- UCreeper waba nguvulindlela wokuziphindaphinda kwenethiwekhi, kwaye uReaper wayeyi-antivirus yokuqala ukuyizingela.
- I-Elk Cloner, uMvundla, IZILWANYANA, kunye neBrain ezidityanisiweyo zeefloppy disks kunye neeTrojans njengeevektha eziphambili.
- I-ILOVEYOU kunye neKhowudi eBomvu ibonise amandla e-imeyile kunye nobuthathaka beseva.
- I-Heartbleed ibonise ukuba iziphene kwiilayibrari ezibalulekileyo zibonakalisa idatha ngaphandle isoftwe kwisiphelo.
Ukuthetha ngayo khu seleko Kufanelekile ukubuyela kwimvelaphi, kuloo mzuzu xa ucwangciso lwalubonisa ukuba lunako hamba ngenethiwekhi kwaye uphindaphinde Ngaphandle kokucela imvume. Yayingelohlaselo olutshabalalisayo okanye umzamo omkhulu wokuphanga, kodwa yayiyindawo yokuqala yogqatso phakathi kwabahlaseli nabakhuseli oluye lwakhawuleza ukusuka ngoko.
Yintoni intsholongwane yekhompyuter kwaye kutheni ibalulekile?
Kulwimi lwemihla ngemihla sidla ngokubiza nayiphi na isoftware enobungozi "intsholongwane", kodwa kulungile ukwahlula phakathi iintsholongwane, iintshulube kunye Trojans (kwaye udibanise yonke into phantsi kwe "malware"). Iintsholongwane, ngokungqongqo, zosulela iifayile okanye amacandelo e iboot asasaza ekwenziweni kwawo ezo fayile; iintshulube zihamba kuthungelwano ngaphandle kokufuna ukuzincamathela kuyo nantoni na; IiTrojans zizenza into esemthethweni yokungena kwikhowudi engafunekiyo.
Ngaphandle kweelebhile zezemfundo, isitshixo esisebenzayo kukuba ezi ziqwenga ziyakwazi idatha eyonakeleyo, icotha iinkqubo, ibangele ukungqubana kunye nokuvula iingcango zobusela okanye ubuntlola. Ngokwamkelwa okuxhaphakileyo kwe-intanethi kunye neenkonzo zelifu, usasazo luyekile ukuxhomekeka kwiidiski zefloppy okanye iinethiwekhi ezivaliweyo kwaye zaqala ukuxhomekeka. i-imeyile, iiwebhusayithi kunye nemidiya yoluntu yokufikelela okukhulu.
Ukusuka kwithiyori ukuya kuziqhelanisa: i-automata ekhuphela ngokwabo
Kwakudala ngaphambi kokuba iikhompyuter zobuqu zingene emakhayeni, isazi sezibalo uJohn von Neumann wayesele ephakamise ukuba kunokwenzeka iinkqubo bayaziphindaphindaNgasekupheleni kweminyaka engamashumi amane wabonisa ingcamango kwiinkomfa kwaye, ngo-1966, iTheory ye-Self-Reproducing Automaton yapapashwa, apho wayecinga malunga "nezinto eziphilayo ezinomatshini" ezikwazi ukuphindaphinda kunye nokubangela iziphumo, njengeentsholongwane zebhayoloji, kodwa kwiinkqubo zedijithali.
Ngexesha lamashumi amathandathu kunye namashumi asixhenxe, iimeko zokukhuphisana phakathi kweenkqubo nazo zavavanywa. Kwi-Bell Labs, abaphandi abanje UVictor Vyssotsky, uRobert Morris Sr. kunye noDoug McIlroy Bayila umdlalo othi Darwin, apho iinkqubo zazisilwela ukulawula inkumbulo. Kumashumi eminyaka kamva, i-AK Dewdney yayiza kwenza i-Core War, enye indawo apho ikhowudi "yamajoni" engqubana nge-RAM, ebonisa ingqiqo uhlaselo kunye nokukhusela kwisoftware owayesele eza kuphuma elabhoratri.
I-Creeper: yintlantsi elayite i-fuse
Kwi-1971, uBob Thomas we-BBN Technologies wadala Creeper ukuvavanya ukuba ingaba inkqubo inokuhamba ngapha komsebenzi womnatha, iphindaphinde, kwaye "itsibe" phakathi koomatshini. Oku kwenzeka kwi-ARPANET, i-embryo ye-Intanethi, kwaye ekujoliswe kuyo yayiyi-DEC PDP-10 iikhomputha eziqhuba inkqubo yokusebenza ye-TENEX. Xa ifike kwinkqubo, uCreeper wabonisa umyalezo odumileyoNdim icreeper, ndibambe ukuba unako!"kwaye ke iya kutshintshela kwenye ikhompyuter, izikhuphele kweyangaphambili."
