Okuqukethwe[Fihla][Bonisa]
Nakuba izigebengu zama-inthanethi eziningi zingamakhohlisi anekhono, lokhu akusho ukuthi zingabaqili bezobuchwepheshe abanekhono; ezinye izigebengu ze-inthanethi zikhetha umkhuba wokukhohlisa abantu.
Ngamanye amazwi, bamukela ubunjiniyela bezenhlalo, okuwumkhuba wokuqalisa ukuhlasela kwe-cyberattack ngokusebenzisa amaphutha emvelo yomuntu.
Esimeni esiqondile sobunjiniyela bezenhlalo, lokhu kungenzeka uma isigebengu se-inthanethi sizenza uchwepheshe we-IT futhi sikucele imininingwane yakho yokungena ukuze silungise imbobo yokuphepha kusistimu yakho.
Uma unikeza ulwazi, usanda kunikeza umuntu omubi ukufinyelela ku-akhawunti yakho ngaphandle kokuthi aze akhathazeke ngokufinyelela i-imeyili noma ikhompuyutha yakho.
Kuwo wonke uchungechunge lokuvikela, cishe siyisixhumanisi esibuthakathaka kakhulu njengoba sisengozini yobuqili obahlukahlukene. Izindlela zobunjiniyela bomphakathi ziphakamisa lobu bungozi kubantu ukuze bakhohlise izisulu ukuthi ziveze ulwazi oluyimfihlo.
Ubunjiniyela bezenhlalo buhlala buvela, njengoba kunjalo neningi lezinsongo ze-inthanethi.
Kulesi sihloko, sizoxoxa ngesimo samanje sobunjiniyela bezenhlalo, izinhlobo ezahlukene zokuhlasela okufanele uziqaphele, kanye nezimpawu eziyisixwayiso okufanele uziqaphele.
Ake siqale isingeniso sobunjiniyela bezenhlalakahle.
Yini Ubunjiniyela Bezenhlalakahle?
Ubunjiniyela bomphakathi kukhompyutha bubhekisela kumasu asetshenziswa izigebengu ze-inthanethi ukuze kuncenge izisulu ukuthi zenze isenzo esingabazisayo, esivame ukubandakanya ukwephulwa kwezokuphepha, ukudluliswa kwemali, noma ukudalulwa kolwazi lomuntu siqu.
Le misebenzi ivamise ukubekela inselele ingqondo futhi iphambene nokwahlulela kwethu okungcono.
Nokho, abakhwabanisi bangasenza siyeke ukucabanga ngendlela enengqondo futhi siqale ukwenza ngokuvumelana nomzwelo wemvelo ngaphandle kokucabanga ngalokho esikwenzayo ngempela ngokulawula imizwelo yethu—emihle nebi—njengolaka, ukwesaba, nothando.
Kalula nje, ubunjiniyela bezenhlalo yindlela abagebenguli abafaka ngayo engozini ubuchopho bethu, njengoba benza ngohlelo olungayilungele ikhompuyutha kanye namagciwane ukuze bafake imishini yethu engozini.
Abahlaseli bavamise ukusebenzisa ubunjiniyela bokuxhumana nabantu ngoba kuvamise ukuba lula ukusizakala ngabantu kunokukhomba ubuthaka benethiwekhi noma isofthiwe.
Ngenxa yokuthi izigebengu nezisulu zabo akudingeki baxhumane mathupha, ubunjiniyela bezenhlalo buhlala buyingxenye yomkhonyovu obanzi.
Ukuthola izisulu ku: ngokuvamile kuwumgomo omkhulu:
- Isofthiwe enobungozi ku-smartphone yabo.
- Yenqaba igama lakho lomsebenzisi nephasiwedi.
- Nikeza imvume ye-plugin eyingozi, isandiso, noma uhlelo lokusebenza lomuntu wesithathu.
- Thumela imali nge-oda lemali, nge-electronic fund transfer, noma amakhadi esipho.
- Dlala indima yomnyuzi wemali ukuze udlulise futhi ukhiphe imali engekho emthethweni.
Izindlela zobunjiniyela bomphakathi zisetshenziswa izigebengu ngoba kuvamise ukuba lula ukusizakala ngokuthambekela kwakho okungokwemvelo kokuthemba abanye kunokuthola indlela yokugebenga uhlelo lwakho.
