Olu hlaselo lusizi ngenxa yokuba luyi-2 enkulu yokuhlaselwa i-ransomware kwiinyanga ezimbini, eziye zachaphazela iinkampani kwihlabathi lonke. Uyakhumbula ukuba ngoMeyi, iNkonzo yezeMpilo kaZwelonke, i-NHS, eBrithani, ikhuselwe yi-malware ebizwa ngokuthi iWannaCry. Le nkqubo yathintela i-NHS kunye nezinye iintlangano emhlabeni wonke. I-WannaCry yaveliswa kuqala kuluntu xa amaxwebhu aqoshiwe ahlobene ne-NHS akhululwa kwi-intanethi ngabagxeki ababizwa ngokuba yi-Shadow Brokers ngo-Ephreli.
I-WannaCry software, ebizwa ngokuba yiWannaCrypt, ithintele kwiikhompyutha ezingama-230 000, ezafumaneka kumazwe angaphezu kwe-150 kwihlabathi lonke. Ukongeza kwi-NHS, Telefonica, inkampani yefowuni yaseSpeyin, kunye neendlela zomzila zaseJamani nazo zahlaselwa.
Efana neWannaCry, "iPetya" isasazeka ngokukhawuleza kwiintanethi ezisetyenziswa kwiWindows Windows. Umbuzo, nangona kunjalo, yintoni na? Sifuna nokuba siyazi ukuba kutheni kwenzekayo kwaye ingaba ingayeka njani.
Yintoni iRansomware?
Into yokuqala kufuneka uyiqonde yintetho ye- ransomware . Ngokwenene, i-ransomware nayiphi na uhlobo lwe-malware esebenzayo ukuvimba ukufikelela kwakho kwikhompyutha okanye idatha. Emva koko, xa uzama ukufikelela kule khomputha okanye idatha kuyo, awukwazi ukufikelela kuyo ngaphandle kokuba uhlawule intlawulelo. Okuhle kakhulu, kunye nokuthe tye!
Iintlawulelo Zisebenza njani?
Kwakhona kubalulekile ukuqonda indlela i-ransomware isebenza ngayo. Xa ikhompyutha ikhuselwe yi-ransomware, iya kubhala. Oku kuthetha ukuba amaxwebhu kwikhomputha yakho avaliwe, kwaye awukwazi ukuwavula ngaphandle kokuhlawula intlawulelo. Ukuqhubekisa phambili izinto, ihlawulelo kufuneka lihlawulwe kwiBitcoin, ingabi yimali, ukuze ukhethe iifayile yedijithali ongayisebenzisa ukuvula iifayile. Ukuba awunakho ukugcinwa kweefayili zakho, unokhetho olubini: unokuhlawulela intlawulelo, okuqhelekileyo i-dollar eziliqela kwiiyure eziliwaka, okanye ulahlekelwa ukufikelela kuzo zonke iifayile zakho.
Umsebenzi we "Petya" weRansomware Umsebenzi njani?
I-"Petya" ransomware isebenza njengeninzi i-ransomware. Kuthatha ikhompyutha, kwaye icela i $ 300 kwiBitcoin. Le projekti enobungozi isasazeka ngokukhawuleza kuyo yonxibelelwano okanye inhlangano emva kokuba ikhompyutha enye isuleleke. Le projekti ethile isebenzisa ubungozi be-EternalBlue, inxalenye ye-Microsoft Windows. Nangona iMicrosoft sele ikhuphe iqhosha lokukhuseleka, akusiwo wonke umntu oyifakile. I-ransomware nayo iyakwazi ukusasazwa ngeziko le-Windows lolawulo, olufikeleleka ukuba akukho liphasiwedi kwikhompyutha. Ukuba i-malware ayikwazi ukufumana enye indlela, iyazama enye ngokuzenzekelayo, yindlela eye yasasazeka ngayo ngokukhawuleza phakathi kwale mibutho.
Ngaloo ndlela, "uPetya" isasazeka kakhulu kunokuba iWannaCry, ngokutsho kweengcali zokhuseleko lwe-cyber.
Ngaba Kukhona Nendlela Enokuzikhusela "KuPetya?"
Mhlawumbi uyazibuza ngeli nqanaba ukuba kukho nayiphi na indlela yokuzikhusela "kwi-Petya." Uninzi lweenkampani ze-antivirus zithi ziye zahlaziya isofthiwe yazo ukunceda ukuba zingabonakali nje kuphela, kodwa zikhusele ukulwa ne "Petya". Ngokomzekelo, isofthiwe yeSyantec ikhusela "ePetya," kwaye uKaspersky uhlaziye zonke iinkqubo zayo zokunceda abathengi bazikhusele kwi-malware. Ngaphezulu koku, unokuzikhusela ngokugcina iWindows ehlaziywe. Ukuba awuyenzi nantoni na enye, bhala ubuncinane ukufaka iqhosha eliphambili elikhutshwa yiWindows ngo-Matshi, elikhuselayo malunga nengozi ye-EternalBlue. Oku kuyeka enye yezindlela ezibalulekileyo zokusuleleka, kwaye ikhusela nokuhlaselwa kwangaphambili.