Yayingenanjongo yokwenza ingozi, kodwa ibonise inyani ephazamisayo: xa into inokuhamba ngokuzimeleyo, khangela inethiwekhiEminye imithombo ibeka umhla wayo ngo-1972 okanye idibanise nezixhobo ze-IBM/360, kodwa imvumelwano kwiinkcukacha zobuchwepheshe ikhomba I-PDP-10 ene-TENEX kunye ne-ARPANETNokuba kusenokuba njalo, uCreeper wacima zonke iialam zokucinga kwaye wachaza ngaphambi nasemva.
Ukuthetha ngokuthe ngqo, uCreeper waziphatha ngakumbi njenge isibungu (ayizange yosule iifayile zasekhaya, yahlala kwaye yahamba kwinethiwekhi), kodwa yangena kwimbali eyaziwayo njenge "virus yekhompyuter yokuqala" kuba yasungula umbono obalulekileyo: isoftware ephindaphindayo kwaye isasazeke ngaphandle kokungenelela komsebenzisi nangaphandle kolawulo lwabo.
Umvuni: ukuzingela i-malware yokuqala
Intsabelo yakhawuleza. URay Tomlinson, owaziwa ngendima yakhe ephambili kwi-imeyile, waphuhliswa nomvuni ukuskena i-ARPANET, khangela iimeko zeCreeper, kwaye uzisuse. Le nkqubo ithathwa njenge-antivirus yokuqala kuba yayiyeyokuqala ukwenza umsebenzi ombini we ukubhaqwa kunye nokubulala iintsholongwane yesoyikiso esiphilayo kwinethiwekhi.
Umvuni ubonakalise ukuba yonke into entsha ekhubekisayo ilandelwa yinto ekhuselayo, kwaye ukubaleka akukayeki ukusukela ngoko. Ngomoya, uMvuni ngumanduleli othe ngqo we iinjini zokhuseleko lwangoku, ezidibanisa telemetry, imisayino kunye nokuziphatha ukuchonga kunye nokunciphisa ikhowudi engafunekiyo ngokukhawuleza.
U-Elk Cloner: ukutsibela kwikhompyuter yakho
Ngowe-1982, umfundi uRichard Skrenta wabhala Elk Cloner yeApple II. Yosulele iidiski ze-boot kwaye, rhoqo, ibonise umbongo kwisikrini. Eyona nto ibalulekileyo yayingeyiyo iprank, kodwa yindlela: ngokubotshwa kuhambo lwemihla ngemihla lweefloppy disks, Yasasazeka “ngempazamo” ngalo lonke ixesha umntu esabelana ngesixhobo somzimba.
U-Elk Cloner wakwenza kwacaca ukuba ukuthandwa kweekhompyuter zobuqu kuya kuzisa usulelo. ixhaswa yimikhwa eqhelekileyo, njengokutshintshisa iidiski zefloppy okanye ukusebenzisa imidiya esuswayoLoo pateni, i-mutatis mutandis, yayiza kubonwa kamva kunye ne i-USB, iimakhro kumaxwebhu okanye izihlomelo ze-imeyile.
UMvundla/uWabbit: iAvalanche evala yonke into
Umnxeba Umvundla (okanye uWabbit)Uphononongo lwe-1974 lwalumele enye i-angle yengxaki: ukuphindaphinda okungalawulwayo. Emva kokosulela inkqubo, yazibumba kaninzi kangangokuba ukusebenza kwehla, ekugqibeleni yabangela ukungqubana. Oku "kugqabhuka kwekopi" kwanceda ukuqinisa ingcamango yokuba isantya sokuvelisa, ngokwaso, yivector ye impembelelo ebalulekileyo.
IZILWANYANA kunye ne-PREVADE: yile ndlela ingcamango yeTrojan yazalwa ngayo
Ngowe-1975, umdwebi wenkqubo uJohn Walker wadala ISILWANYANAUmdlalo wokuqikelela owaziwa kakhulu ngelo xesha, wawukhatshwa yi-PREVADE ukuququzelela ukuhanjiswa kwawo. Ngelixa umsebenzisi edlala, i-PREVADE inqumle abalawuli abafikelelekayo kunye Ndikope IZILWANYANA apho ibingekho khona.ngaphandle kokucela imvume ecacileyo. Kwakungajoliswanga ukwenza ingozi, kodwa ihambelana nenkcazo yehashe yeTrojan: inkqubo "yobuhlobo" efihla elinye icandelo elenza izenzo ezingagunyaziswanga.
