Babu shakka cewa intanit ta zama abin da babu makawa a cikin rayuwar zamani. Kowace minti, muna aika imel miliyan 197.6, muna kashe dala miliyan 1.6 akan layi, kuma muna zazzage aikace-aikacen sama da 415,000 a matsayin yawan jama'a.
Koyaya, kodayake yawan karuwar amfani da intanet ɗinmu yana ba mu sadarwa mara iyaka, koyo, da zaɓuɓɓukan fasaha, yana kuma fallasa mu ga ɗimbin haɗari na tushen yanar gizo.
Mun tattara bayanan tsaro na kan layi na baya-bayan nan daga ko'ina cikin duniya don taimaka muku fahimtar iyaka da tsananin haɗarin da ke fuskantar kamfanin ku. Waɗannan alkalumman sun dogara ne akan bincike da wallafe-wallafen ɓangare na uku. Don haka, bari mu fara.
Menene yawan hare-hare na tushen yanar gizo?
Bisa lafazin Binciken kwanan nan na Verizon, hare-haren aikace-aikacen yanar gizo yana da kashi 26% na duk karya, wanda ya sa su zama na biyu mafi yawan hare-hare.
Koyaya, shirye-shirye ba shine kawai tushen haɗari akan intanit ba. Harin neman duniya ya karu sosai a cikin 2020, tare da karuwa a lokuta da yawa yayin kulle-kullen cutar ta COVID-19.
Yanzu, yayin da duniya ke rungumar hangouts na kama-da-wane da dandamali na yawo na fim don nishaɗi, da kuma fasahar taron bidiyo don yin hulɗa tare da abokan aikin nesa, waɗannan manyan matakan amfani da intanet na duniya ba su nuna alamun raguwa ba.
Yayin da intanit ta taimaka wa kamfanoni da yawa su ci gaba da haɓaka aiki yayin da suke canzawa zuwa nesa kuma, kwanan nan, aikin haɗin gwiwa, dogaronmu da shi ya sa ya zama manufa mai mahimmanci ga maharan, waɗanda suka mayar da hankali kan ƙoƙarin su don cin gajiyar raunin yanar gizo.
A cewar SiteLock, dangane da wani jarrabawar gidajen yanar gizo miliyan 7, gidajen yanar gizon yanzu ana fuskantar matsakaita na hare-hare 94 a kowace rana kuma ana samun dama ta hanyar bots kusan sau 2,608 kowane mako. Masu aikata laifukan intanet suna amfani da waɗannan bots don bincika gidajen yanar gizo don rashin ƙarfi da aiwatar da tsarin kai hari mai sauƙi kamar rarraba rarrabawar sabis (DDoS) da hare-hare-ƙura.
Tare da tuhume-tuhumen bots da yawa tare da gano rauni, ba abin mamaki ba ne—ko da yake duk da haka ba shi da daɗi—cewa an yi kiyasin gidajen yanar gizo miliyan 12.8 a duk duniya suna kamuwa da malware.
URLs tushen Aikace-aikacen Yanar Gizo
Manyan ƙasashe goma da ke karɓar yawancin URLs masu haɗari, bisa ga wani bincike na kwanan nan, sune:
- Amurka
- Rasha
- Jamus
- Singapore
- Koriya ta Kudu
- Denmark
- Sin
- Japan
- Canada
- The Netherlands
Botnets, keyloggers, da saka idanu, shafukan malware, phishing, gujewa wakili da masu ɓoyewa, spam, kayan leken asiri, da adware suna cikin manyan URLs masu haɗari waɗanda aka rarraba a cikin wannan binciken.
Waɗannan su ne manyan rukunin rukunin yanar gizon da ke ɗaukar URLs masu mugun nufi:
- Manya (9.43% sun dauki bakuncin URL mara kyau)
- Nishaɗi (8.63%)
- Magunguna (7.66%)
- Masana'antu (19.87%)
- Shareware/torrents (11.84%)
- Hanyoyin sadarwar zamantakewa (8.71%)
- Mai gyara hanyar haɗin URL (5.81%)
- Sauran (28.06%)
Cibiyoyin Kuɗi da aka yi niyya da hare-haren Yanar Gizo
A cikin 2020, sama da hare-haren yanar gizo sama da miliyan 736 a kan cibiyoyin hada-hadar kudi ne aka yi rajista, daga cikin jimillar hare-haren yanar gizo biliyan 6.3 a waccan shekarar. Hada fayil ɗin gida shine nau'in harin yanar gizo da aka fi sani, wanda ya kai kashi 52 cikin ɗari na duk hare-hare, sannan harin allurar SQL ya biyo baya, wanda ya kai kashi 33. Kashi 9 cikin ɗari na hare-haren sun kasance rubutun giciye.
malware na tushen yanar gizo
Malware yana da hannu cikin fiye da kashi 70% na duk keta kutsawa tsarin, kuma kashi 32% na duk malware ana yada su akan intanet.
