezo chachikulu. Mosiyana ndi zimenezi, kutsika kwa mwayi wovumbulutsidwa, m'pamenenso ngoziyo imachepa.

4. Mwayi Wowerengera: Nthawi zonse fufuzani ndikuwunikanso mwayi woperekedwa kwa ogwiritsa ntchito, maudindo, ndi maakaunti mkati mwa mtambo wanu. Izi zimatsimikizira kuti anthu ali ndi chilolezo chokhacho chofunikira kuti agwire ntchito zomwe apatsidwa.

5. Identity Management ndi Mwayi Wanthawi Yake: Dziwani ndikuchotsa mwayi uliwonse wopitilira muyeso kapena wosagwiritsidwa ntchito kuti muchepetse chiopsezo chopezeka mwachisawawa. Perekani maufulu ofikira kwa ogwiritsa ntchito pokhapokha atawafuna pa ntchito inayake kapena kwakanthawi kochepa. Izi zimachepetsa kuukira ndikuchepetsa mwayi wokhala ndi ziwopsezo zachitetezo. https://www.cnbc.com/2022/10/20/former-hacker-kevin-mitnick-tips-to-protect-your-personal-info-online.html

6. Zizindikiro zophatikizidwa: Letsani kukodka kolimba kwa kutsimikizika kosabisika (dzina lolowera, mawu achinsinsi, makiyi ofikira) muzolemba, ntchito, kapena ma code ena. M'malo mwake yang'anani mu a secret manager zomwe mungagwiritse ntchito kupeza zidziwitso mwadongosolo.

7. Kukonzekera kwa Infrastructure-as-Code (IaC).: Tsatirani njira zabwino zachitetezo pokonza maziko anu amtambo pogwiritsa ntchito zida za IaC monga AWS CloudFormation kapena Terraform. Pewani kupatsa anthu mwayi wopezeka mwachisawawa ndikuletsa mwayi wopeza zinthu kumamanetiweki odalirika, ogwiritsa ntchito, kapena ma adilesi a IP okha. Gwiritsani ntchito zilolezo zabwino kwambiri ndi njira zowongolera zofikira kuti mutsirize mfundo yamwayi wocheperako.

8. Kudula Zochita: Yambitsani kudula mitengo yonse ndikuwunika zochita ndi zochitika mkati mwa mtambo wanu. Jambulani ndi kusanthula zipika za zochitika zosazolowereka kapena zomwe zingakhale zoyipa. Khazikitsani mayankho amphamvu a kasamalidwe ka chipika ndi chidziwitso chachitetezo ndi kasamalidwe ka zochitika (SIEM) kuti muzindikire ndikuyankha zochitika zachitetezo mwachangu.

9. Kuwunika Kwachiwopsezo Kwanthawi Zonse: Chitani zowunika pafupipafupi zachitetezo ndikuyesa kulowa kuti muzindikire zofooka zachitetezo mumtambo wanu. Lumikizani ndi kukonza zovuta zilizonse zomwe zadziwika mwachangu. Tsatirani zosintha zachitetezo ndi zigamba zomwe zatulutsidwa ndi omwe akukupatsani mtambo ndikuwonetsetsa kuti zikugwiritsidwa ntchito mwachangu kuti muteteze ku zoopsa zomwe zimadziwika.

10. Maphunziro ndi Maphunziro: Limbikitsani chikhalidwe cha chidziwitso cha chitetezo ndikupereka maphunziro okhazikika kwa ogwira ntchito ponena za kufunikira kwa mfundo yochepetsera mwayi. Aphunzitseni za zoopsa zomwe zingachitike chifukwa cha mwayi wochulukirachulukira komanso njira zabwino zomwe mungatsatire mukapeza ndikuwongolera zinthu zomwe zili mumtambo.

11. Zigamba ndi Zosintha: Chepetsani kusatetezeka mwakusintha pafupipafupi mapulogalamu onse a seva. Sungani maziko anu amtambo ndi mapulogalamu omwe akugwirizana nawo kuti muteteze ku zovuta zomwe zimadziwika. Othandizira pamtambo nthawi zambiri amatulutsa zigamba zachitetezo ndi zosintha, chifukwa chake kukhalabe ndi malingaliro awo ndikofunikira.

Trust

Zimatengera kudalira - kupatsa okhawo omwe ali mgulu lanu chidaliro kuti akwaniritse ntchito zomwe akuyenera kuchita kuti ntchito yawo ichitike. Akatswiri achitetezo amalangiza Zero Kudalira. Njira yachitetezo ya Zero Trust idakhazikitsidwa pa mfundo zitatu zofunika:

  • Tsimikizirani mwatsatanetsatane - gwiritsani ntchito mfundo zonse zomwe zilipo kuti mutsimikizire kuti wogwiritsa ntchito ndi ndani komanso mwayi wake.
  • Gwiritsani ntchito mwayi wopanda mwayi - munthawi yake komanso chitetezo chokwanira.
  • Tangoganizani kuphwanya - sungani chilichonse, gwiritsani ntchito ma analytics okhazikika ndikuyankha mwadzidzidzi.

Monga ogula ntchito zamtambo ndi mitambo, zimatsikanso kuti zikhulupirire. Muyenera kudzifunsa kuti, "kodi ndimakhulupirira kuti wogulitsa angasunge deta yanga yamtengo wapatali mumtambo?" Khulupirirani, pankhaniyi, zikutanthauza kuti mumadalira kampaniyo, kapena ina yonga iyo, kuti izisamalira chitetezo monga tafotokozera pamwambapa. Kapenanso, ngati muyankha molakwika, kodi ndinu okonzeka kuchita zamtundu womwewo wa kasamalidwe ka chitetezo kunyumba kwanu. Kodi mumadzidalira?

Monga kampani yomwe ikupereka ntchito mumtambo, makasitomala ayika chidaliro chawo mwa inu kuti ateteze deta yawo mumtambo wanu wamtambo. Ndi njira yopitilira. Dziwani zambiri za ziwopsezo zomwe zikubwera, sinthani chitetezo chanu moyenera, ndikuthandizana ndi akatswiri odziwa zambiri kapena alangizi achitetezo kuti mutsimikizire chitetezo chokwanira pabizinesi yanu pamtambo womwe umasintha nthawi zonse.

 

  1. https://www.bleepingcomputer.com/news/security/lastpass-hackers-stole-customer-vault-data-in-cloud-storage-breach/

 

BI/AnalyticsOpanda Gulu
Unclutter Kuzindikira Kwanu: Chitsogozo cha Analytics Spring Cleaning

Unclutter Kuzindikira Kwanu: Chitsogozo cha Analytics Spring Cleaning

Unclutter Your Insights Chitsogozo cha Analytics Spring Cleaning Chaka chatsopano chimayamba ndi phokoso; malipoti omaliza a chaka amapangidwa ndikuwunikidwa, ndiyeno aliyense amakhazikika mundondomeko yokhazikika yantchito. Pamene masiku akutalika ndipo mitengo ndi maluwa zikuphuka,...

Werengani zambiri

| Apr 10, 2024 | 0

kutsegula More