Eli tyala libonisa ukuba "inkohliso esebenzayo" iphantse yandala njengokuziphindaphinda. Isiqwenga sesoftware esibonakala sisemthethweni sinokusebenza, ngasemva, imisebenzi engavunywanga ngumsebenzisiukwenza mfiliba umgca phakathi kwesiqhulo, uvavanyo lobugcisa kunye nokuxhatshazwa kwangempela.
Ubuchopho: Intsholongwane yokuqala enkulu yePC
Ngo-1986 wabonakala ingqondo, iqwalaselwe intsholongwane yokuqala izixhobo PC ehambelanayoYenziwe ngabazalwana baka-Basit kunye no-Amjad Farooq Alvi basePakistan, ababediniwe ziikopi ezingagunyaziswanga zesoftware yabo. Ubuchopho buthathe indawo yecandelo le-5,25-intshi yefloppy disks ngekhowudi yayo, ubuchule obenze ukuba intsholongwane yecandelo le-boot ngenqaku elinomdla: ibandakanya umyalezo ofihliweyo onamalungelo okushicilela kunye nolwazi loqhagamshelwano.
Ubuchopho buchazwa "njengobungabonakaliyo" ngexesha lakhe kuba Kuphazamiseke ukufikelela kwicandeloukufihla ubukho bayo kwizixhobo ezisisiseko. Nangona ingazange itshabalalise idatha, ukusasazeka kwayo kubonise ukuba ukutsiba ukusuka kwiilabhoratri ukuya kwisitalato sele kwenzekile kwaye imidiya ekhutshwayo yayiyi-vector egqibeleleyo yehlabathi.
Ukusuka kwifloppy disk ukuya kwi-Intanethi: i-malware yanamhlanje ifika
Ngokufika koqhagamshelo oluthembekileyo lwe-broadband ekuqaleni kwenkulungwane yama-21, i-malware yayeka ukuxhomekeka kumajelo eendaba okanye kuthungelwano oluvaliweyo lwamashishini kwaye yaqala ukusasazeka. i-imeyile, iiwebhusayithi kunye ne-Intanethi ngokwayoUkusukela ngoko, umhlaba uxubene: iintsholongwane, iintshulube, kunye neeTrojans zihlala kunye, kwaye abasebenzisi abaninzi babiza nayiphi na into ekhohlakeleyo yesoftware "intsholongwane," ngoko ke ukusetyenziswa kwegama leambrela elithi "malware."
I-LoveLetter/ILOVEYOU: Ubunjineli beNtlalo kwi-Fast Track
Yaqalisa ukujikeleza ngoMeyi 4, 2000 Incwadi yothando (ILOVEYOU), intshulube kwifomati yeVBS (yayingelulo uxwebhu lwe igama(njengoko ibiyeyona iphambili iintsholongwane ezinkulu ukusukela ngo-1995). I-imeyile yafika kunye nomgca wesihloko "Ndiyakuthanda" kwaye iqhotyoshelwe ifayile ILETA YOTHANDO-KUWE-TXT.vbsXa iphunyeziwe, ibhala ngaphezulu kweefayile ngeekopi zayo kwaye izisebenzise ukuzithumela kuyo bonke abafowunelwa yexhoba.
Impumelelo ye-ILOVEYOU inokuchazwa ngokuthembana: ukuba umyalezo uvela kumntu omaziyo, kunokwenzeka ukuba uwuvule. Yayilumboniso omkhulu we ubunjineli kwezentlalo kwaye ngokukhawuleza kangakanani uthungelwano lwehlabathi olunokonganyelwa sisibungu esithe ngqo nesilula xa abasebenzisi bengakrokreli uncamathiselo olungalindelekanga.
Ikhowudi Ebomvu: intshulube yenkumbulo ekhupha uhlaselo lwe-DDoS
Ngo-2001 wabonakala Ikhowudi ebomvuUmbungu ongenafayile owawuhlala kwinkumbulo, usebenzisa ubuthathaka kwiiNkonzo zoLwazi lwe-Intanethi yeMicrosoft (IIS). Yaphindaphindeka ngokukhawuleza ngokusebenzisa iziphene kwimigaqo yonxibelelwano yaye, kwiiyure nje ezingephi, yasasazeka ehlabathini lonke. Ngaxeshanye, iikhompyutha ezosulelekileyo zasetyenziselwa ukuphehlelela a ukukhanyela uhlaselo lwenkonzo ngokuchasene newebhusayithi yeWhitehouse.gov.