Omnye umgca wokukhusela ukuphazamiseka kwe-malware ikhona kwakhona, kwaye sele ifunyenwe nje. I-malware ihlola iC: \ drive kwifayile efundwayo kuphela ebizwa ngokuba yi-perfc.dat. Ukuba i-malware iyifumana le fayile, ayiyi kuqhuba ukubethela. Nangona kunjalo, nangona unayo ifayile, akuthinteli ukukhuselwa kwe-malware. Iyakwazi ukusasaza i-malware kwezinye iikhomputha kwinethiwekhi nangona umsebenzisi engayiboni kwikhompyuter.
Kutheni le Malware ibizwa ngokuthi "Petya?"
Usenokuzibuza ukuba kutheni le malware ibizwa ngokuba ngu "Petya." Eyona nto ingabonakali ngokuba yi-"Petya." Kunoko, kubonakala ngathi ikwabelana ngekhowudi eninzi kunye nenxalenye endala ye-ransomware ebizwa ngokuba yi "Petya." Kwiiyure emva kokuqala kokuqaqamka, nangona kunjalo, iingcali zezokhuseleko zithi ezi zihluthulelo ezimbini azifani ngendlela efanayo. Ngoko, abaphandi eKaspersky Lab baqala ukubhekisela kwi-malware njenge "NotPetya," (okokuqala!) Kunye namanye amagama aquka "uPetna" kunye ne "Pneytna." Ukongezelela, abanye abaphandi bathi le nkqubo inamagama aquka "iGoogleeneye," Bitdefender, waseRomania, waqala ukuyibiza. Nangona kunjalo, "uPetya" sele sele ehlangene.
Uphi "uPetya" Aqala khona?
Ngaba uzibuza apho "uPetya" yaqala khona? Kubonakala ukuba sele iqalile indlela yokuhlaziya esuka kwisofthiwe esakhiwe kwinkqubo ethile yokuphendula. Ezi nkampani zazisebenza nekarhulumente waseUkraine kwaye kufuneka ukuba urhulumente asebenzise le nkqubo. Yingakho iinkampani ezininzi zaseUkraine ziye zachaphazeleka ngolu hlobo. Imibutho ibandakanya iibhanki, urhulumente, i-metro inkqubo yeKiev, isikhululo sezindiza esikhulu saseKieg, kunye neenkonzo zombuso karhulumente.
Inkqubo ehlola amazinga emisebe kwiChernobyl nayo ichaphazelekayo yi-ransomware, yaye ekugqibeleni ithathwa ngaphandle kwe-intanethi. Oku kunyanzelekile ukuba abasebenzi basebenzise izixhobo eziphathekayo ngezandla ukulinganisa umbane kwibala lokukhutshwa. Ngaphezulu kweli, kwakukho ukutshatyalaliswa okwesibini kwezifo ezibangelwa i-malware ezazaliswa yiphulo elineenkcukacha ezinxulumene ne-imeyile, ezizaliswe yi-malware.
Kude kangakanani i-"Petya" Infection Spread?
I "Petya" ransomware iye yasasazeka ngokubanzi, kwaye iphazamise ishishini likhampani kwi-US nakwiYurophu. Ngokomzekelo, i-WPP, inkampani yokukhangisa e-US, iSaint-Gobain, inkampani yokwakha yaseFransi, kunye neRosneft kunye ne-Evraz, iifowuni zeoli kunye neyinyithi eRussia, nazo zachaphazelekayo. Inkampani yasePittsburgh, i-Heritage Valley Health Systems, iphinde ihlaselwe yi "Petya" malware. Le nkampani iqhuba izibhedlele kunye namaziko okukhathalela kulo lonke elasePittsburgh.
Nangona kunjalo, ngokungafani ne-WannaCry, i-"Petya" i-malware izama ukusabalalisa ngokukhawuleza kwiinkanethi ezifikelela kuyo, kodwa azama ukusabalalisa ngaphandle kwenethiwekhi. Le nyaniso yodwa inokuba yandinceda ngokwenene amaxhoba ale malware, njengoko inciphise ukusabalala kwayo. Ngoko, kubonakala kuncipha kweendlela ezininzi ezithintela ngayo iintsholongwane.
