- Ngemva kwesigameko, kubalulekile ukuhlonza uhlobo lokuhlasela, ububanzi balo bangempela, kanye nempahla esengozini ngaphambi kokuthatha isinyathelo.
- Ukugcina ubufakazi nokunikeza imibhalo enemininingwane kubalulekile ekuhlaziyweni kwezomthetho kanye nokuthobela imithetho.
- Ukubuyisela esimweni esijwayelekile kumele kuvikeleke futhi kubekwe phambili, kusekelwa ama-backups aqinisekisiwe kanye nezinhlelo eziqinisiwe.
- Ukuvala igebe ngokubuyekezwa kwangemva kwesigameko kuvumela ukuthuthukiswa kokulawula, izinhlelo zokuphendula, kanye nokuqeqeshwa kwabasebenzi.
Ukuthola ukuthi inhlangano yakho isanda kuhlangana nesigameko sokuphepha kwe-inthanethi Akuyona indlela engcono kakhulu yokuqala usuku: izinhlelo zivaliwe, izinsizakalo azikho, izingcingo ezivela kumakhasimende akhathazekile, kanye nethimba lobuchwepheshe libukeka lithukile. Kodwa ngale kokushaqeka kokuqala, okwenza umehluko ngempela yilokho okwenzayo emahoreni alandelayo: lokho okubhekayo, ukuthi ubani omazisayo, lokho okugcina njengobufakazi, kanye nendlela obuyisela ngayo imisebenzi ngaphandle kokushiya noma yiziphi izikhala zomhlaseli.
Phendula ngekhanda elipholile, isivinini kanye nendlela Lokhu kuyisihluthulelo sokuqinisekisa ukuthi ukuhlaselwa kuhlala kuyisongo esikhulu futhi akukhuphuki kube yinhlekelele yezezimali, yezomthetho, neyedumela. Kule migqa elandelayo, uzothola umhlahlandlela ophelele, osekelwe emikhubeni emihle yokuphendula ezigamekweni, ukuhlolwa kwe-digital forensics, kanye nokuhlela ukuqhubeka kwebhizinisi, okuhlanganisa konke okufanele ukubukeze ngemuva kwesigameko sokuphepha kwe-inthanethi kanye nendlela yokuhlela lokho kubuyekezwa ukuze ufunde kokuhlangenwe nakho, uqinise ukuzivikela, futhi uhambisane nezibopho zomthetho.
Okwenzekile ngempela: Ukuqonda lesi sigameko kanye nobucayi baso
Ngaphambi kokuthi uthinte noma yini ngokungaboni, udinga ukuqonda ukuthi hlobo luni lokuhlaselwa obhekene nalo.I-Ransomware ebethela amaseva abalulekile ayifani nokungena buthule ukuze kwebiwe idatha noma ukufinyelela okungagunyaziwe kuwebhusayithi yenkampani. Ukuhlonza okulungile kunquma konke okulandelayo.
Omunye wemisebenzi yokuqala ukuhlukanisa lesi sigameko kuye ngokuhlasela okuyinhloko: i-ransomware, ukwebiwa kolwazi oluyimfihlo, ukuyekethisa ama-akhawunti ezinkampani, ukuguqulwa kwewebhusayithi, ukuxhashazwa kobuthakathaka, njll. Njengoba ukuhlaziywa kuqhubeka futhi kutholakala izimpahla ezithintekile, ukuhlukaniswa kokuqala kuvame ukushintsha, ngakho-ke kuyalulekwa ukubhala phansi lokhu kuthuthuka.
Kubalulekile futhi ukuthola i-input vectorImiyalezo yobugebengu bokweba imininingwane eyimfihlo enezinamathiselo ezinonya, izixhumanisi zokukhwabanisa, amadrayivu e-USB athelelekile, i-RDP evezwe ku-inthanethi, ubuthakathaka beseva obungalungiswanga, iziqinisekiso ezibiwe, ukulungiswa okungafanele kwamafu… Ukuhlonza leli phuzu lokufinyelela kukuvumela ukuthi uchaze kangcono ububanzi futhi, ngaphezu kwakho konke, uvale umnyango ukuze uvimbele ukuthi kungenzeki futhi.