IKhowudi ebomvu ibonise ukuba indibaniselwano yobuthathaka obusebenzisekayo kwinkonzo esasazwe ngokubanzi kunye nomthwalo ojoliswe kuwo. usasazo oluzenzekelayo Ingawa iziseko ezingundoqo ngexesha elifutshane kakhulu, nokuba akukho usulelo lwefayile yeklasikhi.
Intliziyo: Xa ingxaki ayiyontsholongwane
Kwi-2014, yenza iintloko IntliziyoYayisisiphene ekuphunyezweni kokwandiswa kwe "heartbeat" ye-OpenSSL. Yayingeyiyo intsholongwane okanye intshulube: yayisisichengeni kwithala leencwadi elisetyenziswa kwihlabathi jikelele. Iqhinga yayikukucela umncedisi ukuba abuyise isixa esikhulu sedatha kunento ibithunyelwe; inkqubo iza kuphendula ukuya kuthi ga 64 KB yememori ukusuka kwi-RAM yayo, apho iziqinisekiso, iiseshini, okanye izitshixo zabucala zinokuvela.
Impembelelo yayibuhlungu kuba i-OpenSSL yadityaniswa kwiinkonzo ezingenakubalwa. I-Heartbleed yakwenza kwacaca ukuba ubuthathaka kwikhonkco loguqulelo oluntsonkothileyo bunokubhenca ubuthathaka. ulwazi olubuthathaka kakhulu nangaphandle kokuqhuba i-malware kwindawo yokugqibela, kwaye yomeleza imfuno yokuphononongwa ngenkuthalo kunye nokupakishwa kwemithombo yomthombo ovulekileyo.
Imingcipheko kunye neendlela zosulelo: ziphinda phindwa zonke iimeko
Xa sijonga emva kwimbali, kucacile ukuba iivektha ziyaphumelela xa zithembele kwimikhwa emiselweyo: ukwabelana ngeediski zefloppy, ukuvula izincamatheliso, ukucofa amakhonkco, usebenzisa imidiya esusekayo, okanye ukuthembela ngokungaboniyo. imiyalezo kunye i-ascargasNamhlanje, i-imeyile, imiyalezo, kwaye ngakumbi iinethiwekhi zentlalo ziyaqhubeka ukuba yimithambo apho uninzi lwe-malware lujikeleza ngomzamo omncinci kwicala lomhlaseli.
Kukwafanelekile ukukhumbula ukuba iintsholongwane zihlala zihlasela inkqubo ebezibhalelwe yona. Nangona kunjalo, kuye kwakho iimeko ezinqamlezayo, kunye nokunyuka kwewebhu kunye neetoliki (i-macros, iJavaScript, njl. tsiba phakathi kokusingqongileyo ukusebenzisa iingongoma ezifanayo.
Izifundo zokusebenza ezifundwe kwintsholongwane yokuqala yekhompyuter
KuCreeper kunye noMvuni wakhe "ohambahambayo", sinokufunda iinyaniso ezilula ezisasebenza nanamhlanje. Eyokuqala yileyo ukuhamba Nantso ke ingxaki: okukhona kukho ulawulo oluncinci phezu komsebenzi womnatha, kokukhona isiganeko sikhula ngokukhawuleza. Okwesibini, ukhuselo lufuna ukubonakala kunye nokuphendula ngokuzenzekelayo: ukuba "i-antivirus" ayifiki ngexesha, umhlaseli ubeka isantya.
Isetyenziswa kwiinkampani kunye nolawulo, oku kuguqulela kwimikhwa eyaziwayo kodwa engasoloko iphunyezwa: ukuchwetheza rhoqo, ukuqinisekiswa kwezinto ezininzi, ukugcinwa kwe-backups. iqinisekisiweamalungelo amancinci, ulwahlulo lokunqanda intshukumo esecaleni kunye esweni telemetry ngokwaneleyo ukuphakamisa izilumkiso ezinokuthatha.
- Inxalenye kunye nokunciphisa iintshukumo: kunciphisa indawo yokutsiba yomhlaseli.
- Ifomu yomsebenzisiOkuncamathiselweyo, iimacros, kunye ne-USB drives zihlala zingoohola bendlela bosulelo.
- Fumana ukubonakala: izingodo, i-EDR kunye nokulungelelaniswa ukuze ubone ukuba yintoni eyenzekayo ngokwenene.
- Lungiselela impenduloUkuyiqulatha kwimizuzu kunqanda iiyure zempembelelo.