Isibonelo, ngaphandle uma igama-mfihlo libuthakathaka ngempela, kulula kakhulu ukukhohlisa othile ukuthi akutshele iphasiwedi yakhe kunokuzama ukuligebenga.
Ngabe ubunjiniyela bezenhlalo busebenza kanjani?
Onjiniyela bezenhlalakahle benza ukuhlasela kwe-cyberattacks besebenzisa amasu ahlukahlukene. Iningi lokuhlaselwa konjiniyela bezenhlalo liqala ngokuthi umhlaseli enze ukuhlola nokucwaninga ngesisulu.
Isibonelo, uma okuhlosiwe kuyibhizinisi, umgebengu we-inthanethi angafunda mayelana nesakhiwo senkampani, izinqubo zangaphakathi, i-jargon yomkhakha, abangaba ozakwethu bebhizinisi, neminye imininingwane.
Ukugxila ezenzweni nasemikhubeni yabasebenzi abanokufinyelela okuphansi kodwa kokuqala, njengonogada noma umamukeli, kuyisu elilodwa elisetshenziswa onjiniyela bezenhlalakahle.
Abahlaseli bangakwazi ukusesha social media ama-akhawunti olwazi lomuntu siqu futhi abheke ukuziphatha kwabo kokubili ku-inthanethi nasomuntu siqu.
Unjiniyela wezenhlalo angasebenzisa ngokulandelayo ubufakazi obuqoqiwe ukuze ahlele ukuhlasela futhi asebenzise amaphutha atholwe ngesikhathi sesigaba sokuhlola.
Uma ngempela ukuhlasela kwenzeka, umhlaseli angathola amasistimu avikelwe noma amanethiwekhi, imali kokuhlosiwe, noma ukufinyelela kudatha eyimfihlo njengezinombolo Zokuvikeleka Komphakathi, imininingwane yekhadi lesikweletu, noma imininingwane yasebhange.
Izinhlobo ezijwayelekile zokuhlaselwa konjiniyela bezenhlalo
Ukufunda ngamasu ajwayelekile asetshenziswa kubunjiniyela bezenhlalo kungenye yamasu amakhulu kakhulu okuzivikela ekuhlaselweni konjiniyela bezenhlalo.
Namuhla, ubunjiniyela bokuxhumana nabantu buvamise ukwenzeka ku-inthanethi, okuhlanganisa nemikhonyovu yenkundla yezokuxhumana, lapho abahlaseli bethatha ubunikazi bomthombo othembekile noma isikhulu esiphezulu ukuze bakhohlise izisulu ukuze ziveze ulwazi olubucayi.
Nakhu okunye ukuhlaselwa konjiniyela bezenhlalo okuvamile:
I-Phishing
Ubugebengu bokweba imininingwane ebucayi uhlobo lwendlela yobunjiniyela bezenhlalo lapho ukuxhumana kufihlwa khona ukuze kubukeke sengathi kuvela emthonjeni othembekile.
Lokhu kuxhumana, okuvamise ukuba ama-imeyili, kuhloswe ngawo ukukhohlisa izisulu ukuze zidalule ulwazi lomuntu siqu noma lwezezimali.
Phela, kungani kufanele sisole ukuba semthethweni kwe-imeyili evela kumngane, ilungu lomndeni, noma inkampani esiyaziyo? Abakhwabanisi basebenzisa lokhu ukuzethemba.
Ukugebenga
I-Vishing wuhlobo oluyinkimbinkimbi lokuhlasela kobugebengu bokweba imininingwane ebucayi. Kwaziwa nangokuthi “ubugebengu bokweba imininingwane ebucayi bezwi.” Kulokhu kuhlasela, inombolo yocingo ivamise ukwenziwa umgunyathi ukuze ibonakale iyiqiniso - abahlaseli bangase bazenze izisebenzi ze-IT, osebenza nabo, noma amabhange.
Abanye abahlaseli bangase basebenzise abashintshi bezwi ukuze bafihle ubunikazi babo nakakhulu.
