Hapana kupokana kuti internet yave chinhu chakakosha muhupenyu hwazvino. Maminiti ese, tinotumira maemail miriyoni 197.6, kushandisa 1.6 miriyoni emadhora online, uye kudhawunirodha pamusoro pe415,000 maapplication sehuwandu.
Zvakadaro, kunyangwe mashandisiro atinoita dandemutande anoramba achiwedzera achitipa kutaurirana, kudzidza, uye tekinoroji sarudzo, zvinotiisa pachena kune njodzi dzakawanda dzepawebhu.
Takaunganidza ichangoburwa dhata rekuchengetedzwa kwepamhepo kubva pasirese kuti tikubatsire kunzwisisa kukura uye kuoma kwenjodzi dziri kusangana nekambani yako. Huwandu uhu hwakavakirwa paongororo nezvinyorwa zvevechitatu. Saka, ngatitangei.
Ndeapi kuwanda kwekurwiswa kwewebhu-based?
Maererano ne Ongororo yazvino yeVerizon, Kurwiswa kwewebhu application account ye26% yekutyorwa kwese, zvichiita kuti ive yechipiri inowanzoitika maitiro ekurwisa.
Nekudaro, mapurogiramu haasiriwo ega engozi painternet. Global search traffic yakakura zvakanyanya muna 2020, nemaspikes achiitika kazhinji panguva yeCOVID-19 denda rekuvhara.
Ikozvino, sezvo pasi rose richimbundikira chaiwo hangouts uye mapuratifomu ekutepfenyura bhaisikopo ekutandara, pamwe nemavhidhiyo musangano matekinoroji ekubatana nevaunoshanda navo kure, aya mazinga epamusoro ekushandiswa kweinternet pasi rose haaratidze zviratidzo zvekudzikira.
Nepo internet yakabatsira mabhizinesi mazhinji kuchengetedza budiriro pavanenge vachichinjira kuenda kure uye, nguva pfupi yadarika, basa remasanganiswa, kuvimba kwedu kwairi kwaita chinangwa chakakosha kune vanorwisa, vakaisa nhamburiko dzavo pakushandisa kushaya simba kwewebhu.
Maererano neSiteLock, yakavakirwa pane kuongororwa kwemamiriyoni manomwe emawebhusaiti, mawebhusaiti ikozvino akaiswa kune avhareji yekurwiswa kwe94 pazuva uye anowanikwa ne bots kutenderedza 2,608 nguva vhiki yega yega. MaCybercriminals anoshandisa mabhoti aya kutsvaga kusasimba kwemawebhusaiti uye kuita maitiro akareruka ekurwisa akadai sekuparadzirwa kwekurambwa kwesevhisi (DDoS) uye kurwiswa kwezvitupa.
Nemabhoti akawanda ane mhosva yekuwana kushaya simba, hazvishamisi-zvisinei zvisingafadzi-kuti inofungidzirwa mamiriyoni 12.8 mawebhusaiti pasi rose ane utachiona hwemarware.
Webhu application yakavakirwa maURL
Nyika gumi dzepamusoro dzinotambira ruzhinji rweakanyanya-njodzi maURL, maererano a ongororo ichangopfuura, nde:
- USA
- Rashiya
- Jerimani
- Singapowo
- Chammhembe Koria
- Dhenimaki
- China
- Japani
- Kanadha
- The Netherlands
Botnets, keyloggers, uye monitoring, malware sites, phishing, proxy avoidance uye anonymizers, spam, spyware, uye adware ndevamwe vepamusoro-soro ma URL akaiswa mukutsvakurudza uku.
Aya anotevera ndiwo epamusoro saiti mapoka anotambira hutsinye maURL:
- Vakuru (9.43% vane URL yakaipa)
- Varaidzo (8.63%)
- Mushonga (7.66%)
- Kugadzira (19.87%)
- Shareware/torrents (11.84%)
- Social network (8.71%)
- URL yekubatanidza inogadzirisa (5.81%)
- Zvimwe (28.06%)
Financial Institution yakanangwa neWeb Attacks
Muna 2020, zvinopfuura 736 miriyoni kurwisa masangano emari zvakanyoreswa, kubva pahwerengedzo ye6.3 bhiriyoni kurwiswa kwewebhu gore iroro. Kuiswa kwemafaira emunharaunda ndiyo yaive yakajairika mhando yekurwiswa kwewebhu, ichiverengera makumi mashanu neshanu muzana ezvese kurwiswa, ichiteverwa neSQL jekiseni kurwiswa, iyo yakaverengera makumi matatu nenhatu muzana. 52 muzana yekurwiswa kwacho kwaive kuyambuka-saiti scripting.
Webhu-yakavakirwa malware
Malware inobatanidzwa mune inopfuura 70% yeese system intrusion kutyora, uye 32% yeese malware inopararira pamusoro peinternet.