Wadannan su ne manyan hatsarori da aka gano akan gidajen yanar gizo masu kamuwa da malware:
- Fishing (7%)
- Lalacewa (6%)
- SEO spam (5%)
- Bayan gida (65%)
- Mai satar fayil (48%)
- Buƙatun ƙeta (22%)
- Rubutun Shell (22%)
- Injector (21%)
- Cryptominer (<1%)
phishing na tushen yanar gizo
Baya ga ƙin yarda da tambayoyin da ke da alaƙa da malware, fasahar tsaro ta yanar gizo ta Akamai ta kuma hana buƙatun masu alaƙa 6,258,597 da kuma ba da bayanai game da abubuwan da suka faru na phishing.
Dandalin, kuɗi, sabis na duniya, ofishin CIO, tallace-tallace na kan layi da sassan tallace-tallace, da kuma goyon bayan su, kafofin watsa labaru, da ƙungiyoyi masu ɗaukar kaya, sun kasance mafi yawan sassan kasuwanci na phished, bisa ga binciken. Duk da cewa wannan adadi ya yi ƙasa da adadin tambayoyin da suka shafi malware da aka ƙi. Kididdigar Binciken Lafiyar Google ya nuna cewa akwai kusan sau 75 yawan rukunin yanar gizo na phishing kamar yadda ake samun rukunin malware.
Wannan yana jaddada girman barazanar da ke tattare da ita injiniyan zamantakewa: Cin zarafi na zamantakewa, irin su phishing, suna da kashi 25% na duk keta haddi. Webmail da Software-as-a-Service (SaaS) masu amfani da yanar gizo sune makasudin mafi yawan yunƙurin satar bayanan sirri, bisa ga wani bincike na baya-bayan nan, wanda ya kai kashi 34.7% na duk ƙoƙarin ƙwace.
Yawan cin zarafin imel ɗin kasuwanci (BEC) da aka ƙaddamar ta hanyar masu samar da saƙon gidan yanar gizo kyauta ya karu da 11% a cikin shekarar da ta gabata, daga 61% zuwa 72%, a cewar rahoton guda. Sama da rabin wadanda suka kaddamar da hari ne suka yi amfani da Gmail.
Cire Bayanai Daga Hare-Haren Fishing
Kashi 90 cikin 2021 na keta bayanan ana haifar da su ne ta hanyar hare-haren phishing, a cewar Cisco's XNUMX Cybersecurity. Bincike Trends na barazana. Masu amfani sune mafi raunin hanyar haɗin yanar gizo a cikin sarkar tsaro, don haka yawancin hare-hare ana mayar da hankali a kansu. Masu satar bayanai sun fi kai hari kan motsin zuciyar mutum ko rashin fahimta fiye da kurakuran tsarin, kamar yadda shaharar hanyoyin injiniyan zamantakewa ke nunawa.
A farashin karya bayanai ya kai dalar Amurka miliyan 4.24. Wannan lambar tana nuna rarrabuwar kawuna tsakanin kamfanoni masu amfani da hanyoyin tsaro na zamani da waɗanda ba sa. Wannan yana nuna cewa farashin saɓawar bayanai ya yi ƙasa kaɗan ga kamfanoni waɗanda ke da tsarin gine-ginen tsaro na yau da kullun, amma yana iya zama bala'i ga waɗanda ba su da shi.
A cewar wannan binciken, hare-haren muggan kwayoyi sun kai kashi 52 cikin 4.27 na keta haddi, kuma wadannan laifukan sun kai kimanin dala miliyan 4.52, wanda ya zarta yadda ake sabawa bayanan. Saboda hanyar fansa da hare-haren malware masu lalata, sun fi tsada fiye da harin da aka saba yi. Hare-haren munanan hare-hare da ke gogewa ko lalata bayanai sun kai kimanin dala miliyan 4.44, yayin da harin ransomware ya kai dala miliyan XNUMX.
Kammalawa
Tarin saman kai hari da hanyoyin rage matakan kariya web aikace-aikace tsaro. Kare aikace-aikacen gidan yanar gizo tare da hanya ɗaya ko a mataki ɗaya na tarin bai wadatar ba. Rashin lahani a cikin dandamali ko ƙa'idodi kamar TCP ko HTTP na iya zama kamar ɓarna ga tsaro da samuwar aikace-aikacen kamar hare-hare kan shirin kansa.
Don cimma kyakkyawar manufa web aikace-aikace yanayin tsaro, ana buƙatar ɗaukacin matakan sassautawa. Yana da kyau a lura cewa cikakkiyar dabara tana buƙatar daidaitawa a cikin hanyar sadarwa, tsaro, ayyuka, da ƙungiyoyin ci gaba tunda kowannensu yana da alhakin taka rawa wajen kiyaye aikace-aikace da mahimman bayanansu.
Leave a Reply