I-Spear phishing
Izinkampani ezinkulu noma abantu abathile bayizisulu zobugebengu bokweba imininingwane ebucayi ngomkhonto, uhlobo lokuhlasela konjiniyela bezenhlalo. Izinhloso zokuhlaselwa kobugebengu bokweba imininingwane ebucayi ngabantu abaqinile noma amaqembu amancane, njengabaholi bamabhizinisi kanye nezikhulu zomphakathi.
Lolu hlobo lokuhlasela konjiniyela bezenhlalo ngokuvamile lucwaningwa kahle futhi lufihlwe ngendlela ekhohlisayo, okwenza kube inselele ukulibona.
Ukubhema
I-Smishing iwuhlobo lokuhlasela kobugebengu bokweba imininingwane ebucayi olusebenzisa imilayezo yombhalo (SMS) njengendlela yokuxhumana. Ngokwethula ama-URL ayingozi ongawachofoza noma izinombolo zocingo ongazithinta, lokhu kuhlasela ngokuvamile kudinga isinyathelo esisheshayo kuzisulu zabo.
Izisulu zivame ukutshelwa ukuthi zinikeze ulwazi oluyimfihlo abahlaseli abangalusebenzisa ngokumelene nabo.
Ukuze kuncenge izisulu ukuthi zenze okuthile ngokushesha futhi ziwele ekuhlaselweni, ukuhlasela kwe-smishing ngokuvamile kubonisa umuzwa wokuphuthuma.
Scareware
Ukusetshenziswa kobunjiniyela bezenhlalo ukwethusa abantu ukuthi bafake isofthiwe yokuvikela mbumbulu noma bafinyelele amawebhusayithi anama-malware kwaziwa ngele-scareware.
I-Scareware ivamise ukubonakala njengamawindi e-pop-up anikezela ukukusiza ekuqedeni ukutheleleka ngekhompyutha okubizwa ngokuthi kukhompuyutha ephathekayo yakho. Ngokuchofoza i-pop-up, ungase ufake ungahlosile olunye uhlelo olungayilungele ikhompuyutha noma uthunyelwe kuwebhusayithi eyingozi.
Sebenzisa uhlelo oluthembekile lokuqeda igciwane ukuze uvamise ukuskena ikhompuyutha yakho uma ucabanga ukuthi une-scareware noma enye i-pop-up ephazamisayo. Kubalulekile ukuthi inhlanzeko yedijithali ihlole ngezikhathi ezithile idivayisi yakho ukuze ibone ubungozi.
Kungase futhi kusize ekuvikeleni ulwazi lwakho lomuntu siqu ngokuvimbela ukuhlaselwa konjiniyela bezenhlalo okuzayo.
Ukuluma
Ukuhlaselwa kobunjiniyela bezenhlalo nakho kungaqala ungaxhunyiwe ku-inthanethi; awaqaliswanga ku-inthanethi.
I-baiting umkhuba womhlaseli oshiya into etheleleke nge-malware, njengedrayivu ye-USB, endaweni ethile lapho ingase itholakale khona. Lawa madivayisi avame ukuphawulwa ngenjongo ukuze avuse isithakazelo.
Umsebenzisi ocosha igajethi futhi ayifake kukhompyutha yakhe ngenxa yelukuluku noma ukuhaha uzifaka engozini yokuthelela lowo mshini ngegciwane engahlosile.
Ukwelapha
Omunye wemizamo yobugebengu bokweba imininingwane ebucayi kakhulu, enemiphumela eyinhlekelele, uwumkhomo. Okuhlosiwe okujwayelekile kwalolu hlobo lokuhlasela konjiniyela bezenhlalo umuntu oyedwa, onenani eliphezulu.
Igama elithi "CEO fraud" ngezikhathi ezithile lisetshenziselwa ukuchaza umkhomo, okukunikeza inkomba yalokho okuhlosiwe.
Ngenxa yokuthi bathatha ngempumelelo ithoni yenkulumo efanelekile efana nebhizinisi futhi basebenzisa ulwazi lwemboni yangaphakathi ukuze bazuze, ukuhlasela komkhomo kunzima kakhulu ukukubona kunokunye ukuhlasela kobugebengu bokweba imininingwane ebucayi.
Ukuthumela umbhalo ngaphambilini
Ukwenza sengathi azenzisi kuyinqubo yokusungula isimo esingamanga, noma “izaba,” ezisetshenziswa amaqola ukuze akhohlise izisulu zabo.