Yintoni Injongo Yabaxhasi Bokuba Abathumela "uPetya?"
Xa i-"Petya" ifunyanwe ekuqaleni, kubonakala ngathi ukugqashuka kwe-malware kwakumzamo wecybercriminal ukuzisebenzisa ngokusetyenziswa kwezixhobo zokusebenzisa i-intanethi. Nangona kunjalo, xa ootitshala bezokhuseleko bebukele ngakumbi ngakumbi kwi-"Petya" ukugqabhuka kwe-malware, bathi ezinye iindlela, njengendlela yokuhlawula iqokelelwe, zithandwa kakhulu, ngoko azikholelwa ukuba abaxhasi be-cybercriminals basemva.
Okokuqala, inqaku lehlawulelo eliza kunye ne "Petya" i-malware iquka idilesi yokuhlawula enye yexhoba ngalinye le-malware. Oku kuyimangalisa ngenxa yokuba i-pros yenza idilesi yesiko ngalinye kwixhoba ngalinye. Okwesibini, le nkqubo ibuza abaxhoba ukuba bathethe ngokuthe ngqo nabahlaseli ngekheli le-imeyile ethile, eliye lanyuswa ngokukhawuleza xa kufumanisa ukuba idilesi ye-imeyile isetyenziselwa "i-Petya" amaxhoba. Oku kuthetha ukuba nangona umntu ehlawula i-$ 300 yentlawulelo, abakwazi ukuthetha nabahlaseli, kwaye ke, abakwazi ukufikelela kwikhilo yokukhetha ukuvula ikhompyutha okanye iifayile zayo.
Ngoobani Abahlaseli, ke?
Iingcali zokhuseleko lwe-Cyber zikholelwa ukuba i-cybercriminal engcali yecala le "Malya" malware, ngoko ke ngubani? Akukho mntu uyazi ngeli xesha, kodwa kungenzeka ukuba umntu okanye umntu owakhuphayo wayefuna ukuba i-malware ibonakale njenge-ransomware elula, kodwa kunoko, yingozi nakakhulu kunokuba i-ransomware efana neyoqobo. Umphandi wokhuseleko, uNicolas Weaver, ukholelwa ukuba "uPetya" luhlaselo olunobungozi, olubhubhisayo kunye nolwahlukileyo. Omnye umphandi, ohamba noGrugq, ukholelwa ukuba i-original "Petya" yayiyinxalenye yentlangano yolwaphulo-mali ukwenza imali, kodwa le "Petya" ayenzi okufanayo. Bobabini bavuma ukuba i-malware yenzelwe ukusasazeka ngokukhawuleza kwaye ibangele umonakalo omkhulu.
Njengoko sichazile, i-Ukraine yayichukumisa kakhulu "nguPetya," kwaye ilizwe liye latsho iminwe yakhe eRashiya. Oku akumangalisi ukuqwalasela i-Ukraine kuye kwathetha iRashiya ngenani lee-cyberattacks zangaphambili. Enye yale ntshukumo yenzeke ngo-2015, kwaye yayijoliswe kwigridi yamandla ase-Ukraine. Ekugqibeleni yaphela ngokukhawuleza ishiya iindawo ezisentshonalanga ye-Ukraine ngaphandle kwamandla. I-Russia, nangona kunjalo, inqatshelwe nayiphi na inxaxheba kwi-cyberattacks e-Ukraine.
Yintoni Okufanele Uyenze Ukuba Ukholelwa Ukuba Ulwaphulo LweeRansomware?
Ngaba ucinga ukuba unokuba ulixhoba lehlaselo lokuhlawulela i-ransomware? Olu hlaselo oluthile luchaphazela ikhomputha kwaye lukulinda malunga neyure ngaphambi kokuba ikhompyutha iqale ukuqalisa ngokukhawuleza. Ukuba oko kwenzeka, khawuleza uzame ukuvula ikhompyutha. Oku kunokuthintela iifayile kwikhompyutheni ukuba ibhalwe ngekhowudi. Ngelo xesha, ungazama ukuthatha iifayile kumatshini.
Ukuba ikhompyutri iphelile ukuqala kwakhona kwaye inhlawulo ayiveli, musa ukuyihlawula. Khumbula, i-imeyile idilesi esetyenziselwa ukuqokelela ulwazi kumaxhoba kwaye ukuthumela ikhiye kuvaliwe. Ngoko, endaweni yoko, nqakraza i-PC kwi-intanethi kunye nenethwekhi, ulungelelanise i-hard drive, kwaye usebenzise isilondolozi ukubuyisela iifayile. Qiniseka ukuba usoloko uxhasa amafayili akho rhoqo kwaye rhoqo ugcine isofthiwe yakho ye-antivirus ihlaziywe.