Esinye isici okufanele sihlolwe ngokucophelela ukuthi ukuhlaselwa kubonakala kuhlosiwe noma kunethuba.Imikhankaso emikhulu yama-imeyili ajwayelekile, ukuskena okuzenzakalelayo kobuthakathaka obaziwayo, noma ama-bot asebenzisa izinsizakalo eziveziwe ngokuvamile abonisa ukuhlaselwa okungahleliwe. Kodwa-ke, uma kubhekwa ulwazi oluningiliziwe ngendawo, izinkomba ezithile enkampanini, noma ukusetshenziswa kwamathuluzi athile embonini, kungenzeka ukuthi ukuhlaselwa okuqondiwe.
Kusukela lapho, zonke izimpahla ezingase zibe sengozini kumele zibhalwe ohlwini.: izindawo zokusebenza, Amaseva we-LinuxIzizindalwazi, izinsizakalo zamafu, izinhlelo zokusebenza zebhizinisi, amadivayisi eselula, nanoma yiluphi uhlelo olwabelana ngenethiwekhi noma iziqinisekiso nethimba elithinteke ekuqaleni. Uma lolu hlu lunembe kakhulu, kuzoba lula ukuchaza ububanzi bangempela besigameko nokubeka phambili impendulo.
Qoqa futhi ulondoloze ubufakazi ngaphandle kokubeka engcupheni ubufakazi
Uma isigameko sesitholakele, isilingo semvelo siwukufometha, ukusula nokuqala kusukela ekuqaleniKodwa lokho ngokuvamile kuyiphutha elikhulu ngokombono wobunhloli bomthetho kanye nowezomthetho. Uma ufuna ukufaka isikhalazo, ukufaka isimangalo somshuwalense, noma ukuqonda nje okwenzekile, udinga ukugcina ubufakazi obusebenzayo.
Isinyathelo sokuqala ukuhlukanisa izinhlelo ezithintekile ngaphandle kokuzivala ngokuzumayo.Ukuze kuvinjelwe ukulahleka kwedatha kwimemori noma ukuguqulwa kwamarekhodi abalulekile, inqubo evamile iwukunqamula inethiwekhi, ukuvimba ukufinyelela okukude, nokumisa izinsizakalo ezingabalulekile, kodwa ugcine imishini ivuliwe kuze kube yilapho kutholakala izithombe zobugebengu.
Ukudala amakhophi aphelele amadiski nezinhlelo kuwumkhuba oyisisekeloKunconywa kakhulu ukudala okungenani amakhophi amabili: elilodwa endaweni yokubhala kuphela (isb., i-DVD-R noma i-BD-R) ukuze kulondolozwe ubugebengu, kanye nelinye endaweni entsha ezosetshenziselwa ukucubungula, ukuhlaziya, kanye, uma kudingeka, ukubuyisa idatha. Ama-hard drive asusiwe ezinhlelweni kufanele agcinwe endaweni ephephile, kanye namakhophi adalwe.
Ulwazi olubalulekile kumele lubhalwe phansi ngendlela ngayinye esetshenziswayo.Ubani owakopisha, nini, ngasiphi isimiso, ngamathuluzi anjani, nokuthi ubani owafinyelela lawo mithombo yezindaba kamuva. Ukugcina uchungechunge oluqinile lokugcinwa kwengane kwenza umehluko omkhulu uma lobu bufakazi budinga ukwethulwa kamuva kumahluleli noma enkampanini yomshuwalense.
