Back to Question Center
0

Semalt: Mafi amfani da kwarewar da aka yi amfani da shi ta hanyar Cybercriminals Don Samun Samun shiga ga Email Account

1 answers:

Yana da 2017 kuma barazanar wani mai karɓar asusun imel naka na ainihi ne. Very real. A halin yanzu ana yaudarar wani a cikin karbar imel ɗin su zuwa ga baƙo. A wasu kalmomi, masu kai hare-haren sun saba wa Yahoo Mail, Gmel da kuma Hotmail da wasu kaɗan na aikin injiniya da kuma saƙon rubutu.

Ivan Konovalov, da Semalt Abokin Kasuwanci Success Manager, ya furta cewa cin zarafi mafi sauƙin aiwatarwa. Ɗauki misali na wani wanda yake riguna a matsayin dan sanda. Idan ya ko ta tsaya maka kuma ya umurce ka ka fita daga motar ka kuma ka ba da makullin, za ka ƙi? Babu shakka ba. Mutum mai matsakaici zaiyi haka ba tare da yin tambaya ba. Ba abin mamaki ba ne cewa kaddamar da dan sanda yana daya daga cikin manyan laifuka a ko'ina cikin duniya. Sakamakon 'yan sanda yana da abubuwa biyu da ke faruwa a gare shi: yana da sauƙi, kuma mutane sukan amince da ƙididdiga masu rinjaye. Waɗannan su ne halaye da amfani da cybercriminals.

A cikin marigayi, aukuwa sun fito. Yana da mashin mahimmanci mai laushi wanda aka yi niyya a masu amfani da wayoyin salula. Manufar wannan zamba ita ce samun dama ga asusun imel naka. Yana da sauƙi na yaki da aikin zamantakewar al'umma wanda miliyoyin mutane ke fadowa.

Mai satar kwamfuta (mugun mutum) kawai yana buƙatar sanin adireshin imel ɗinka da lambar waya. Abin ban mamaki, waɗannan suna da sauƙi don samun. Suna amfani da tsarin tabbatarwa na duniyar da aka ba ta ta hanyar imel ɗin imel masu samarwa Wannan tsarin yana bawa damar amfani da su don sake saita kalmar sirri ta hanyar samun lambar ko hanyar aikawa zuwa lambar wayar su.

Misalin misali na zamba a aiki: Gmel account takeover

A wannan yanayin, akwai ƙungiyoyi biyu: Anne (mai ba da Gmel account) da Dan (mara kyau). Anne ta yi rajistar lambarta tare da Gmel don haka duk lokacin da aka kulle ta daga asusu, ana aika da lambar tabbatarwa zuwa lambar wayar ta. Dan, a gefe guda, yana da hankalin Anne kuma ya san lambar wayarta (watakila daga asusun yanar gizonta ko daga ko'ina a yanar gizo).

Mutumin mugun (Ɗan) yana so ya sami damar shiga asusun Anne na Gmel. Ya san sunan mai amfani amma ba kalmar sirri ba. Ya shiga sunan mai amfani sa'an nan kuma danna "taimako taimako" bayan zancen kalmar sirri. Ya danna "Ba na tuna kalmar sirri ba," ta shiga adireshin imel na Anne ta hanyar samun tabbaci akan wayata. Lambar tabbatarwa ta lambobi shida an aika zuwa lambar Anne. Dan aika saƙon rubutu zuwa Anne tace cewa shi masanin ne daga Google kuma sun lura da wani abu mai ban mamaki a kan asusun. Ya bukaci ta ta tura lambar tabbatarwa don su warware matsalar. Anne ta yi imanin cewa wannan halatta ne, yana tura lambar tabbatarwa. Dan yana amfani da wannan lambar don samun dama ga asusunta.

Lokacin Dan ya isa ga asusun, zai iya yin wani abu ciki har da sake saita kalmar sirri da sauya zaɓi na dawowa. Wannan shi ne cikakken takeover. Abin da ya biyo baya ba shi da tabbas. Don samun lafiya daga wannan makirci, kada ka ba da lambobin tabbatarwa ga kowa. A gaskiya ma, idan ba a neme ka ba don haka sai ka lura cewa wani ba shi da kyau Source .

November 28, 2017