Iingxoxo malunga "neyokuqala" kunye nokuchaneka kwembali
Yayiyintoni kanye kanye intsholongwane yekhompyuter yokuqala? Ukuba ubuza iingcali, kuvela ama-nuances: uCreeper (1971) wazulazula kwi-ARPANET enesitampu sovavanyo kunye nezimo zengqondo. isibunguU-Elk Cloner (1982) uvele kwi-boot screen ye-Apple II PC; I-Brain (1986) yazisa i-phenomenon kwilizwe le-MS-DOS kwaye yayibeka kwimephu yehlabathi. Kukho neembekiselo ezibeka iCreeper ngo-1972 okanye ezinxulumene nayo. IBM/360Oku kubonisa ukuba ulandelelwano lwamaxesha oludumileyo alunakuze lugqibelele.
Ingxoxo-mpikiswano ikhokelela kwisigqibo esizolileyo: ngaphaya kwegama, okubalulekileyo ziindlela (ukuphindaphinda, ukusasazwa, ukufihla) kunye nendlela eziye zavela ngayo. UCreeper waqala incoko, uMvuni wangenisa ukhuselo olusebenzayo, kwaye ukusuka apho, ukwahluka kuxhaphaze i-imeyile, iinkqubo zokuqalisa, izikhangeli, kunye nezinye iinkqubo. ubuthathaka beseva ukwandisa ukufikelela kwayo.
Ukusuka kulwaphulo-mthetho olungenelelayo ukuya kushishino lokuhlasela
Yintoni eyayinomdla kwisayensi kwiminyaka yamashumi asixhenxe iye yaba ulwaphulo-mthetho lwe-intanethi ngomlinganiselo omkhuluNamhlanje, i-ransomware, ubuqhetseba, kunye nemisebenzi yobuntlola iyasebenzisana namaqela akhuthazayo, afumana inkxaso-mali kakuhle, kunye namaqela anobuchule obuphezulu. Iinkqubo Point-of-intengiso (POS) zijoliswe ubusela ikhadi, kunye nezixhobo ezifana MokerUkufikelela kude kwiTrojan, ibonise indlela ekunzima ngayo ukufumanisa nokuphelisa izoyikiso ezenzelwe ukuphepha ulawulo.
Ingcamango yokuba “akukho nto iqinisekileyo” ngokwemigaqo epheleleyo iya isanda. Kunokuba lingoyiswa, eli binzana likhuthaza ukwakha iindlela zokuzikhusela, sivuma ukuba abanye baya kusilela nokuba umahluko phakathi “kwesiganeko” kunye “nentlekele” ngokufuthi usezingqondweni. ukulungiswa kwangaphambili, isantya sokuthintela kunye nokuqina kweenkqubo zokubuyisela.
Xa kujongwa ngasemva, kuyamangalisa ukuba uninzi lweziqendu ezisisiseko bezingekho bubi ngokugqithisileyo. UCreeper, eneneni, wayengumfuniselo; IZILWANYANA/I-PR EVADE izame ukwenza umdlalo waziwe; Ubuchopho bazama ukunqanda ukukopa ngokungekho mthethweni. Nge ixeshaNangona kunjalo, ingqiqo efanayo yokuphindaphinda kunye nentshukumo isebenze iinjongo ze ukonakaliswa, ubuntlola kunye nenzuzo, ukunyanzeliswa kophuhliso lweshishini lokhuseleko lezigidigidi zeedola.
Olu hambo lonke-ukusuka kwi-theory kaVon Neumann ukuya kwi-Heartbleed, ngendlela ye-Creeper, i-Reaper, i-Elk Cloner, i-Rabbit, i-ANIMAL, i-Brain, i-ILOVEYOU, kunye ne-Code Red-ishiya isifundo esicacileyo: ukhuseleko alukho urhulumente, kodwa yinkqubo. Esona sigqibo silungileyo sihlala silandelayo osenzayo ukunciphisa indawo yokuhlaselwa kunye nokuphucula ukubonwa kwaye uzenzele impendulo yakho.
Umbhali onomdla malunga nehlabathi le-bytes kunye netekhnoloji ngokubanzi. Ndiyakuthanda ukwabelana ngolwazi lwam ngokubhala, kwaye yile nto ndiza kuyenza kule bhlog, ndikubonise zonke izinto ezinomdla malunga nezixhobo, isoftware, ihardware, iindlela zetekhnoloji, kunye nokunye. Injongo yam kukukunceda uhambe kwihlabathi ledijithali ngendlela elula neyonwabisayo.