Ukuchithwa kwezinto ezimbi, ukweba, nokucabangela endaweni enkulu
Ukuqhaqhaqhaqha ngokuphathelene nokuxhaphaza nokuchitha izinhlelo zokubaphoqa ukuba benze okungahlosiwe.
Nakuba abaduni abaningi beyizinkohlakalo zokuziphatha , abanye abaduni babangela ukulimala okubi kakhulu futhi kubangele ukulimala ngokwezimali nangokomzwelo. Izinkampani ezihlaselwe zilahlekelwa izigidi ekukhokheni nezindleko zokubuyisela; Abantu abahlukunyeziwe balahlekelwa imisebenzi yabo, ama-akhawunti abo asebhange, ngisho nobuhlobo babo.
Ngakho yiziphi izibonelo zezinkokhelo ezinkulu eziye zaphazamisa le havoc okuningi? Yimaphi ama-hacks amakhulu kakhulu omlando wakamuva?
Njengoba 'kunkulu' okufana 'ne-harshest', nalu uhlu lwamasheya aphawulekayo kusukela eminyakeni engu-20 edlule. Njengoba ufunda lolu hlu olungezansi, ngokuqinisekile uzofuna ukucubungula izindlela zakho zephasiwedi. Sifake iziphakamiso ezinamandla ngezansi kwalesi sihloko ukukusiza ukunciphisa ingozi ukuthi nawe uzothunwa usuku olulodwa.
01 ka-13
Ashley Madison likaHack yilelo elaligqokwe 2015: Abasebenzisi abayizigidi ezingu-37
Ithimba le-Impact leqembu le-hacker laphuluka kuma-server Avid Life Media futhi likopishe idatha yomuntu siqu wabasebenzisi abangu-37 base-Ashley Madison. Abaduni bavele bakhulisa ngokukhululekile lolu lwazi emhlabeni ngokusebenzisa amawebhusayithi ahlukahlukene. Umthelela ohlazo kubantu abakuhloniphayo abantu kuye kwaba nemiphumela eminingi emhlabeni jikelele, kufaka phakathi izimangalo zokuthi ukuzibulala komsebenzisi kulandelwe ngemuva kokuphazamiseka.
Lokhu kuphazamiseka akukhunjulwa nje kuphela ngenxa yokumemezela okukhulu komthelela, kodwa ngoba abaqashi nabo bathola udumo njengama-vigilantes ehlukumeza ukungathembeki namanga.
Funda kabanzi mayelana nokuhlukumeza kuka-Ashley Madison:
- URob Price uchaza imiphumela ye-Ashley Madison ukukhwabanisa ukukhwabanisa
- I-Callum Paton isitshela indlela ongabheka ngayo uma ngabe oshade naye ethinteka ngengozi
- I-Krebs ku-Sokuphepha ichaza ukuthi le hack yavela kanjani
02 ngo-13
I-Conficker Worm 2008: Isakapheli Amakhompiyutha Amizigidi Ngonyaka
Ngenkathi loluhlelo lwe-malware oluqinile lungakaze lonakalise umonakalo ongatholakali, lolu hlelo lwenqaba ukufa; lifihla ngokugcwele bese lizikopisha ngomunye umshini. Okwesabisa nakakhulu: le mbungu iyaqhubeka ivule ama-backdoors ukuze kuthathwe izinyathelo ezizayo ze-hacker yemishini egciwane.
Uhlelo lwe-Conficker worm (aka 'Downadup' worm) luziphindaphinda kuwo wonke amakhompyutha, lapho lilele ngasese kunoma yikuphi) ukuguqula umshini wakho ube yi-zombie bot ukuze ugaxekile, noma b) ukufunda izinombolo zakho zekhadi lesikweletu namaphasiwedi wakho ngokufaka isikrini, futhi udlulisele leyo mininingwane kubahleli.
I-Conficker / Downadup uhlelo lwekhompyutha oluhlakaniphile kakhulu. Ivikela ngokuzenzakalelayo isofthiwe yakho ye-antivirus ukuze uzivikele.
I-Conficker iyaphawuleka ngenxa yokuqina kwayo futhi ifinyelele; isakhamba nge-intanethi eminyakeni engu-8 ngemva kokutholakala kwayo.