Ngaphezu kwezithombe zediski, izingodo kanye nezimpawu kumele futhi ziboshwe. zonke izinhlobo: amalogi esistimu, izinhlelo zokusebenza, ama-firewall, ama-VPN, amaseva eposi, ama-proxies, amadivayisi enethiwekhi, izixazululo ze-EDR/XDR, i-SIEM, njll. Lawa malogi asebenza kokubili ukwakha kabusha ukuhlasela nokuhlonza ukunyakaza okuseceleni, ukukhishwa kwedatha, noma ukuphikelela komhlaseli.
Kunconywa ukuhlola ngokushesha ngangokunokwenzeka ukuthi kufanele yini kuthathwe izinyathelo zomthetho.Kuleso simo, kunconywa kakhulu ukuba nochwepheshe wezobunhloli ochwepheshe ongaqondisa ukuqoqwa kobufakazi, asebenzise amathuluzi afanele, futhi alungiselele imibiko yobuchwepheshe esemthethweni. Uma behileleka ngokushesha, ingozi yokungcolisa noma yokulahlekelwa ubufakazi obuwusizo iba ncane.
Imibhalo yesigameko: yini okudingeka ibhalwe phansi
Ngesikhathi ukuhlaselwa kuvinjelwa futhi izinhlelo zisindiswa, kulula ukunganaki amadokhumenti.Kodwa-ke kuyaphuthelwa kokubili ekuhlaziyweni kamuva kanye nasekuhambisaneni nezibopho zomthetho. Yingakho kubalulekile ukubhala konke kusukela ekuqaleni.
Kuwusizo kakhulu ukusetha ngokunembile usuku nesikhathi sokutholwa.kanye nophawu lokuqala olubonwe: isexwayiso esivela kuthuluzi lokuphepha, ukungalingani kokusebenza, ama-akhawunti akhiyiwe, umlayezo we-ransomware, izikhalazo zomsebenzisi, njll. Uma kwaziwa, isikhathi esilinganiselwe sokuqala kokuhlaselwa noma ukwephulwa kokuphepha kufanele siqashelwe.
Ngesikhathi esifanayo, kufanele kuhlanganiswe uhlu lwezinhlelo, izinsizakalo, kanye nedatha ethintekile.okubonisa ukuthi izimpahla zibalulekile ebhizinisini noma ziyimpahla yokusekela. Lolu lwazi luzoba lubalulekile ekubekeni phambili ukutakula nokubala umthelela wezomnotho kanye nokusebenza kwalesi sigameko.
Zonke izinyathelo ezithathwe ngesikhathi sempendulo kumele ziqoshwe.Yini esusiwe ekuxhumekeni ku-inthanethi, yiziphi izinguquko zephasiwedi ezenziwe, yiziphi iziqeshana ezisetshenzisiwe, yiziphi izinsizakalo ezimisiwe noma ezibuyiselwe, yiziphi izinyathelo zokuvimbela ezithathiwe, nokuthi nini. Lokhu akuhloselwe ukuba yinoveli, kodwa kunalokho kube umugqa wesikhathi ocacile noqondakalayo.
Kubalulekile futhi ukurekhoda amagama abo bonke abantu abahilelekile. Ekuphathweni kwezimo eziphuthumayo: obani abaqondisa, ochwepheshe abathintekayo, obani abanikazi bamabhizinisi abanolwazi, obani abahlinzeki bangaphandle abasizayo, njll. Lokhu-ke kusiza ekubukezeni ukusebenza kwethimba kanye nokufaneleka kwezindima ezichazwe ohlelweni lokuphendula.
Esinye isici esikhohlwa ngezinye izikhathi ukugcina ikhophi yokuxhumana okufanele.Ama-imeyili ashintshaniswa namakhasimende, imiyalezo yokutakula, izingxoxo nomshuwalense, ukushintshana neziphathimandla, izingxoxo zangaphakathi mayelana nezinqumo ezibalulekile, njll. Lolu lwazi lungaba usizo ekuphenyweni kwezomthetho, ekuboniseni ukucophelela okufanele kubalawuli, nasekuthuthukiseni izinqubo zokuxhumana eziphuthumayo.
