Una amanga amakhulu nezinsumansumane esivame ukuzizwa futhi ukufunda kaningi yilokho ku "Linux awekho amagciwane", "I-Linux ayiyona into ehloselwe abaduni" nezinye izinto ezihlobene "ne-Linux ayivikelekile", okungamanga ngokuphelele ...
Kuthiwani uma singabeka iqiniso elingaphelele namanga, ukuthi i-Linux ayinalo inani elifanayo le-malware nokuhlaselwa ngabaduni. Lokhu kungenxa yesizathu esilula futhi esilula, ngoba emakethe ye-linux ayimeli ngisho ne-10% yawo wonke amakhompyutha wedeskithophu, ngakho-ke ngokuyisisekelo akuyona inzuzo (okushoyo) ukuchitha isikhathi esiningi nomzamo.
Kodwa kude nakho, lokho akubekanga ithoni inani lokutheleleka nge-malware eqondiswe kumadivayisi e-Linux liyaqhubeka nokukhuphuka futhi kungenxa yokuthi lokho okwakungu-2021 inani lenyuke ngo-35% futhi lokhu kungenxa yokuthi amadivayisi e-IoT abikwa kaningi ngokuhlaselwa kwe-DDoS (ukunqatshelwa kwesevisi okusatshalaliswa).
Ama-IoT ngokuvamile angamadivayisi "ahlakaniphile" anamandla aphansi asebenzisa ukusatshalaliswa kweLinux okuhlukahlukene futhi akhawulelwe ekusebenzeni okuthile. Kodwa noma kunjalo, lapho izinsiza zabo zihlanganiswa zibe ngamaqembu amakhulu, zingaqalisa ukuhlasela okukhulu kwe-DDoS ngisho nakungqalasizinda evikelwe kahle.
Ngokungeziwe ku-DDoS, amadivayisi we-Linux IoT abuthelwa emayini ye-cryptocurrency, aqhubekisele phambili imikhankaso yogaxekile, enze njengama-relay, asebenze njengamaseva womyalo nokulawula, noma asebenze njengamaphoyinti okungena kumanethiwekhi wedatha.
Umbiko ovela ku-Crowdstrike ukuhlaziya idatha yokuhlasela kusuka ku-2021 kufingqa okulandelayo:
- Ngo-2021, kube nokukhuphuka okungama-35% kohlelo olungayilungele ikhompuyutha oluqondiswe kuzinhlelo ze-Linux uma kuqhathaniswa no-2020.
- I-XorDDoS, i-Mirai, ne-Mozi kwakuyimindeni eyayidlange kakhulu, ibala u-22% wakho konke ukuhlaselwa kwe-malware okuqondiswe ku-Linux okwabonwa ngo-2021.
- I-Mozi, ikakhulukazi, ibone ukukhula okukhulu kwebhizinisi, namasampuli aphindwe kashumi azungeza onyakeni odlule uma kuqhathaniswa nonyaka odlule.
- I-XorDDoS iphinde yabona ukwanda okumangazayo okungu-123% unyaka nonyaka.
Ngaphezu kwalokho, inikeza incazelo emfushane evamile yohlelo olungayilungele ikhompuyutha:
- I-XordDoS: iyiThrojani yeLinux esebenza ngezindlela eziningi esebenza kuzakhiwo eziningi zesistimu ye-Linux, ukusuka ku-ARM (IoT) kuye ku-x64 (amaseva). Isebenzisa ukubethela kwe-XOR kwezokuxhumana kwe-C2, yingakho igama layo. Lapho uhlasela amadivaysi e-IoT, i-brute phoqa amadivayisi asengozini ye-XorDDoS nge-SSH. Emishinini ye-Linux, sebenzisa i-port 2375 ukuze uthole ukufinyelela kwezimpande ezingenaphasiwedi kumsingathi. Icala eliphawulekayo lokusatshalaliswa kohlelo olungayilungele ikhompyutha lwaboniswa ngo-2021 ngemva kokuba umlingisi waseShayina owayesabisa owaziwa ngokuthi “uWinnti” ebonwe ewusebenzisa kanye namanye ama-spin-off botnets.
