Tekereza gufungura imeri isa nkibisanzwe, kandi umwanya ukurikira, konte yawe ya banki irimo ubusa. Cyangwa urimo gushakisha urubuga mugihe ecran yawe ifunze kandi ubutumwa bwincungu bugaragaye. Aya mashusho ntabwo ari firime yimpimbano, ahubwo ni ingero zubuzima bwa cyber. Muri iki gihe cya interineti yibintu byose, interineti ntabwo ari ikiraro cyoroshye gusa, ahubwo ni ahantu ho guhiga ba hackers. Kuva kumabanga bwite kugeza kumabanga yibigo kugeza kumutekano wigihugu, Ibitero bya cyber birahari hose, kandi imbaraga zabo zuburiganya no gusenya zirakonje. Ni ibihe bitero bidutera ubwoba? Bakora bate, kandi ni iki kigomba gukorwa kuri byo? Reka turebe umunani mubitero byibasiye cyane, bikujyana mwisi yaba imenyerewe kandi itamenyerewe.
Malware
1. Malware ni iki? Malware ni porogaramu mbi yagenewe kwangiza, kwiba, cyangwa kugenzura sisitemu yumukoresha. Kwinjira mubikoresho byabakoresha binyuze munzira zisa nkinzirakarengane nka imeri ya imeri, ivugurura rya software ryihishe, cyangwa gukuramo urubuga bitemewe. Iyo porogaramu imaze gukora, malware irashobora kwiba amakuru yoroheje, guhisha amakuru, gusiba dosiye, cyangwa no guhindura igikoresho "igikinisho".
2. Ubwoko busanzwe bwa malware
Virus:Yomatanye na porogaramu zemewe, nyuma yo gukora, kwigana, kwanduza izindi dosiye, bikaviramo imikorere ya sisitemu cyangwa gutakaza amakuru.
Inzoka:Irashobora gukwirakwiza yigenga idafite gahunda yo kwakira. Birasanzwe kwikwirakwiza binyuze mumurongo wangiritse no gukoresha ibikoresho byurusobe. Trojan: Kwiyerekana nka software yemewe kugirango ushishikarize abakoresha gushiraho inyuma yinyuma ishobora kugenzura ibikoresho cyangwa kwiba amakuru.
Ubutasi:Gukurikirana rwihishwa imyitwarire yukoresha, kwandika urufunguzo cyangwa gushakisha amateka, akenshi bikoreshwa mukwiba ijambo ryibanga namakuru ya konti ya banki.
Incungu:gufunga igikoresho cyangwa amakuru ahishe kugirango incungu yo gufungura byagaragaye cyane mumyaka yashize.
3. Kwamamaza no Kwangiza Malware mubisanzwe bikwirakwizwa mubitangazamakuru bifatika nka imeri ya imeri, Malvertising, cyangwa urufunguzo rwa USB. Ibyangiritse birashobora kubamo amakuru yamenetse, kunanirwa kwa sisitemu, igihombo cyamafaranga, ndetse no gutakaza izina ryibigo. Kurugero, porogaramu ya Emotet ya 2020 yahindutse inzozi z'umutekano mu kwanduza amamiriyoni y'ibikoresho ku isi binyuze mu nyandiko zihishe.
4. Ingamba zo gukumira
• Shyira kandi uhore uvugurura software irwanya virusi kugirango usuzume dosiye zikekwa.
• Irinde gukanda kumurongo utazwi cyangwa gukuramo software biva ahantu hatazwi.
• Wibike amakuru yingenzi buri gihe kugirango wirinde igihombo kidasubirwaho cyatewe nincungu.
• Gushoboza firewall kugirango ugabanye imiyoboro itemewe.
Incungu
1. Ubusanzwe abateye basaba kwishyurwa muburyo bukomeye bwo gukurikirana amafaranga nka bitcoin, kandi bakangisha gusenya burundu amakuru mugihe ubwishyu budakozwe.
