Iyo yekuchengetedza kambani Kaspersky nguva pfupi yadarika yakafumura, kuti yakawana musiyano weLinux weRudzikunuroXX rudzikunuro, kumaka kekutanga nguva yekuti kusimba kukuru kweWindowshlengware kwafamba kuLinux kunobatsira neakanangidzirwa mukati.
Pakutanga, iyi rudzikunuro yakataurwa yakashandiswa mukurwisa kuTexas department reZvekufambisa, Konica Minolta, kontrakta wehurumende yeUS Tyler Technologies, iyo Montreal transit system uye, munguva pfupi yapfuura, kupokana neBrazilian Judicial System (STJ).
RudzikunuroEXX iwe uri mumwe wevaya vanotora zvinangwa zvikuru mukutsvaga kubhadharwa kukuru, tichiziva kuti mamwe makambani kana vamiririri vehurumende havagone kugara vasina basa pavanenge vachigadzirisa masisitimu avo.
Mukupera kwa2019, iyo FBI yakaburitsa rudzikunuro rwevashandi veveruzhinji chiziviso kudzidzisa veruzhinji nezve kuwedzera kwenhamba yekurwiswa kwemabhizinesi nemasangano muUnited States.
“Rudzikunuro kurwisa kuri kuwedzera kusarudza, kuomarara uye kunodhura, kunyangwe huwandu hwakawanda hwekurwiswa kuchiramba kuripo. Kubva kutanga kwegore ra2018, zviitiko zvemisaruro yekusarura uye mikuru yakaderera zvakanyanya, asi kurasikirwa kubva pakurwiswa kwerudzikinuro kwakawedzera zvakanyanya, maererano nezvichemo zvakagamuchirwa neIC3 [Internet Crime Complaint Center] neruzivo pamatambudziko kubva kuFBI ".
Iyo FBI yakacherekedza kuti vabiridzi vanoshandisa hunyanzvi hunotevera kutapura vanobatwa nerejonura
- Email mishandirapamwe yekubiridzira: uyo anorwisa anotumira email ine faira yakaipa kana batanidzo, inoisa software yakaipa kana iye anogamuchira achidzvanya pairi.
Hackers vagara vachishandisa akajairwa uye akawandisa spam marongero ekushandisa yavo malware, nepo ichangopfuura rudzikunuro mishandirapamwe yanga ichinyanya kunanga.
Matsotsi anogona zvakare kukanganisa account yeemail yemunhu nekushandisa precursor malware, iyo inobvumidza cybercriminal kuti ishandise email account yemunhu akabiwa kuwedzera hutachiona. - Remote Desktop Protocol Kanganiso: RDP inzira yekuchengetedza network inogonesa vanhu kudzora zviwanikwa zvemakomputa nedata paInternet.
Vabiridzi vakashandisa nzira mbiri dzechisimba, humbowo-hwakavakirwa, kuwana humbowo hwevashandisi.
Ivo zvakare vakashandisa zvitupa zvakatengwa kubva kumisika ye darknet kuti vawane kusabvumidzwa RDP kupinda kune anotambudzwa masisitimu. Kana vangowana mukana weRDP, matsotsi anokwanisa kuendesa malware akasiyana siyana, kusanganisira rudzikunuro, kumasisitimu akakuvadzwa. - Software kusagadzikana: Vabiridzi vanogona kushandisa kushomeka kwekuchengetedzeka mumapurogiramu anonyanya kushandiswa esoftware kutora masimba ehurongwa uye nekushandisa rudzikunuro. Semuenzaniso, vabiridzi vachangobva kushandisa kushushikana mune maviri ekure manejimendi ekushandisa maturusi anoshandiswa nevatariri vevashandi vanopa (MSPs) kuendesa rudzikunuro pane yevatengi netiweki eanenge matatu maMSP.
CrowdStrike, cybersecurity technology kambani, vakawana kuti pakange paine kuwedzera kwakanyanya mukurwisa kwewareware yakanangana ne "mutambo mukuru."
Sezvo ivo vachiziva kuti avo vavanobata vane hanya nenguva yekuzorora, ivo vanowanzo bvira kubhadhara muripo zvisinei nemutengo werudzikinuro irworwo. Zvimwe zvingangotarisirwa zvinosanganisira:
Nezveutano
Makambani ekugadzira indasitiri
Managed services
Masangano ehurumende
Mukati megore rapfuura, paive nekuchinja kweparadigm munzira iyo mashandiro aya anoshanda. Vanoverengeka vavo ndakaona kuti kutanga kurwisa tafura hakusi bhizinesi rinobhadharasezvo makambani anowanzo shandisa mapikicha ekuchengetedza masisitimu akanganiswa kudzivirira kubhadhara rudzikunuro.
Mumwedzi ichangopfuura, muzviitiko zvakawanda, vamwe vanoshandisa rudzikunuro havana kunetsekana kunyorera nzvimbo dzekushandira y vakanyanya kunanga maseva akakosha mukati mekambani yekambani, achiziva kuti nekurwisa masisitimu aya kutanga, makambani aisazokwanisa kuwana yavo data.
Izvo izvo RudzikunuroEXX vanoshanda vari kugadzira vhezheni yeLinux Windowshlengware inoenderana neiyi tambo yekufunga, sezvo makambani mazhinji anogona kuve nemasisitimu emukati muLinux uye kwete nguva dzose muWindows Server.
mabviro: https://securelist.com