Idzi dzinotevera ndidzo njodzi huru dzakawanikwa pamawebhusaiti ane malware:
- Phishing (7%)
- Defacement (6%)
- SEO spam (5%)
- Kuseri (65%)
- Faira hacker (48%)
- Chikumbiro chakashata (22%)
- Shell script (22%)
- Injector (21%)
- Cryptominer (<1%)
Webhu-based phishing
Pamusoro pekuramba mibvunzo ine chekuita nemalware, tekinoroji yeAkamai yewebhu yekuchengetedza yakadzivirirawo 6,258,597 zvikumbiro zvine chekuita ne phishing uye yakapa ruzivo nezve zviitiko zvavo zvekubira.
Ipuratifomu, mari, masevhisi epasirese, hofisi yeCIO, kutengesa kwepamhepo uye zvikamu zvekushambadzira, pamwe nerutsigiro rwavo, midhiya, uye zvikwata zvevatakuri, ndiwo aive mabhizinesi ephished zvakanyanya, maererano netsvagiridzo. Kunyangwe chokwadi chekuti nhamba iyi idiki pane huwandu hwemibvunzo ine chekuita nemalware yakarambwa, Google Safe Browsing statistics ratidza kuti pane kanosvika makumi manomwe neshanu seakawanda mawebhusaiti ephishing pawebhusaiti sezvo kune malware masaiti.
Izvi zvinosimbisa ukuru hwetyisidziro inounzwa nayo social engineering: Kurwiswa kwevanhu munharaunda, kwakadai se phishing, kunokonzeresa 25% yekutyorwa kwese. Vashandisi veWebmail uye Software-as-a-Service (SaaS) ndivo vavariro yekuedza kwehutsotsi kwakanyanya, maererano neongororo ichangoburwa, inoverengera 34.7% yezvese kuedza kwe phishing.
Kuwanda kwebhizinesi email compromise (BEC) kurwiswa kwakatangwa kuburikidza nemahara webmail vanopa kwakawedzera ne11% mugore rapfuura, kubva pa61% kusvika 72%, maererano neshumo imwechete. Gmail yakashandiswa nevanopfuura hafu yeavo vakatanga kurwisa.
Data Kutyora kubva kuPhishing Attacks
90 muzana yekutyorwa kwedata kunokonzerwa nekurwiswa kwehutsotsi, maererano neCisco's 2021 Cybersecurity. Threat Trends research. Vashandisi ndivo chinongedzo chisina kusimba mucheni yekuchengetedza, nekudaro kurwiswa kwakawanda kwakanangana navo. MaHackers anonangidzira manzwiro evanhu kana kusagadzikana kakawanda kupfuura kukanganisa kwehurongwa, sezvinoratidzwa nemukurumbira wesocial engineering maitiro.
A mari yekutyora data avhareji ye4.24 mamiriyoni emadhora. Nhamba iyi inoratidza kusiyana kwemitengo kuri kuramba kuchiwedzera pakati pemafemu anoshandisa nzira dzechizvino-zvino dzekuchengetedza neavo vasingashandisi. Izvi zvinoreva kuti mutengo wekutyorwa kwedata wakadzikira zvakanyanya kumakambani ane hurongwa hwekuchengetedza dhizaini munzvimbo, asi zvinogona kuve njodzi kune avo vasina.
Maererano neongororo imwecheteyo, kurwiswa kwakashata kunokonzeresa 52 muzana yekutyorwa, uye kutyora uku kunodhura avhareji yemadhora 4.27 miriyoni, iyo inodarika iyo yakajairwa kutyora data. Nekuda kwenzira iyo ransomware uye inoparadza malware kurwiswa kunoparadza data, inodhura kupfuura yakajairika kurwisa kunokuvadza. Kurwiswa kwakashata kunodzima kana kuparadza data kunodhura avhareji yemadhora 4.52 miriyoni, nepo kurwiswa kweransomware kuchidhura avhareji yemadhora 4.44 miriyoni.
mhedziso
Murwi wenzvimbo dzekurwisa uye nzira dzekudzivirira dzekudzikisa zvinogadzira webhu kunyorera chengetedzo. Kuchengetedza maapplication ewebhu neimwe nzira kana pane imwe tier yestack hakuna kukwana. Kusagadzikana papuratifomu kana maprotocol akaita seTCP kana HTTP anogona kungokuvadza kuchengetedzeka kweapp uye kuwanikwa sekurwiswa pachirongwa pachacho.
Kuti uwane zvakanaka webhu kunyorera kuchengetedzwa kwemaitiro, murwi wakazara wematanho ekudzikisa anodiwa. Izvo zvakakosha kuti tizive kuti zano rakazara rinoda kurongeka kunetiweki, chengetedzo, mashandiro, uye zvikwata zvekusimudzira sezvo chimwe nechimwe chine basa rekutamba mukuchengetedza maapplication uye data ravo rakakosha.
Leave a Reply