Microsoft v. SVR. Me yasa bude tushen ya zama al'ada

Diego Germán González

6 minti

Microsoft vs. SVR

Yana iya kasancewa labari na Tom Clancy daga jerin NetForce, amma littafi ne Shugaban Microsoft Brad Smith ya rubuta don girmama kansa da kamfaninsa. Ko ta yaya, idan mutum ya karanta tsakanin layin (aƙalla a ciki cirewa wanda hanyar shiga ta sami damar shiga) kuma ya raba pats na kai a baya kuma ya manne wa masu fafatawa, abin da ya rage yana da ban sha'awa da kuma koyarwa. Kuma, a ra'ayina na kaskanci, samfurin fa'idodin software na kyauta da ƙirar tushen buɗewa.

Yan wasa

Kowane labari na ɗan leƙen asiri yana buƙatar "mugun mutum" kuma, a wannan yanayin ba mu da komai sai SVR, daya daga cikin kungiyoyin da suka gaji KGB bayan rushewar Tarayyar Soviet. SVR yana ma'amala da duk ayyukan leken asirin da aka gudanar a wajen iyakar Tarayyar Rasha. "Wanda aka azabtar marar laifi" shine SolarWinds, wani kamfani da ke haɓaka software na sarrafa cibiyar sadarwa.Manyan kamfanoni, manyan manajojin kayayyakin more rayuwa, da hukumomin gwamnatin Amurka ke amfani da shi. Tabbas, muna buƙatar gwarzo. A wannan yanayin, bisa ga kansu, Sashen Leken Asirin Barazana na Microsoft ne.

Ta yaya zai kasance in ba haka ba, a cikin labarin ɗan fashin kwamfuta, "mara kyau" da "mai kyau" suna da laƙabi. SVR shine Yttrium (Yttrium). A Microsoft, suna amfani da abubuwan da ba su da yawa na tebur lokaci -lokaci azaman sunan lambar don yiwuwar hanyoyin barazana. Sashen Leken Asirin Barazana shine MSTIC don acronym ɗin sa cikin Ingilishi, kodayake a ciki suna furta shi mai sihiri (sufi) don kamannin sautin. Anan, don dacewa, zan yi amfani da waɗannan sharuɗɗan.

Microsoft v. SVR. Gaskiya

A ranar 30 ga Nuwamba, 2020, FireEye, ɗaya daga cikin manyan kamfanonin tsaro na kwamfuta a Amurka, ta gano cewa ta sami matsalar tsaro a cikin sabobin ta. Da yake sun kasa gyara da kansu (yi haƙuri, amma ba zan iya daina faɗin “gidan maƙeri, wuka na katako”) sun yanke shawarar neman ƙwararrun Microsoft don taimako. Tunda MSTIC ta kasance tana bin sawun Yttrium, kumaNan da nan suka kasance masu shakkar Rashawa, binciken daga baya jami'an leken asirin Amurka suka tabbatar.

Yayin da kwanaki suka shude, an gano hare -haren an kai su ga cibiyoyin sadarwa na kwamfuta masu mahimmanci a duniya, gami da Microsoft da kanta. A cewar rahotannin kafofin watsa labarai, a bayyane gwamnatin Amurka ita ce babbar manufar harin, tare da Ma'aikatar Baitulmali, Ma'aikatar Jiha, Ma'aikatar Kasuwanci, Ma'aikatar Makamashi da sassan Pentagon. Waɗannan sun haɗa da wasu kamfanonin fasaha, 'yan kwangila na gwamnati, masana tunani da jami'a. Hare -haren ba wai an kai su ne kan Amurka kawai ba yayin da suka shafi Kanada, Ingila, Belgium, Spain, Isra'ila da Hadaddiyar Daular Larabawa. A wasu daga cikin lamuran, shiga cikin cibiyar sadarwa ya ɗauki watanni da yawa.

Asalin

An fara shi da software na sarrafa cibiyar sadarwa da ake kira Orion kuma wani kamfani mai suna SolarWinds ya haɓaka. Tare da abokan cinikin kamfanoni sama da 38000 babban matakin, maharan dole ne kawai su saka malware a cikin sabuntawa.

Da zarar an shigar, malware ɗin da aka haɗa da abin da aka sani da fasaha a matsayin uwar garken umarni da sarrafawa (C2). Sabis na C2 eAn tsara shi don ba da ayyukan kwamfuta da aka haɗa kamar ikon canja wurin fayiloli, aiwatar da umarni, sake kunna na'ura, da kashe sabis na tsarin. A takaice dai, wakilan Yttrium sun sami cikakkiyar damar shiga hanyar sadarwar waɗanda suka shigar da sabunta shirin Orion.

