Kaspersky ya ce Linux na ci gaba da niyya don kai hare-hare

Darkcrizt

4 minti

Linux Kernel Logo, Tux

A cewar masu binciken tsaro daga Kaspersky, masu fashin kwamfuta suna ƙara mai da hankali kan kai hari ga sabobin Linux da wuraren aiki.

Duk da yake tsarin Windows koyaushe maharan maharan ne, ci gaba m barazanar (GASKIYA) yanzu sun zama babbar matsala a duniyar Linux.

Don tsarin Linux sune ainihin makasudin ci gaba da zaɓin kayan aiki masu ƙeta.

Duk da yake ba komai bane wanda aka gano malware ta Linux, kuma akwai misalai da yawa sanannu irin su SecondSail Junk, Sofacy and Equation, Kaspersky ya lura cewa duk da yaduwar ra'ayi cewa tsarin Linux ba kasafai ake tabawa ba ko kuma ba manufa ba, a zahiri akwai shafukan yanar gizo da yawa, na bayan gida, da kuma rootkits wadanda aka tsara musamman na Linux.

Labarin da ke cewa Linux, kasancewarta shahararren tsarin aiki ne, da alama malware zai iya sa shi, yana kiran ƙarin haɗarin tsaro na yanar gizo. Duk da yake hare-haren da ake kaiwa kan tsarin Linux har yanzu ba safai ake samu ba, tabbas akwai malware da aka tsara domin su, gami da shafukan yanar gizo, bayan fage, tushen rootkits, har ma da ayyukan al'ada.  

Misali na kwanan nan shine ingantaccen sigar bayan gida Linux Penguin_x64 na kungiyar Rasha ta Turla.

Koreanungiyar Koriya ta Li'azara kuma ta haɓaka kayan aikinta na ɓarnar Linux, gami da kayan aikin da ake amfani da su don leƙo asirin ƙasa da kai harin kuɗi.

Yury Namestnikov, Darakta na Kungiyar Kaspersky's Global Research and Analysis Team (GReAT) a Rasha, ya ce:

“Masananmu sun gano yanayin zuwa inganta kayan aikin APT sau da yawa a baya. da kayan aikin Linux-centric ba banda bane. Don kare tsarin su, IT da sassan tsaro suna amfani da Linux fiye da kowane lokaci. 'Yan wasan barazanar suna amsa wannan ci gaban ta hanyar ƙirƙirar ingantattun kayan aikin da zasu iya shiga cikin waɗannan tsarin. Muna ba da shawara ga masana harkar tsaro na yanar gizo da su kula da wannan yanayin kuma su aiwatar da ƙarin matakai don kare sabobinsu da wuraren aiki.

Kamfanin tsaro ya ba da cikakken bayani na jerin matakai waɗanda za a iya ɗauka don taimakawa kare tsarin Linux daga APTs:

  • Kula da jerin amintattun kafofin software kuma guji amfani da tashoshin sabuntawa mara rufin asiri.
  • Kada ka yi binaryar da rubutattun bayanai daga kafofin da ba amintattu ba. Hanyoyin da aka yadu ta hanyar girka shirye-shirye tare da umarni kamar "curl https: // install-url | sudo bash »ya haifar da batun tsaro na ainihi
  • Tabbatar da aikin sabuntawa yana da inganci kuma saita sabunta tsaro ta atomatik
  • Samun lokaci don daidaita katangar da kyau - tabbatar cewa ta shiga ayyukan cibiyar sadarwa, toshe tashoshin da ba ku amfani da su, kuma rage ƙafafun cibiyar sadarwar ku
  • Yi amfani da amincin SSH mai mahimman bayanai kuma kare maɓallan tare da kalmomin shiga
  • Yi amfani da 2FA (ingantaccen abu biyu) kuma adana maɓallan sirri a kan na'urorin alamar waje (misali, Yubikey)
  • Yi amfani da mahaɗin cibiyar sadarwar waje don saka idanu kai tsaye da nazarin hanyoyin sadarwa daga tsarin Linux ɗin ka
  • Kula da mutuncin fayil wanda za'a iya aiwatar dashi kuma akai-akai duba fayil ɗin sanyi don canje-canje
  • Kasance cikin shiri don harin kai tsaye ko na cikin gida - yi amfani da cikakken ɓoyayyen faifai, amintattu kuma abin dogaro, kuma sanya kaset ɗin tsaro mai kariya a kan kayan aikin ka.
  • Duba tsarin kuma bincika rajistan ayyukan don alamun alamun hari
  • Yi Gwajin shiga cikin shigarwar Linux
  • Yi amfani da keɓantaccen bayani na tsaro tare da kariya ta Linux, kamar ginanniyar ƙarshen ƙarshen aiki. Wannan maganin yana ba da hanyar sadarwar da kariya ta yanar gizo don gano mai leƙan asirri, yanar gizo mai haɗari, da hare-haren cibiyar sadarwa, tare da sarrafa kayan aiki, yana bawa masu amfani damar kafa dokoki don canja wurin bayanai zuwa wasu na'urori.

Kaspersky Hybrid Cloud Security yana ba da kariya ta DevOps, yana ba da damar haɗakar tsaro a kan dandamali na CI / CD da kwantena, da kuma hotunan hoto akan hare-haren samar da kayayyaki.

Idan kanaso ka kara sani game dashi zaka iya bincika bayanin asali A cikin mahaɗin mai zuwa.


Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Alhakin bayanai: AB Internet Networks 2008 SL
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.

  1.   Parata da aka rufe m
    sa 4 shekaru

    Bar bar don sayar da riga-kafi (kamar dai idan abin rufe fuska bai isa ba) Linux ba ta da aminci ba saboda ta fi yawa ko ƙasa da sananniya ba, idan ba saboda "Dokar Torvalds" tare da yawancin mahalarta a cikin halittarta ba, mafi bayyana a fili rashin nasara ya zama

    Amsa wa La parata enmascarada