Ukuphazamisa amaphasiwedi, noma yimaphi amaphasiwedi abangase abe nawo - kusuka e-mail, ebhange lase-intanethi, kwi-Wi-Fi noma ku-akhawunti ye-Vkontakte ne-Odnoklassniki, usanda kuba umcimbi owenzeka njalo. Lokhu kubangelwa ukuthi abasebenzisi abahambisani nemithetho yokuphepha elula lapho bedala, begcina futhi basebenzisa amaphasiwedi. Kodwa akusiyo kuphela isizathu sokuthi amaphasiwedi angawa ngezandla ezingalungile.
Lesi sihloko sinikeza ulwazi oluningiliziwe ukuthi yiziphi izindlela ezingasetshenziswa ukuphazamisa amaphasiwedi womsebenzisi nokuthi kungani usengozini ekuhlaselweni okunjalo. Futhi ekugcineni uzothola uhlu lwezinsizakalo ze-intanethi ezizokwazisa uma iphasiwedi yakho isivele isonakele. Kuzobe sekukhona (kakade) isihloko sesibili esihlokweni, kodwa ngincoma ukuthi ngiyifunde kusukela ekubuyekezweni kwamanje, bese nje uqhubekele kokulandelayo.
Ukuvuselela: indaba elandelayo ilungile - Mayelana nokuphepha kwephasiwedi, okuchaza indlela yokuvikela ngokuzenzakalela ama-akhawunti akho namaphasiwedi kubo.
Yiziphi izindlela ezisetshenziselwa ukuqeda amaphasiwedi
Ukuthungatha amaphasiwedi akusetshenziselwa ubuchwepheshe obuhlukahlukene. Cishe zonke ziyaziwa futhi cishe noma yikuphi ukwephulwa kolwazi oluyimfihlo kutholakala ngokusebenzisa izindlela ezithile noma ukuhlanganiswa kwazo.
Iphishing
Indlela evame kakhulu ukuthi amaphasiwedi anamuhla "asusa" ezinsizakalo ezithandwayo ze-imeyili kanye nokuxhumana nomphakathi ukuphinga, futhi le ndlela isebenza ngamaphesenti amakhulu kakhulu wabasebenzisi.
Okuyinhloko yendlela ukuthi uthola eziteshini ezijwayele (okufanayo i-Gmail, i-VC noma i-Odnoklassniki, isibonelo), futhi ngenxa yesinye sezizathu ucelwa ukuba ufake igama lakho lomsebenzisi nephasiwedi (ukungena ngemvume, uqinisekise okuthile, ngokushintsha kwakhe, njll). Ngokushesha ngemva kokungena iphasiwedi kuvela kubangaphakathi.
Kwenzeka kanjani: ungathola incwadi, okusolakala ukuthi yisevisi yokusekela, okusho ukuthi udinga ukungena ngemvume ku-akhawunti yakho futhi kunikezwe isixhumanisi, uma ushintshela kule sayithi, okuyinto ekopisha ngqo eyayiqala. Kungenzeka ukuthi emva kokufakwa okungahleliwe kwesofthiwe engadingeki kukhompyutha, izilungiselelo zesistimu zishintsha ngendlela yokuthi uma ufaka ikheli lesayithi oyidingayo kwibha yekheli lesiphequluli, empeleni ufika kwisayithi yokuphangisa eyenziwe ngendlela efanayo.
Njengoba sengibonile, abasebenzisi abaningi kakhulu bawela lokhu, futhi ngokuvamile lokhu kungenxa yokunganaki:
- Uma uthola incwadi ukuthi ifomu eyodwa noma enye ikunika ukuthi ungene ngemvume ku-akhawunti yakho kusayithi elithile, unake ukuthi ngabe uthunyelwe yini kukheli le-imeyili kuleli sayithi: amakheli afanayo avame ukusetshenziswa. Isibonelo, kunokuba [email protected], kungase kube [email protected] noma into efanayo. Noma kunjalo, ikheli elilungile aliqinisekisi ngaso sonke isikhathi ukuthi konke kuhlelekile.
- Ngaphambi kokufaka iphasiwedi yakho noma kuphi, bheka ngokucophelela kubha yekheli yesiphequluli sakho. Okokuqala, kufanele kuboniswe ncamashi isayithi ofuna ukuya kuyo. Nokho, esimweni se-malware kwikhompyutha, lokhu akwanele. Kumele futhi uqaphele ukuba khona kokubethela kokuxhumeka, okungaqondiswa ngokusebenzisa i-https protocol esikhundleni se-http nesithombe "sokukhiya" kubha yekheli, ngokuchofoza ukuthi ungaqiniseka kanjani ukuthi ukhona kule sayithi. Cishe zonke izinsiza ezinkulu ezidinga ukungena ngemvume ekubetheni kokusebenzisa i-akhawunti yakho.