Ukuhlaselwa kwe-pretexting, okungenzeka ungaxhunyiwe ku-inthanethi noma ku-inthanethi, kuphakathi kwezindlela eziphumelela kakhulu zobunjiniyela bezenhlalo ngoba abahlaseli benza umzamo omkhulu ukuze babonakale bethembekile.
Qaphela lapho udalula ulwazi oluyimfihlo kubantu ongabazi njengoba kungase kube nzima ukubona inkohliso yezaba.
Ukuze ugweme umzamo wobunjiniyela bezenhlalo, thintana nenkampani ngokuqondile uma othile ekushayela ucingo mayelana nesidingo esiphuthumayo.
Isicupho sezinyosi
I-honey trap iwuhlobo lwendlela yobunjiniyela bezenhlalo lapho umhlaseli eyengela isisulu esimweni socansi esingaphephile.
Umhlaseli ube esesebenzisa lesi simo ukuze enze ubugebengu noma enze izenzo zokudlwengula. Ngokuthumela ama-imeyili ogaxekile azenzisa okungamanga kokuthi “bekubona ngekhamera yakho” noma into enyanye ngendlela efanayo, onjiniyela bezenhlalo bavamise ukubeka izingibe zoju.
Uma uthola umlayezo ofana nalo, qiniseka ukuthi ikhamera yakho yewebhu ivikelekile.
Bese, hlala ubhaliwe futhi uyeke ukuphendula, ngoba lawa ma-imeyili awalutho ngaphandle kogaxekile.
I-Quid Pro Quo
IsiLatini sisho “into ethize,” kulesi sibonelo sibhekisela kohlukunyeziwe othola umvuzo ngenxa yokubambisana kwaso.
Umfanekiso omuhle kakhulu yilapho abaduni bezenza abasizi be-IT. Bazofonela abasebenzi abaningi ngangokunokwenzeka enkampanini futhi bathi banesixazululo esilula, bengeze ngokuthi "udinga kuphela ukukhubaza i-AV yakho."
Noma ubani onikezelayo kukho une-ransomware noma amanye amagciwane afakwe kukhompuyutha yakhe.
Ukuthunga
I-tailgating, eyaziwa nangokuthi i-piggybacking, kwenzeka lapho isigebengu silandela umuntu esebenzisa ikhadi elivumelekile lokufinyelela esakhiweni esivikelekile.
Ukuze kuqhutshekwe nalokhu kuhlasela, kucatshangelwa ukuthi umuntu onemvume yokungena esakhiweni angacabangela ngokwanele ukuba avulele lowo oza emva kwabo umnyango.
Ungakuvimbela kanjani ukuhlaselwa kweSocial Engineering?
Ngokusebenzisa lezi zinyathelo zokuvimbela, wena nabasebenzi bakho nizoba nethuba elingcono kakhulu lokugwema ukuhlaselwa konjiniyela bezenhlalo.
Fundisa abasebenzi
Isizathu esiyinhloko sokuhluleka kwabasebenzi ekuhlaselweni konjiniyela bezenhlalakahle ukungazi. Ukufundisa abasebenzi ukuthi basabela kanjani emizamweni yokwephulwa kwemithetho evamile, izinhlangano kufanele zinikeze ukuqeqeshwa kokuqwashisa ngezokuphepha.
Ngokwesibonelo, yini okufanele uyenze uma othile ezama ukuhlanganisa isisebenzi endaweni yokusebenza noma ecela ulwazi olubucayi.
Okunye kokuhlasela kwe-inthanethi okuvamisile kuchazwe ohlwini olungezansi:
- Ukuhlaselwa kwe-DDoS
- Ukuhlaselwa kwe-Phishing
- Ukuhlasela kwe-Clickjacking
- Ukuhlaselwa kweRansomware
- Ukuhlaselwa kwe-Malware
- Ungaphendula kanjani ekuthungeni umsila
Hlola Ukumelana Nokuhlasela
Yenza ukuhlasela kobunjiniyela bomphakathi okulawulwayo enkampanini yakho ukuze uyihlole. Thumela ama-imeyili obugebengu bokweba imininingwane ebucayi, futhi ukhuze ngobumnene abasebenzi abavula izinanyathiselwa, chofoza izixhumanisi eziyingozi, noma sabelani.