- I-Mozi: iyi-botnet ye-P2P (peer-to-peer) ethembele ohlelweni lwe-Distributed Hash Table Lookup (DHT) ukufihla ukuxhumana okusolisayo kwe-C2 ezisombululweni zokuqapha ithrafikhi yenethiwekhi. Le botnet ethile isinesikhathi eside ikhona, iqhubeka yengeza ubungozi obusha futhi yandisa ukufinyelela kwayo.
- Bheka: i-botnet edume kabi eveze izimfoloko eziningi ngenxa yekhodi yomthombo etholakala esidlangalaleni futhi isaqhubeka nokuhlupha umhlaba we-IoT. Okuphuma kokunye okuhlukile kusebenzisa izivumelwano zokuxhumana ezihlukene ze-C2, kodwa zonke zivame ukusebenzisa kabi izifakazelo ezibuthakathaka ukuze ziziphoqelele kumadivayisi.
Izinhlobo ezimbalwa eziphawulekayo ze-Mirai zahlanganiswa ngo-2021, njengokuthi "i-Dark Mirai," egxile kumarutha asekhaya, kanye ne-"Moobot," eqondise amakhamera.
"Ezinye zezinhlobonhlobo ezivame kakhulu ezilandelwa abacwaningi be-CrowdStrike zibandakanya i-Sora, IZIH9, ne-Rekai," umcwaningi we-CrowdStrike u-Mihai Maganu uyachaza embikweni. "Uma kuqhathaniswa no-2020, inani lamasampula akhonjwe kulezi zinhlobonhlobo ezintathu lenyuke ngo-33%, 39%, no-83%, ngokulandelana, ngo-2021."
Okutholwe yi-Crowstrike akumangazi, kusukela qinisekisa umkhuba oqhubekayo ovele eminyakeni edlule. Isibonelo, umbiko we-Intezer obheka izibalo zika-2020 wathola ukuthi imindeni e-malware ye-Linux ikhule ngo-40% ngo-2020 uma kuqhathaniswa nonyaka odlule.
Ezinyangeni zokuqala eziyisithupha zika-2020, kube nokukhuphuka okukhulu okungu-500% kuhlelo olungayilungele ikhompuyutha e-Golang, okubonisa ukuthi ababhali bohlelo olungayilungele ikhompuyutha bafuna izindlela zokwenza ikhodi yabo isebenze ezinkundleni eziningi.
Lolu hlelo, kanye nokwengeza ukuthambekela kokukhomba, sekuqinisekisiwe ezimweni zasekuqaleni kuka-2022 futhi kulindeleke ukuthi kuqhubeke ngaphandle kokuphazanyiswa.
Umthombo: https://www.crowdstrike.com/
umehluko ukuthi usuku oluyiziro ku-linux luvame ukupeshwa ngaphansi kwesonto (ikakhulukazi) futhi kumafasitela ezinye azixazululeki.
Umehluko ukuthi uhlelo lwezimvume ze-Linux kanye nezakhiwo kwenza kube nzima kakhulu ukuthola izimvume eziphakeme ku-akhawunti yomsebenzisi...
Futhi umehluko ukuthi iningi lalo msebenzi wenziwa amavolontiya omthombo ovulekile hhayi izinkampani ezinkulu ezakha ikhodi yobunikazi ukuze basifihlele okwenzeka ngaphansi. I-Opensource ifundeka kalula.
Kodwa hey, uqinisile ngento eyodwa, uma abasebenzisi bakho bekhula, izinsiza zokubahlasela futhi uhlole ubungozi bazokwanda uma ungathola imbuyiselo yezomnotho ngayo.
Ngakho-ke kuyizindaba ezinhle ukuthi uhlelo olungayilungele ikhompuyutha lweLinux luyakhula. :)
Futhi ku-IoT kuzoba ngu-100% iphutha lomkhiqizi, isichibi samarutha amaningi we-Xiaomi asebenzisa i-OpenWRT sakhululwa ezinsukwini ezi-2 ngemuva kokungenwa yi-Mirai, i-Xiaomi ibuyekezwa njalo ngesonto. Ezinye eziningi ezifana ne-TP-Link eziphinda zisebenzise i-OpenWRT azikaze zibuyekezwe
Kuze kube yimanje kunemishini yokuwasha ehlaselwe yi-Mirai futhi ayivuselelwa, kuyisiqeshana nje okufanele basikhiphe.
Njengoba kwenzeka ngamaseva e-HP, awakaze apeshe i-Java futhi kwaba sengozini embozwe eminyakeni emi-2 edlule