Ngendlela, ngizophawula ukuthi kokubili ukuhlaselwa kobugebengu kanye nezindlela zokusesha iphasiwedi (kuchazwe ngezansi) akusho ukuthi umsebenzi oyinhloko womuntu oyedwa (okungukuthi, akudingeki ukuba ufake ngesandla amaphasiwedi amamiliyoni ngesandla) - konke lokhu kwenziwa ngezinhlelo ezikhethekile, ngokushesha nangemiqulu emikhulu. , bese ubika ngenqubekela phambili yomhlaseli. Ngaphezu kwalokho, lezi zinhlelo ngeke zisebenze kumakhompiyutha we-hacker, kodwa ngokuyimfihlo ezenzweni zakho nakwezinye izinkulungwane zabanye abasebenzisi, okwandisa kakhulu ukusebenza kwe-hacks.
Ukukhethwa kwephasiwedi
Ukuhlaselwa kokusebenzisa iphasiwedi (i-Brute Force, amandla amakhulu ngesiRashiya) nawo avamile. Uma eminyakeni embalwa eyedlule, iningi lalezi zihlaselo ziyiqiniso ngempela ukusesha kuzo zonke izinhlanganisela zesethi ethile yezinhlamvu zokubhala amaphasiwedi ngobude obuthile, khona-ke konke okwamanje kulula kakhulu (kubaduni).
Ukuhlaziywa kwezigidi zamaphasiwedi aphunyukile eminyakeni yamuva kubonisa ukuthi ngaphansi kwengxenye yabo eyingqayizivele, kuyilapho kulawa masayithi lapho abasebenzisi abaningi abangenalwazi abahlala khona, iphesenti liyingcosana.
Kusho ukuthini lokhu? Ngokuvamile, i-hacker ayidingi ukuhamba ngezigidi ezingenakubalwa zezinhlanganisela: ezinamaphasiwedi angu-10-15 wezigidi (inombolo eseduze, kodwa eduze kweqiniso) futhi esikhundleni salokhu kuphela ukuhlanganisa, angaphazamisa ingxenye engama-akhawunti kunoma isiphi isayithi.
Uma kwenzeka ukuhlaselwa okuhlosiwe ku-akhawunti ethize, ngaphezu kwesisekelo, amandla alula alula angasetshenziswa, futhi isofthiwe yesimanje ikuvumela ukuba wenze lokhu ngokushesha: iphasiwedi yezinhlamvu ezingu-8 ingahle ibhalwe ezinsukwini zezinsuku (futhi uma lezi zinhlamvu zingumhla noma inhlanganisela kanye nezinsuku, okungavamile - ngamaminithi).
Sicela uqaphele: uma usebenzisa iphasiwedi efanayo yamasayithi namasevisi ahlukene, ngokushesha nje lapho iphasiwedi yakho nekheli le-imeyili elihambelana nalo lihlehlisiwe kunoma yimuphi wabo, ngosizo lwesofthiwe ekhethekile lokhu kuhlanganiswa okufanayo kokungena ngemvume nephasiwedi kuzolingwa kwamakhulu amanye amasayithi. Isibonelo, ngokushesha emva kokuvuza kwamaphasiwedi weGmail noYandex wezigidi eziningana ngasekupheleni konyaka odlule, ama-akhawunti wokuqeda ama-akhawunti avela ku-Origin, Steam, Battle.net kanye ne-Uplay (ngicabanga ukuthi abaningi abaningi, ngokuqondene nezinsizakalo zokudlala ezithintekayo engizixhumana nabo ngokuphindaphindiwe).
Ukuphazamisa amasayithi nokuthola ama-hashes ephasiwedi
Izingosi ezinzima kakhulu azigcini iphasiwedi yakho ngendlela owazi ngayo. I-hash kuphela igcinwe ku-database - umphumela wokusebenzisa umsebenzi ongenakuguqulwa (okungukuthi, awukwazi ukuthola iphasiwedi yakho futhi kule mphumela) uye kwiphasiwedi. Uma ungena kwisayithi, i-hash iphinda ibalwa futhi, uma ihambisana nalokho okugcinwe ku-database, ufaka iphasiwedi ngendlela efanele.
Njengoba kulula ukuqagela, yiyona imishayo egciniwe, hhayi amaphasiwedi ngokwabo, ngenxa yezizathu zokuphepha - ukuze uma umqaphi efika ku-database futhi awuthole, akakwazanga ukusebenzisa ulwazi futhi afunde amaphasiwedi.
