Kaspersky anoti Linux inowedzera yakanangidzirwa pakurwiswa

Darkcrizt

4 maminitsi

Chiratidzo Kernel Linux, Tux

Maererano ne kuchengetedzwa kwevaongorori kubva Kaspersky, hackers vari kuwedzera kutarisa kurwisa Linux maseva uye nzvimbo dzekushandira.

Kunyange maWindows masisitimu agara ari tarisiro yevanorwisa, kumberi kuramba kutyisidzira (APT) ikozvino rave dambudziko rakakomba muLinux nyika.

Kune maLinux masisitimu ndiyo yakanangwa tarisiro yesarudzo iri kukura yezvombo zvakaipa.

Kunyange zvisingazivikanwe zvachose kuti Linux malware inowanikwa, uye pakave nemienzaniso mizhinji inozivikanwa seTwoSail Junk, Sofacy uye Equation, Kaspersky anocherekedza kuti kunyangwe paine fungidziro yekuti Linux masisitimu haawanzo kana kusatombovavarira, pane zviripo zvakawanda webhells, kumashure, uye rootkits zvakanyatsogadzirirwa Linux.

Manyepo ekuti Linux, ichive isinganyanyo zivikanwa sisitimu yekushandisa, haigone kutariswa nemarware, inokoka dzimwe njodzi dzekuchengetedza cyber. Nepo kurwiswa kwakanangana neLinux-based masisitimu kuchiri kushomeka, zvirokwazvo kune malware akagadzirirwa iwo, anosanganisira webshells, backdoors, rootkits, uye kunyange tsika tsika.  

Muenzaniso uchangoburwa ndeye yakagadziridzwa vhezheni yeshure kweseri Linux Penguin_x64 weboka reRussia Turla.

Boka reKorea Razaro rakawedzerawo arware yeLinux malware, kusanganisira maturusi akasiyana anoshandiswa espionage uye kurwiswa kwemari.

Yury Namestnikov, Director weKaspersky Global Research uye Analysis Team (GReAT) muRussia, anoti:

"Nyanzvi dzedu dzakaratidza maitiro ekuvandudza maturusi eAPT kakawanda munguva yakapfuura. uye zvishandiso zveLinux-centric hazvisi izvo. Kuchengetedza avo masisitimu, IT uye ekuchengetedza madhipatimendi ari kushandisa Linux kakawanda kupfuura nakare kose Vatyisidzi vatambi vari kupindura kukura uku nekugadzira maturusi akaomesesa anogona kupinda mumasisitimu aya. Isu tinopa zano nyanzvi dzekuchengetedza cyber kuti vateerere maitiro aya uye nekushandisa mamwe matanho ekudzivirira maseva avo uye nzvimbo dzekushandira.

Security kambani inogovera ruzivo yematanho anoteedzana anogona kutorwa kubatsira kudzivirira maLinux masisitimu kubva kuAPT:

  • Chengetedza runyorwa rwekunovimbwa nesoftware sosi uye dzivisa kushandisa isina kunyorwa yekuvandudza nzira.
  • Usamhanye mabhinari uye zvinyorwa kubva kune vasina kuvimbika masosi. Nzira dzakashambadzirwa zvakanyanya dzekuisa zvirongwa nemirairo yakadai se "curl https: // install-url | sudo bash »isa chaiyo yekuchengetedza nyaya
  • Ita shuwa kuti iyo yekuvandudza maitiro inoshanda uye gadzirisa otomatiki ekuchengetedza matsva
  • Kutora iyo nguva kunyatso kugadzirisa firewall - ita shuwa kuti inorekita network basa, inovhara madoko ausiri kushandisa, uye inoderedza yako network tsoka
  • Shandisa kiyi-yakavakirwa SSH kuvimbiswa uye chengetedza makiyi nemapassword
  • Shandisa 2FA (mbiri-chinhu chechokwadi) uye chengetera makiyi anonzwisisika pane ekunze matekiniki emidziyo (semuenzaniso, Yubikey)
  • Shandisa kunze-kwe-bhendi netiweki chinongedzo kuzvimiririra kuongorora uye kuongorora netiweki kutaurirana kubva kune ako Linux masisitimu
  • Chengetedza kuvimbika kwesystem inogoneka faira uye nguva nenguva ongorora shanduko kune iyo yekumisikidza faira
  • Gadzirira kurwisa kwemuviri kana kwemukati - shandisa izere disk encryption, yakachengeteka uye yakavimbika primers, uye isa tamper-proof chengetedzo matepi pane yako yakakosha Hardware.
  • Ongorora iyo system uye tarisa matanda ezviratidzo zvekurwisa
  • Ita Kupindira Kupinda pane Yako Linux Kuisirwa
  • Shandisa yakazvipira chengetedzo mhinduro ine Linux dziviriro, senge yakavakirwa-mukati endpoint chengetedzo. Iyi mhinduro inopa dandemutande uye netiweki dziviriro yekuona phishing, yakaipa mawebhusaiti, uye network kurwisa, pamwe nekudzora kwechigadzirwa, zvichibvumira vashandisi kumisikidza mitemo yekuchinjisa dhata kune mamwe madivayiri.

Kaspersky Hybrid Cloud Security inogonesa dziviriro yeDevOps, ichigonesa kusangana kwekuchengetedzeka paCI / CD mapuratifomu nemidziyo, uye kuongorora mifananidzo nekurwiswa neketeni

Kana iwe uchida kuziva zvakawanda nezvazvo unogona kutarisa chinyorwa chekutanga Mune inotevera chinongedzo.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira data: AB Internet Networks 2008 SL
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako

  1.   Yakavharwa parata akadaro
    inoita 4 makore

    Siya mashanga kuti utengese antivirus (sekunge mask haina kukwana) Linux yakachengeteka kwete nekuti iri kunyanya kana kushomeka, kana zvisiri nekuda kwe "Mutemo weTorvalds" ine huwandu hukuru hwevatori vechikamu mukusikwa kwayo, zvinonyanya kuoneka chero kukundikana kunova

    Pindura La parata enmascarada