2. Imanza zisanzwe
Igitero cy’abakoloni mu 2021 cyatunguye isi. Incungu ya DarkSide yashizemo uburyo bwo kugenzura imiyoboro minini ya peteroli ku nkombe y'Iburasirazuba bwa Amerika, bituma itangwa rya lisansi rihagarara ndetse n'abagabye igitero basaba incungu ya miliyoni 4.4. Ibi byabaye byerekanaga intege nke z'ibikorwa remezo bikomeye kuri incansomware.
3. Kuki incungu yica cyane?
Guhisha cyane: Ransomware ikwirakwizwa binyuze mubikorwa byubwubatsi (urugero, kwiyerekana nka imeri yemewe), bigatuma abakoresha bitagorana.
Ikwirakwizwa ryihuse: Mugukoresha intege nke zurusobe, incansomware irashobora kwanduza byihuse ibikoresho byinshi muruganda.
Kugarura bigoye: Hatabayeho kugarura byemewe, kwishyura incungu birashobora kuba inzira yonyine, ariko ntibishoboka kugarura amakuru nyuma yo kwishyura incungu.
4. Ingamba zo kwirwanaho
• Buri gihe usubize amakuru kumurongo kugirango urebe ko amakuru akomeye ashobora kugarurwa vuba.
Sisitemu yo kumenya no gusubiza (EDR) yoherejwe kugirango ikurikirane imyitwarire idasanzwe mugihe nyacyo.
• Hugura abakozi kumenya imeri zo kuroba kugirango zidahinduka.
• Shyira sisitemu hamwe nintege nke za software mugihe cyo kugabanya ibyago byo kwinjira.
Kuroba
1. Kamere yuburobyi
Uburobyi ni ubwoko bwibitero byubwubatsi aho uwagabye igitero, yiyerekana nkikigo cyizewe (nka banki, urubuga rwa e-ubucuruzi, cyangwa mugenzi wawe), gitera uwahohotewe gutangaza amakuru yihariye (nkibanga ryibanga, nimero yikarita yinguzanyo) cyangwa ukande kumurongo mubi ukoresheje imeri, ubutumwa bugufi, cyangwa ubutumwa bwihuse.
2. Imiterere rusange
• Uburobyi bwa imeri: Gukora imeri yemewe kugirango ushukishe abakoresha kwinjira kurubuga rwibinyoma hanyuma wandike ibyangombwa byabo.
Uburobyi bw'icumu: Igitero cyateguwe kigamije umuntu runaka cyangwa itsinda rifite intsinzi yo hejuru.
• Guseka: Kohereza imenyekanisha ryibinyoma ukoresheje ubutumwa bugufi kugirango ushukishe abakoresha gukanda kumurongo mubi.
• Kwifuza: kwigira umuyobozi kuri terefone kugirango ubone amakuru yunvikana.
3. Ingaruka n'ingaruka
Ibitero bya fishing birahendutse kandi byoroshye kubishyira mubikorwa, ariko birashobora guteza igihombo kinini. Mu 2022, igihombo cy’amafaranga ku isi kubera ibitero by’uburobyi kingana na miliyari y’amadolari, birimo konti bwite yibwe, kutubahiriza amakuru y’ibigo, n’ibindi.
4. Ingamba zo guhangana
• Ongera usuzume inshuro ebyiri aderesi yohereje amakosa cyangwa amazina adasanzwe ya domaine.
• Emera kwemeza ibintu byinshi (MFA) kugirango ugabanye ingaruka nubwo ijambo ryibanga ryangiritse.
• Koresha ibikoresho birwanya uburobyi kugirango ushungure imeri mbi.
• Gukora amahugurwa ahoraho yo gukangurira umutekano kongera abakozi.
Iterabwoba rihoraho (APT)
1. Ibisobanuro bya APT
Iterabwoba rikomeje gutera imbere (APT) nigitero kitoroshye, cyigihe kirekire cyibitero byikoranabuhanga, mubisanzwe bikorwa nitsinda ryaba hackers kurwego rwa leta cyangwa udutsiko twabagizi ba nabi. Igitero cya APT gifite intego isobanutse nurwego rwo hejuru rwo kwihitiramo. Abagizi ba nabi binjira mu byiciro byinshi kandi bihisha igihe kirekire cyo kwiba amakuru y'ibanga cyangwa kwangiza sisitemu.