Nokho, ngokuvamile, angakwenza lokhu:
- Ukubala i-hashi, kusetshenziselwa izinhlelo ezithile zokusebenza, eziningi zazo ezaziwa futhi ezivamile (okungukuthi, noma ubani ongazisebenzisa).
- Ukuba nolwazi olunezigidi zamaphasiwedi (kusuka emgqatsheni wamandla omzimba), umhlaseli uphinde abe nokufinyelela kwamahloni alawa maphasiwedi abalwa ngawo wonke ama-algorithms atholakalayo.
- Ngokuqhathanisa ukwaziswa okuvela ku-database okumele kutholakale futhi kusetshenziswe iphasiwedi kusuka ku-database yakho, ungathola ukuthi iyiphi i-algorithm esetshenzisiwe futhi uthola amaphasiwedi wangempela wenxenye yamarekhodi ku-database ngokuqhathaniswa okulula (kubo bonke abangewona abahlukile). Futhi amathuluzi amandla amakhulu angakusiza ufunde okunye okuhlukile, kodwa amaphasiwedi amfushane.
Njengoba ubona, izimangalo zokuthengisa ezinsizakalo ezihlukahlukene ezingagcini amaphasiwedi wakho kusayithi lakho akukuvikeli ekuphumeni kwayo.
I-Spyware (i-SpyWare)
I-SpyWare noma i-spyware - inqwaba yesofthiwe enonya ehlanganisiwe ngokuzenzakalelayo kwikhompyutha (i-spyware ingabuye ifakwe njengengxenye yesofthiwe edingekayo) futhi iqoqa ulwazi lomsebenzisi.
Phakathi kwezinye izinto, izinhlobo ezithile ze-SpyWare, isibonelo, ama-keyloggers (izinhlelo ezilandelela izihluthulelo ozicindezelayo) noma abahlaziyi bezimoto ezifihliwe, zingasetshenziswa (futhi ziyasetshenziswa) ukuthola amaphasiwedi womsebenzisi.
Imibuzo yokubuyiselwa kwezenhlalakahle kanye ne-password
Njengoba i-Wikipedia isitshela, ubunjiniyela bezenhlalakahle yindlela yokufinyelela kolwazi ngokusekelwe ekuziphatheni kwengqondo yomuntu (lokhu kuhlanganisa ukuphangwa okukhulunywe ngenhla). E-intanethi, ungathola izibonelo eziningi zokusebenzisa ubunjiniyela bezenhlalakahle (Ngincoma ukusesha nokufunda - lokhu kuyathandeka), okunye okuhlabayo ngobuhle babo. Ngokuvamile, le ndlela ibhekene neqiniso lokuthi cishe noma yiluphi ulwazi oludingekayo ukuthola ulwazi oluyimfihlo lungatholakala ngokusebenzisa ubuthakathaka babantu.
Futhi ngizokunikeza isibonelo esilula nje nesinhle kakhulu somndeni esihlobene namaphasiwedi. Njengoba uyazi, kumasayithi amaningi wokuthola iphasiwedi, akwanele ukufaka impendulo kumbuzo wokulawula: yiliphi isikole oya khona, igama lomama kamama, igama lesilwane ... Ngisho noma ungakazithumeli lolu lwazi ekufinyeleleni okuvulekile kumanethiwekhi omphakathi, ucabanga ukuthi kunzima kungakhathaliseki ukuthi usebenzisa amanethiwekhi athile omphakathi, ukujwayele wena, noma owaziwa ngokukhethekile, ongatholi ulwazi oluthile?
Indlela yokwazi ukuthi iphasiwedi yakho ikhishwe
Futhi ekupheleni kwalesi sihloko, izinsizakalo eziningana ezikuvumela ukuba wazi ukuthi iphasiwedi yakho yaqhekeka, ngokuhlola ikheli lakho le-imeyili noma igama lomsebenzisi elinama-password yolwazi olutholakale ngabaduni. (Ngimangele ukuthi phakathi kwabo kukhona amaphesenti amakhulu kakhulu yolwazi oluvela emasevisi aseRussia).
- //haveibeenpwned.com/
- //breachalarm.com/
- //pwnedlist.com/query
Uthole i-akhawunti yakho kuhlu lwabaduni abaziwayo? Kunengqondo ukushintsha iphasiwedi, kodwa ngokuningiliziwe ngemikhuba ephephile maqondana namaphasiwedi we-akhawunti, ngizobhala ezinsukwini ezizayo.