Funda kabanzi mayelana nohlelo lwe-Conficker / Downadup worm:
- UKelly Burton uchaza ohlangothini lwezobuchwepheshe we-worm Conficer
- Indlela yokuthola nokususa i-Conficker kusuka kukhompyutha yakho
- I-Symantec ingasusa futhi isidumbu sakho
03 ka-13
I-Stuxnet Worm 2010: Uhlelo lweNyukliya ye-Iran luvinjelwe
Uhlelo lwembongolo olungaphansi kwe-megabyte ngobukhulu ludedelwa ezitshalweni ze-nuclear zenuzi. Lapho lapho, sithatha ngasese izinhlelo zokulawula ze-Siemens SCADA. Lezibungu ezinomunyu zanikeze ngaphezu kwama-5000 we-8800 uranium centrifuges ukuze ziphephe ukulawulwa, khona-ke zimise ngokuzumayo bese ziqala kabusha, ngesikhathi esifanayo zibika ukuthi konke kuhle. Lokhu kukhwabanisa okuqhubekayo kwaqhubeka izinyanga ezingu-17, kuchitha izinkulungwane zamasampuli e-uranium ngasese, futhi kubangela abasebenzi nabososayensi ukuthi bangabaze umsebenzi wabo. Ngaso leso sikhathi, akekho owazi ukuthi bakhohliswa futhi ngesikhathi esifanayo.
Lokhu kuhlaselwa okukhohlisayo nokuthula kwangcolisa umonakalo omkhulu kunokuba nje ukubhubhisa i-centrifuges yokuhlanza ngokwabo; i-worm yahola izinkulungwane zezobuchwepheshe endleleni engalungile yonyaka nengxenye, futhi yachitha izinkulungwane zamahora omsebenzi kanye nezigidi zamaRandi ezinsiza ze-uranium.
Isibungu sabizwa ngokuthi 'Stuxnet', igama elingukhiye elitholakala kumazwana wangaphakathi wekhodi.
Lokhu kuphazamiseka akukhunjulwa ngoba kokubili ama-optics nokukhohlisa: kwahlasela uhlelo lwenyukliya yezwe eliye laphikisana ne-USA neminye imibuso yezwe; futhi bakhohlise bonke abasebenzi basezikhali zenuzi ngonyaka kanye nengxenye njengoba benza izenzo zabo ezimbi ngasese.
Funda kabanzi mayelana nohlelo lwe-Stuxnet:
- I-Stuxnet: isikhali sedijithali samanje?
- I-Stuxnet yayifana neveli kaTom Clancy
- Indaba yangempela ye-Stuxnet
04 ka-13
Home Depot Hack 2014: Ngaphezu 50 Million Credit Cards
Ngokusebenzisa iphasiwedi kusuka kubathengisi bayo bezitolo, abaduni be-Home Depot bazuze ukuphulwa kwekhadi lesikweletu esikhulu kunabo bonke emlandweni wesintu. Ngokucubungula ngokucophelela uhlelo lokusebenza lweMicrosoft, laba bahlaseli bakwazi ukufaka phakathi amaseva ngaphambi kokuthi iMicrosoft ikwazi ukufaka ingozi.
Lapho bengena esitolo sokuqala sasekhaya saseMexico ngaseMiami, abahlaseli basebenza ngendlela yonke kulo lonke leli zwekazi. Babone ngokuyimfihlo ukuthengiswa kokukhokha kuma-register angaphezu kuka-7000 we-Home Depot yokuzisebenzisela ukubhalisa. Bakha izinombolo zekhadi lesikweletu njengoba amakhasimende akhokhela ukuthenga kwabo kwe-Home Depot.
Lokhu kuphazamiseka kuyaphawuleka ngoba bekuphikisana ne-monolithic corporation kanye nezigidi zabantu abathengi abathengi.
Funda kabanzi mayelana nokushaywa kwe-Home Depot:
- Yeka ukuthi isikhulu esiphezulu sikaFrank Blake siphendule kanjani ekuthengeni kwakhe izitolo
- I-Wall Street Journal ichaza leli hack lapha
- I-Home Depot iphazamisa manje isifundo sezomthetho esisemthethweni
05 ka-13
I-Spamhaus 2013: Ukuhlasela okukhulu kweDDOS kumlando
Ukuphikisana nokuhlaselwa kwenkonzo kuyisikhukhula sedatha. Ngokusebenzisa amakhompiyutha amaningi aphangiwe aphindaphinda amasignali ngesilinganiso esiphezulu nevolumu, abaduni bazokhukhula bese belayisha izinhlelo zekhompyutha kwi-intanethi.