Esikhundleni sokubonwa njengokwehluleka kwe-cybersecurity, lezi zimo kufanele zibonwe njengezimo ezifundisa kakhulu.
Ukuphepha Kokusebenza
I-OPSEC iyindlela yokubona ukuziphatha okunobungani okungase kube usizo kumhlaseli wesikhathi esizayo. I-OPSEC ingadalula idatha ebucayi noma ebalulekile uma icutshungulwa ngokufanelekile futhi iqoqwe nenye idatha.
Ungakhawulela inani lolwazi onjiniyela bezenhlalakahle abangaluthola ngokusebenzisa izinqubo ze-OPSEC.
Thola Ukuvuza Kwedatha
Ukwazi ukuthi izifakazelo zivezwe ngenxa yomzamo wobugebengu bokweba imininingwane ebucayi kungaba inselele.
Inkampani yakho kufanele ihlale isesha ukuvezwa kwedatha kanye nemininingwane eputshuziwe ngoba abanye abaphihli bangase bathathe izinyanga noma ngisho neminyaka ukuze baxhaphaze izifakazelo abaziqoqayo.
Sebenzisa ukuqinisekiswa kwezinto eziningi
Sebenzisa indlela yokuqinisekisa yezinto eziningi edinga abasebenzisi ukuthi babe nethokheni, bazi iphasiwedi, futhi babe ne-biometrics yabo ukuze bathole ukufinyelela kuzinsiza ezibalulekile.
Sebenzisa uhlelo lokulawula ubungozi lwenkampani yangaphandle
Ngaphambi kokuletha abathengisi abasha noma ukuqhubeka nokusebenza nabahlinzeki bamanje, yakha uhlelo lokulawula ubungozi bezinkampani zangaphandle, inqubomgomo yokuphatha abathengisi, futhi wenze ubungozi be-cybersecurity ukuhlolwa.
Ikakhulukazi ngemuva kokuthi idatha eyebiwe idayisiwe kuwebhu emnyama, kulula kakhulu ukugwema ukuphulwa kwedatha kunokuyihlanza.
Thola isofthiwe engaphatha ngokuzenzakalela ubungozi bomthengisi futhi ulandelele njalo, ulinganise, futhi uhlole ukuphepha kwe-inthanethi kwabathengisi bakho.
Lungisa izintandokazi zakho ze-imeyili yogaxekile.
Ukushintsha izilungiselelo zakho ze-imeyili kungenye yezindlela ezilula zokuzivikela emizamweni yobunjiniyela bezenhlalo. Ungathuthukisa izihlungi zakho zogaxekile ukuze ugcine ama-imeyili omkhonyovu wobunjiniyela bezenhlalo engekho ebhokisini lakho lokungenayo.
Ungakwazi futhi ukwengeza amakheli e-imeyili abantu ngabanye nezinhlangano ozaziyo ukuthi zingokoqobo ohlwini lwakho loxhumana nabo bedijithali - noma ubani ozenza ilabo kodwa esebenzisa ikheli elihlukile esikhathini esizayo kungenzeka ukuthi ungunjiniyela wezenhlalo.
Isiphetho
Okokugcina, ubunjiniyela bezenhlalo buyindlela elula engasetshenziswa ukwenza ukukhwabanisa, ukukhwabanisa, noma obunye ubugebengu. Ingenzeka kunoma ubani mathupha, ngocingo, noma ku-inthanethi.
Onjiniyela bezenhlalakahle akudingeki babe ngobuchwepheshe kakhulu; badinga kuphela ukukwazi ukukukhohlisa ukuthi ubanikeze ulwazi oluyimfihlo.
Kuwubuqili obungase bube yinhlekelele njengoba sonke sisengozini. Inkundla yezokuxhumana iphinde yasiza onjiniyela bezenhlalo ukuthi babe nobuqili ngokwengeziwe ngokubavumela ukuthi bakhe ama-akhawunti angamanga okulula ukuwenza ngephutha awangempela noma azenze abantu bangempela.
Njalo sebenzisa ukuqapha ngenkathi ubona amaphrofayili angajwayelekile noma angajwayelekile ezinkundleni zokuxhumana.
shiya impendulo