Na gaba zan kawo sakin layi na gaskiya daga labarin Smith

Ba a dauki dogon lokaci ba kafin mu gane

mahimmancin haɗin gwiwar fasaha a duk masana'antu da tare da gwamnati
daga Amurka. Injiniyoyi daga SolarWinds, FireEye, da Microsoft sun fara aiki tare nan take. Ƙungiyoyin FireEye da Microsoft sun san junan su sosai, amma SolarWinds ƙaramin kamfani ne da ke fuskantar babbar matsala, kuma ƙungiyoyin dole ne su hanzarta gina amana idan za su yi tasiri.
Injiniyoyin SolarWinds sun raba lambar tushe na sabuntawarsu tare da kungiyoyin tsaro na sauran kamfanonin biyu,
wanda ya bayyana lambar asalin malware ɗin da kansa. Kungiyoyin fasaha daga gwamnatin Amurka sun hanzarta fara aiki, musamman a Hukumar Tsaro ta Kasa (NSA) da Hukumar Tsaro da Kayayyakin Kaya (CISA) na Ma'aikatar Tsaron Cikin Gida.

Abubuwan da suka fi dacewa sune nawa. Na aikin haɗin gwiwa da raba lambar tushe. Shin hakan bai yi muku wani abu ba?

Bayan bude kofar baya, malware ɗin ba ta aiki har tsawon makonni biyu, don gujewa ƙirƙirar shigarwar log na cibiyar sadarwa wanda zai faɗakar da masu gudanarwa. PA wannan lokacin, ya aiko da bayanai game da hanyar sadarwar da ta kamu da sabar umarni da sarrafawa. cewa maharan sun kasance tare da GoDaddy mai ba da sabis.

Idan abun cikin ya kasance mai ban sha'awa ga Yttrium, maharan sun shiga ta ƙofar baya kuma sun sanya ƙarin lamba akan sabar da aka kai hari don haɗawa zuwa umarni na biyu da sabar sarrafawa. Wannan uwar garken na biyu, na musamman ga kowane wanda aka azabtar don taimakawa gujewa ganowa, an yi masa rijista kuma an shirya shi a cibiyar bayanai ta biyu, galibi a cikin girgijen Sabis na Yanar Gizon Amazon (AWS).

Microsoft v. SVR. Halin kirki

Idan kuna da sha'awar sanin yadda jarumawan mu suka ba ƙauyukansu abin da suka cancanci, a cikin sakin layi na farko kuna da hanyoyin haɗin yanar gizo. Zan yi tsalle kai tsaye zuwa dalilin da yasa nake rubutu game da wannan akan shafin Linux. Rikicin Microsoft tare da SVR yana nuna mahimmancin lambar da ake da ita don a bincika, kuma cewa ilimin haɗin gwiwa ne.

Gaskiya ne, kamar yadda wani mashahurin masanin tsaro na kwamfuta ya tunatar da ni da safiyar yau, cewa ba shi da amfani a buɗe lambar idan babu wanda ya ɗauki matsala don bincika ta. Akwai shari'ar da ake kira Heartbleed case don tabbatar da hakan. Amma, bari mu sake maimaitawa. Manyan abokan ciniki 38000 sun yi rajista don software na mallaka. Da yawa daga cikinsu sun shigar da sabunta malware wanda ya fallasa bayanai masu mahimmanci kuma ya ba da iko ga maƙiyan mahimman abubuwan more rayuwa. Kamfanin alhakin Ya ba da lambar ne kawai ga kwararru lokacin da yake tare da ruwa a wuyansa. Idan ana buƙatar dillalan software don manyan abubuwan more rayuwa da abokan ciniki masu mahimmanci Saki software ɗinku tare da lasisin buɗaɗɗen lasisi, tunda samun mai duba lambar mazaunin (ko wata hukumar waje da ke aiki da yawa) haɗarin kai hare -hare kamar SolarWinds zai yi ƙasa sosai.


Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Alhakin bayanai: AB Internet Networks 2008 SL
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.

  1.   Diego Vallejo mai sanya hoto m
    sa 3 shekaru

    Ba da daɗewa ba, M $ ya zargi duk wanda ya yi amfani da software na kwaminisanci kyauta, kamar a cikin mafi munin McCarthyism.

    Amsa zuwa Diego Vallejo