Ngenyanga ka-Mashi ka-2013, lokhu kuhlaselwa kwe-DDOS okwanele kwancipha yonke i-intanethi emhlabeni jikelele, futhi uvale ngokuphelele izingxenye zayo amahora ngesikhathi.
Abahlukumezi basebenzisa amakhulu amaseva e-DNS ukuze 'aveze' amasignali ngokuphindaphindiwe, akhulise umphumela wezikhukhula futhi athumele ama-gigabits angu-300 ngomzuzwana wedatha yesikhukhula kwisiphakeli ngasinye kwinethiwekhi.
Umgomo ophakathi nendawo yokuhlaselwa kwakuyi-Spamhaus, insizakalo yokuvikela engenzi-nzuzo elandela ukulandelela kanye nabalandeli be-spammers nabaduni ngenxa yabasebenzisi bewebhu. Amaseva we-Spamhaus, kanye namanye amaseva e-intanethi e-intanethi, ayekhukhulwa kulokhu kuhlasela kwe-DDOS ka-2013.
Le hack ye-DDOS iyaphawuleka ngenxa yesilinganiso esikhulu sokuphindaphindiwe kwamandla ayo: ilayishe ngaphezulu amaseva we-intanethi ngevolumu yedatha engakaze ibonwe ngaphambilini.
Funda kabanzi mayelana nokuhlaselwa kwe-Spamhaus:
- I-New York Times ichaza ukuhlaselwa kwe-DDOS
- Umshayeli wesilisa waseLondon ucela icala lokuthi abe omunye wabaduni beDDOS
- Hlangana no-Spamhaus, isevisi elwa nogaxekile eyayiyiyona nto ebalulekile yokuhlasela kwe-DDOS.
06 ka-13
eBay likaHack yilelo elaligqokwe 2014: Abasebenzisi abangu-145 Million Breached
Abanye abantu bathi lokhu kuphulwa kabi kokuthembela komphakathi ekuthengiseni oku-intanethi. Omunye uthi kwakungeyona into enzima njengobunikazi obukhulu ngoba idatha yomuntu siqu kuphela ephuliwe, hhayi ulwazi lwezezimali.
Noma ngabe iyiphi indlela oyikhethayo ukulinganisa lesi sigameko esingathandeki, izigidi zabathengi be-intanethi zenze idatha yabo evikelwe ngephasiwedi ihlehlisiwe. Le ngozi ikhunjulwa ngokukhethekile ngoba yayisesidlangalaleni kakhulu, futhi ngenxa yokuthi i-eBay yayigwetshiwe njengobuthakathaka ekuvikelekeni ngenxa yempendulo yomphakathi ehamba kancane futhi engenamandla.
Funda kabanzi mayelana ne-eBay Hack of 2014:
- I-BGR ichaza ukuthi i-hack ye-eBay iphelelwe kanjani
- I-eBay ayinqobe noma yimaphi amaphuzu ngokuphendula kwayo okulukhuni ekuphambeni
- Nakhu ukuphendula kwe-blog kwe-eBay
07 ka-13
JPMorgan Chase Hack, 2014: (76 + 7) Ama-akhawunti Amizigidi
Maphakathi no-2014, abasolwa abaduni baseRashiya baphumele ebhange elikhulu kunawo wonke e-USA futhi baphula ama-akhawunti amancane amabhizinisi angu-7 kanye nama-akhawunti wabantu abayizigidi ezingu-76. Abaduni bangene emakhompyutheni angu-90 we-JPMorgan Chase futhi babheka ulwazi lomuntu siqu kubanikazi be-akhawunti.
Ngokuthakazelisayo, akukho mali ephangiwe kulaba abanini be-akhawunti. I-JPMorgan Chase ayizimisele ngokuhlanganyela yonke imiphumela yophenyo lwangaphakathi. Lokho abazokusho ukuthi abaduni babambe imininingwane yokuxhumana, njengamagama, amakheli, amakheli e-imeyli nezinombolo zocingo. Bathi akukho bufakazi bokuphepha komphakathi, inombolo ye-akhawunti, noma ukwephulwa kwephasiwedi.
Lokhu kuphazamiseka kuyaphawuleka ngoba kushayisana nokuphila kwabantu: lapho begcina khona imali yabo.