2. Igitero gitemba
Kwinjira kwa mbere:Kubona ibyinjira ukoresheje imeri ya imeri, gukoresha, cyangwa kugaburira ibitero.
Shiraho ikirenge:Shyiramo inyuma kugirango ukomeze igihe kirekire.
Urugendo:gukwirakwira mumurongo ugenewe kugirango ubone ubuyobozi bukuru.
Ubujura bwamakuru:Gukuramo amakuru yoroheje nkumutungo wubwenge cyangwa inyandiko zingamba.
Gupfukirana ibimenyetso:Siba igiti kugirango uhishe igitero.
3. Imanza zisanzwe
Igitero cya SolarWinds mu 2020 ni ibintu bisanzwe byabaye muri APT aho ba hackers bateye kode mbi binyuze mu gitero cy’amasoko, bikagira ingaruka ku bucuruzi n’ibigo bya leta ku isi ndetse no kwiba amakuru menshi y’ibanga.
4. Ingingo zo kwirwanaho
• Kohereza sisitemu yo kwinjira (IDS) kugirango ukurikirane urujya n'uruza rudasanzwe.
• Shimangira ihame ryamahirwe make yo kugabanya urujya n'uruza rw'abatera.
• Kora ubugenzuzi bwumutekano buri gihe kugirango umenye inyuma yinyuma.
• Korana ninzego zubutasi ziterabwoba kugirango ufate inzira zigezweho.
Umuntu mu gitero cyo hagati (MITM)
1. Nigute ibitero byabantu-hagati bikora?
Igitero cyumuntu-hagati (MITM) nigihe igitero cyinjije, kigahagarika, kandi kigakoresha ihererekanyamakuru hagati yimpande zombi zishyikirana batabizi. Igitero gishobora kwiba amakuru yihariye, guhindura amakuru, cyangwa kwigira umuburanyi kubera uburiganya.
2. Imiterere rusange
• Kwangirika kwa Wi-Fi: Abagabye igitero bakora ibibanza byihimbano bya Wi-Fi kugirango bashishikarize abakoresha guhuza kugirango bibye amakuru.
DNS kunyereza: guhinduranya ibibazo bya DNS kugirango uyobore abakoresha kurubuga rubi.
• Gushimuta SSL: Guhimba ibyemezo bya SSL kugirango uhagarike ibanga ryabitswe.
• Gushimuta imeri: Gufata no kunyereza ibiri muri imeri.
3. Ibyago
Ibitero bya MITM bibangamiye cyane amabanki yo kuri interineti, e-ubucuruzi, hamwe na sisitemu yo gutumanaho, ibyo bikaba bishobora gutuma konti yibwe, ibicuruzwa byangiritse, cyangwa itumanaho rikomeye.
4. Ingamba zo gukumira
• Koresha imbuga za HTTPS kugirango umenye neza itumanaho.
• Irinde guhuza Wi-Fi rusange cyangwa gukoresha VPNS kugirango uhishe ibinyabiziga.
• Gushoboza serivisi ya DNS itekanye nka DNSSEC.
• Reba neza ibyemezo bya SSL kandi ube maso kuburira bidasanzwe.
Injiza ya SQL
1. Uburyo bwo gutera inshinge SQL
SQL inshinge nigitero cyo gutera inshinge aho uwagabye igitero yinjiza amagambo mabi ya SQL mumwanya winjiza wa porogaramu y'urubuga (urugero, agasanduku kinjira, agasanduku k'ishakisha) kugirango ushukishe base base kugirango ukore amategeko atemewe, bityo kwiba, kunyereza cyangwa gusiba amakuru.
2. Ihame ryibitero
Reba ikibazo cya SQL gikurikira kumpapuro zinjira:
Igitero kirinjira:
Ikibazo kibaye:
Ibi birenga kwemeza kandi bituma uwateye yinjira.
