Back to Question Center
0

I-Semalt Expert: Ukujonga ngakumbi kwi-Hackers Toolkit

1 answers:

Xa abahlaseli befunda indlela yokudibanisa intlangano, baya kuwusebenzisa umzobo waboamava kunye nempumelelo yangaphambili. Ngoko ke, ukuzama ukwenza ingqiqo nayiphi na ukuphulwa kwedatha kunokubonisa ubungakanani obubalulekileyo njengoko umntu engena engqondwenilomhlaseli kwaye ucinge ngeendlela abangayisebenzisa ukulimaza.

uFrank Abagnale, uMphathi weMpumelelo weMthengi Semalt IiNkonzo zeDivithali, zibonisa iintlobo eziqhelekileyo zokuhlaselwa eziqhelekileyo ezisetyenziswa ngabagculi:

1. Malware

I-Malware ibhekisela kwi-intanethi yeenkqubo ezinobungozi ezifana ne-virus kunye ne-ransomwareowenza abahlaseli balawuli kude. Xa ithe yafumana ukungena kwikhompyutheni, iyanciphisa ingqibelelo yekhompyutheni kwaye ithathaumatshini osetyenziswayo. Ikwaqwalasela kwakhona yonke inkcazelo ehamba ngaphakathi nangaphandle kwenkqubo, kwakunye nezenzo kwii-keystrokes. UninziIziganeko, kufuna ukuba i-hacker isebenzise iindlela abangayifumana ngayo i-malware efakwe njengezixhumanisi kunye ne-imeyile ekhangelekayonxu lumene.

2. Ubuqhetseba

Ukuphangisa ngokuqhelekileyo kusetyenziswa xa umhlaseli ezama ukuziguqula njengomntu okanyeintlangano abathembayo ukuba benze into abangayi kuyenza. Bavame ukusebenzisa ukuphuthuma kwi-imeyile, njengento yokukhwabanisa, kunye ne-imeyileuqhotyoshelweyo. Ukukhuphela isiqhotyoshelweyo, kufaka i-malware, ebuyisela umsebenzisi kwiwebhsayithi ekhangelekileyo, eqhubekayoukucela ulwazi lomntu siqu kumsebenzisi.

3. I-SQL Injecting Attack

uLwimi oluCwangcisiweyo loKuLwimi luloluhlu lwenkqubo, olunceda ukunxibelelanangeenkcukacha. Uninzi lwamaseva ulondoloza ulwazi oluzimeleyo kwiinkcukacha zabo. Ukuba kukho iiphene kwikhowudi yomthombo, i-hacker ingayifakai-SQL eyabo, ebenza bavulele umnyango ongasemva apho bangacela khona iziqinisekiso ezivela kubasebenzisi bewebhu. Umba uba ngxaki ngakumbiukuba isayithi igcina ulwazi olubalulekileyo malunga nabasebenzisi babo njengolwazi lwekhredithi kwiinkcukacha zabo..

4. I-Cross-Site Scripting (XSS)

Isebenza ngendlela efana ne-SQL injections, njengoko ingena ikhowudi engalungangawebsite. Xa iindwendwe zifumana ukungena kwisayithi, ikhowudi iyazifaka kwisiphequluli somsebenzisi, ngaloo ndlela ichaphazela iindwendwe ngqo.Hackers faka ngokuzenzekelayo ukuqhuba iimpendulo okanye izikripthi kwisayithi ukusebenzisa i-XSS. Abasebenzisi abanakuqonda ukuba abacuki baxakekeulwazi kuze kube sekwephuzile.

5. Ukulahlwa kweNkonzo (DoS)

Ukuhlaselwa kwe-DoS kubandakanya ukudlula i-website ngokukhululeka kwendlelaukulayithisa umncedisi kwaye akakwazi ukuhambisa umxholo walo kubantu abazama ukufikelela kuyo. Uhlobo lwesithuthi esetyenziswe ngabahlaseli abanonyakwakuthetha ukukhukula iwebhusayithi ukuyivala kubasebenzisi. Kwimeko apho kukho iikhomputha eziliqela ezisetyenziselwa ukukhahlela, kuba yi-Distributed DenialUkuhlaselwa kweNkonzo (iDDoS), ukunika i-adversi idilesi ezahlukeneyo ze-IP ukusebenza ngexesha elifanayo, kwaye kwenza kube nzima ukulandelela.

6. I-Session Hijacking kunye ne-Man-in-the Middle Attacks

Umva kunye nokuphuma kwemisebenzi phakathi kwekhomputha kunye nomncedisi wewebhu odelayo nganyeI-ID yeseshoni eyahlukileyo. Emva kokuba i-hacker ibambe i-ID yeseshoni, ingafaka izicelo ezibonakalayo njengekhomputha. Ibenza bafumaneukungena ngokungekho mthethweni njengomsebenzisi ongenakuzibonela ukufumana ukulawula ulwazi lwabo. Ezinye zeendlela ezisetyenziselwa ukuxaka i-ID zeeseshoni ziyaqhubekascript.

7. Ukusetyenziswa kwakhona kweCredential

Ngenxa yenani elikhulayo lewebhu ezifuna amaphasiwedi, abasebenzisi bangakhetha ukuphinda basebenzise kwakhonaiiphasiwedi zabo kwiindawo ezinikeziwe. Iingcali zoKhuseleko zicebisa abantu ukuba basebenzise iiphasiwedi ezizodwa. AbaHackers bangafumana abasebenzisi bamagama kunye namaphasiwedikwaye basebenzise ukuhlaselwa ngamandla okufumana ukufikelela. Kukho abaphathi bephasiwedi abafumanekayo ukukunceda ngeenkcukacha ezahlukeneyo ezisetyenziswa kwiiwebhusayithi ezahlukeneyo.

Isiphetho

Ezi zinto nje zimbalwa zobugcisa ezisetyenziswe ngabahlaseli bewebhu. Zihlala zihlala njaloukuphuhlisa iindlela ezintsha kunye ezintsha. Nangona kunjalo, ukwazi ukuba yindlela enye yokunciphisa umngcipheko wokuhlaselwa nokuphucula ukhuseleko.

November 28, 2017
I-Semalt Expert: Ukujonga ngakumbi kwi-Hackers Toolkit
Reply