Funda kabanzi mayelana ne-JPMorgan Chase Hack:
- I-New York Times ilandisa indaba yeHack
- I-Register yase-UK isitshela ukuthi ochwepheshe be-server bahlulekile ukuthuthukisa enye yamaseva ayo avumela ukuphazamiseka
- Nansi umbiko osemthethweni ovela ku-SEC
08 ngo-13
I-Melissa Virus 1999: Amaphesenti angama-20 e-Amakhompiyutha e-World aphethwe
Indoda yaseNew Jersey ikhiphe le virus ye-Microsoft macro kuWebhu, lapho ithola khona amakhompyutha e-Windows. I-virus ye-Melissa i-masqueraded njenge-attachment yefayela le-Microsoft Word nge-imeyili inothi 'Umyalezo obalulekile kusuka ku- [Person X]. Uma umsebenzisi echofoza okunamathiselwe, uMelissa wazenzela ngokwakhe futhi wayala iMicrosoft Office ukuba ithumele ikhophi yegciwane njengendlela yokuthumelela i-mail enkulu kubantu bokuqala abangu-50 ebhokisini lekheli lomsebenzisi.
Igciwane ngokwayo alizange lichithe amafayela noma liba noma yimaphi amaphasiwedi noma ulwazi; kunalokho, inhloso yalo kwakuwukukhukhumeza amaseva we-imeyli nge-imeyili eyingozi.
Ngempela, uMelissa uvale ngempumelelo izinkampani ezinye izinsuku ngesikhathi abachwepheshe bezinethiwekhi begijimela ukuhlanza izinhlelo zabo bese behlanza igciwane lesifo esiyingozi.
Leli gciwane / likaHack yilelo elaligqokwe liyabonakala ngoba lihlolisisa ukungathandwa kwabathengi kanye nobukhulu besimo samanje bama-scanner anqulo wesi arab kumanethiwekhi ezinkampani. Yanikezela i-Microsoft Office iso elimnyama njengesistimu ebuthakathaka.
Funda kabanzi mayelana negciwane le-Melissa:
- Ngo-1999: UMelissa uphazamisa iWebhu
- Indlela uMelissa esebenza ngayo
- Yini esingayifunda kuMelissa?
09 ka-13
I-LinkedIn 2016: Ama-Akhawunti ayizigidi ezingu-164
Ngokuphambana nokuhamba kancane okwathatha iminyaka emine ukudalula, i-social giant giant iyavuma ukuthi abasebenzisi bayo abayizigidi ezingu-117 banamaphasiwedi abo futhi bangena ngemvume ebiwe ngo-2012, ukuze kamuva babe nolwazi oluthengiswe kumakethe omnyama we-digital ngo-2016.
Isizathu sokuthi lokhu kuyingozi enkulu ngenxa yokuthi kuthatha isikhathi esingakanani ukuba inkampani ibone ukuthi badakiwe kangakanani. Iminyaka emine yisikhathi eside sokuthola ukuthi uphangiwe.
Funda kabanzi mayelana neHackIn LinkedIn:
- I-CNN Money ichaza lesi sigameko
- I-LinkedIn isabela esidlangalaleni ku-hack 2012
10 kwangu-13
Anthem Health Care Hack 2015: 78 Abasebenzisi Million
Umshwalense wesibili ngobukhulu wezempilo e-USA wayenezinqolobane zayo ezonakele ngenxa yokuhlaselwa kwe-covert okwaba namaviki ambalwa. Imininingwane yokungena ayisebenzi ngokuzithandela ngu-Anthem, kodwa bathi akukho ulwazi lwezokwelapha olwebiwe, ulwazi lokuxhumana kuphela kanye nezinombolo zokuphepha komphakathi.
Akukho monakalo okwamanje okhethiwe kunoma yimuphi wabasebenzisi abonakele. Ochwepheshe babikezela ukuthi lolu lwazi luzothengiswa ngelinye ilanga ngezimakethe ezimnyama ezise-intanethi.
Njengempendulo, i-Anthem ihlinzeka ngokuqapha kwamahhala kwamalungu ayo. I-Anthem iphinda icabange ukufaka yonke imininingwane yabo esikhathini esizayo.
I-Hack ye-Anthem ayikhunjulwa ngenxa ye-optics yayo: enye inhlangano ye-monolithic yaba yisisulu sabamemezeli abambalwa bekhompiyutha abahlakaniphile.
Funda kabanzi mayelana nokuphazamiseka kwe-Anthem lapha:
- I-Anthem iphendula imibuzo yabo yamakhasimende mayelana ne-Hack
- I-Wall Street Journal ichaza i-Anthem Hack
- Imininingwane eminingi mayelana nokuphazamiseka kwe-Anthem kanye nempendulo yabo.