3. Ibyago
SQL inshinge irashobora gutuma ibintu bisohoka mububiko, ubujura bwibyangombwa byabakoresha, cyangwa na sisitemu zose zifatwa. Kutubahiriza amakuru ya Equifax muri 2017 byahujwe n’intege nke ya SQL yagize ingaruka ku makuru bwite y’abakoresha miliyoni 147.
4. Ubwunganizi
• Koresha ibibazo byerekanwe cyangwa ibisobanuro byatanzwe kugirango wirinde guhuza ibitekerezo byabakoresha.
• Shyira mubikorwa kwemeza no kuyungurura kugirango wange inyuguti zidasanzwe.
• Gabanya uruhushya rwububiko kugirango wirinde abateye gukora ibikorwa bibi.
• Buri gihe usuzume porogaramu y'urubuga ku ntege nke no guhungabanya umutekano.
Ibitero bya DDoS
1. Kamere yibitero bya DDoS
Ikwirakwizwa ryangwa rya serivisi (DDoS) ryohereza ibyifuzo byinshi kuri seriveri igamije kugenzura umubare munini wa bots, unaniza umurongo wawo, ibikoresho byamasomo cyangwa imbaraga zo kubara, kandi bigatuma abakoresha bisanzwe badashobora kubona serivisi.
2. Ubwoko Rusange
• Igitero cyumuhanda: kohereza umubare munini wapaki no guhagarika umurongo wa neti.
• Ibitero bya protocole: Shakisha intege nke za protocole ya TCP / IP kugirango urangize ibikoresho bya seriveri.
• Ibitero bya porogaramu: Guhagarika seriveri muguhindura ibyifuzo byabakoresha byemewe.
3. Imanza zisanzwe
Igitero cya Dyn DDoS mu 2016 cyakoresheje Mirai botnet kugirango imanure imbuga za interineti nyinshi zirimo Twitter na Netflix, zigaragaza ingaruka z'umutekano wibikoresho bya iot.
4. Ingamba zo guhangana
• Kohereza serivisi zo kurinda DDoS kugirango ushungure traffic mbi.
• Koresha umuyoboro wo gutanga ibintu (CDN) kugirango ukwirakwize traffic.
• Shiraho imitwaro iringaniza kugirango wongere ubushobozi bwo gutunganya seriveri.
• Kurikirana urujya n'uruza kugirango umenye kandi usubize ibintu bidasanzwe mugihe.
Iterabwoba ryimbere
1. Ibisobanuro by'iterabwoba ryimbere
Iterabwoba ryimbere rituruka kubakoresha babiherewe uburenganzira (urugero, abakozi, abashoramari) mumuryango ushobora gukoresha nabi uburenganzira bwabo kubera ububi, uburangare, cyangwa gukoreshwa nabatera hanze, bikaviramo amakuru cyangwa kwangirika kwa sisitemu.
2. Ubwoko bw'iterabwoba
• Imbere mubi: Kwiba nkana amakuru cyangwa sisitemu yo kubangamira inyungu.
• Abakozi birengagije: Kubera kutamenya umutekano, imikorere mibi itera kwibasirwa n’intege nke.
• Konti zashimuswe: Abagizi ba nabi bagenzura konti y'imbere binyuze mu burobyi cyangwa kwiba.
3. Ibyago
Iterabwoba ryimbere riragoye kubimenya kandi birashobora kurenga firewall gakondo hamwe na sisitemu yo kumenya kwinjira. Mu 2021, isosiyete izwi cyane y’ikoranabuhanga yatakaje miliyoni amagana y’amadolari kubera umukozi w'imbere yamennye kode y'inkomoko.
4. Ingamba zikomeye zo kwirwanaho
• Shyira mubikorwa imyubakire ya zeru kandi ugenzure ibyifuzo byose.
• Kurikirana imyitwarire y'abakoresha kugirango umenye ibikorwa bidasanzwe.
• Kora amahugurwa ahoraho yumutekano kugirango abakozi bongere ubumenyi.
• Gabanya uburyo bworoshye bwo kubona amakuru kugirango ugabanye ibyago byo kumeneka.
Igihe cyo kohereza: Gicurasi-26-2025