11 kwangu-13
I-Sony Playstation Network Hack lika-2011: Abasebenzisi abayizigidi ezingu-77
Ngo-Ephreli 2011: abathintekayo be-Lulzsec hacker collective bavalile ukuvula i-Sony database ku-Playstation Network yabo, bembula ulwazi lokuxhumana, ukungena ngemvume, namaphasiwedi kwabadlali abayizigidi ezingu-77. U-Sony uthi akukho ulwazi lwekhadi lesikweletu eliphuliwe.
U-Sony wathatha insizakalo yayo izinsuku ezimbalwa ukuze afake izimbobo futhi athuthukise ukuzivikela kwawo.
Kubekho umbiko wokuthi ulwazi olubiwe luthengiswe noma lisetshenziselwa ukulimaza noma ubani okwamanje. Ochwepheshe bacabanga ukuthi kwakuyi-SQL injection attack.
Ukuphazamiseka kwe-PSN akukhunjulwa ngoba kuthinte abadlali, isiko labantu abalandeli be-computer-savvy of technology.
Funda kabanzi mayelana ne-Sony PSN likaHack yilelo elaligqokwe lapha:
- I-ExtremeTech ichaza ukuthi i-Sony PSN yahlushwa kanjani
- Indlela umjovo we-SQL osebenza ngayo
12 kwangu-13
Global Payments 2012 Hack: 110 Million Credit Cards
Izinkokhelo ze-Global ingenye yezinkampani eziningana ezithinta ukuthengiswa kwekhadi lesikweletu kwababolekisi nabathengisi. Izinkokhelo zomhlaba wonke ezikhethekile kubathengisi bamabhizinisi amancane. Ngonyaka wezi-2012, izinhlelo zabo zaphulwa ngabaduni, futhi ulwazi lwekhadi lesikweletu labantu labiwa. Abanye kulabo abasebenzisi kusukela ngaleso sikhathi baye bafaka ama-akhawuntini abo ngokukhohlisa ngokuthengiswa okungathembeki.
Uhlelo lokusayina lwamakhadi esikweletu e-USA lusukuwe, futhi lokhu kuphulwa kunganciphisa kalula uma abanikezeli bekhadi lesikweletu bezobe besitshala ekusebenziseni amakhadi amasha amasha asetshenziswa eCanada nase-UK.
Lokhu kuphazamiseka kuyaphawuleka ngoba kushayisana nomkhuba wansuku zonke wokukhokha izimpahla esitolo, ukuzamazama ukuzethemba kwabasebenzisi bekhadi lesikweletu emhlabeni jikelele.
Funda kabanzi mayelana nokuphazamiseka kwe-Global Payments:
- I-CNN Imali ichaza i-GPN Hack
- Yeka ukuthi abaduni basebenzisa kanjani injini ye-DoS ne-SQL
Inqubo yokukhokha ye-Heartland iphinde ikhishwe ngo-2009 ngaphambi kokuhlangana ne-Global Payments
13 kwangu-13
Ngakho Yini Ongayenza Ukuvimbela Ukuqothulwa?
Ukuqhaqhaza kuyingozi engokoqobo ukuthi sonke kufanele siphile nayo, futhi angeke ube yi-100% hacker-proof kule minyaka.
Unganciphisa ingozi yakho, noma kunjalo, ngokwenza kube nzima ukuphazamisa kunabanye abantu. Ungaphinde unciphise umthelela wesikhathi lapho uthola ukuhlukunyezwa ngokusebenzisa amaphasiwedi ahlukene kuma-akhawunti akho ahlukene.
Nazi ezinye izincomo ezinamandla ukunciphisa ukucaciswa kobuqambi bakho obuku-intanethi:
1. Hlola ukuze ubone ukuthi ngabe udakiwe futhi uphonswa kule datha yamahhala.
2. Yenza umzamo owengeziwe ukudala amaphasiwedi aqinile njengoba sikhuthaza kulokhu okufundiswayo .
3. Sebenzisa iphasiwedi ehlukile ye-akhawunti yakho ngayinye; lokhu kuzokwehlisa kakhulu ukuthi impilo yakho ingaba khona kangakanani.
4. Cabanga ukwengeza ukugunyazwa kokubili kwezinto (2FA) ku-Gmail yakho namanye ama-akhawunti atholakala ku-intanethi.
5. Cabanga ngokubhalisela isevisi ye-VPN ukubethela yonke imikhuba yakho ye-intanethi.