Izaziso eziya kuma-ejensi, kumakhasimende nakubantu besithathu abathintekayo
Uma ifu lokuqala lothuli liqala ukwehla, sekuyisikhathi sokwazisa umuntu ofanele.Akuyona indaba yokuzikhethela: ezimweni eziningi imithetho iyayidinga, kanti kwezinye izinto ezisobala kubalulekile ukuze kulondolozwe ukwethembana.
Uma lesi sigameko sihilela idatha yomuntu siqu (amakhasimende, abasebenzi, abasebenzisi, iziguli, abafundi…), kubalulekile ukubuyekeza izibopho ngaphansi koMthethonqubo Ojwayelekile Wokuvikelwa Kwedatha (GDPR) kanye nomthetho wendawo. ESpain, lokhu kusho ukwazisa i-Spanish Data Protection Agency (AEPD) uma kukhona ingozi kumalungelo nenkululeko yabantu ngabanye, ngokuvamile kungakapheli amahora angama-72 kusukela ekuqapheleni ukwephulwa komthetho.
Uma lesi sigameko singaba ubugebengu (i-ransomware, ukuphanga, ukukhwabanisa, ukwebiwa kolwazi oluyimfihlo, izinsongo engqalasizinda ebalulekile), kuyalulekwa ukubika lezi zigameko kuMbutho Wezokuphepha Kahulumeni. ESpain, amayunithi afana ne-National Police's Technological Investigation Brigade noma i-Guardia Civil's Telematic Crimes Group avame ukungenelela, futhi angasebenzisana nezinhlangano zomhlaba wonke.
Ezingeni likahulumeni kunezikhungo ezikhethekile ezifanele ukuqashelwa., njenge-INCIBE-CERT yezakhamuzi nezinhlangano ezizimele, noma ezinye i-CSIRTs eziqondene nomkhakha. Ukubazisa kunganikeza ukwesekwa okwengeziwe kobuchwepheshe, ukufinyelela ekuhlakanipheni ngezinsongo ezifanayo, amathuluzi okususa ukubethela, noma izinkomba mayelana nemikhankaso eqhubekayo.
Izinkampani ezinezinqubomgomo zomshuwalense we-inthanethi kufanele zibuyekeze izimo zesazisoLokhu kungenxa yokuthi izinkampani eziningi zomshuwalense zidinga ukwaziswa ngaphakathi kwezinsuku zokugcina eziqinile kanye nokumbozwa kwezimo ngokulandela iziqondiso ezithile zokuphendula nokusebenzisa abahlinzeki abagunyaziwe.
Ekugcineni, sekuyisikhathi sokucabanga ngokuxhumana namakhasimende, ozakwethu, kanye nabasebenzi.Uma idatha iye yaphazamiseka noma izinsizakalo ezibalulekile zithintekile, kungcono ukuthi abasebenzi baziswe ngqo yinhlangano, kunokuba baziswe ngokuvuza noma imibiko yabezindaba. Imiyalezo ecacile neqotho, echaza okwenzekile ngokujwayelekile, ukuthi yiluphi ulwazi olungathinteka, ukuthi yiziphi izinyathelo ezithathwayo, nokuthi yiziphi izinyathelo ezinconywayo kulabo abathintekile, ngokuvamile kuyindlela engcono kakhulu yokuvikela idumela.
Ukuvimbela, ukuhlukanisa, nokunciphisa ukuqhubekela phambili komhlaseli.
Lapho nje kuqinisekiswa ukuthi kukhona isigameko sangempela, umncintiswano nesikhathi uqala ukuvimbela umhlaseli ukuthi angaqhubeki phambili, entshontshe idatha eyengeziwe, noma abangele umonakalo owengeziwe njengokubethela ama-backup noma ukufaka engcupheni ama-akhawunti engeziwe.
Isinyathelo sokuqala ukuhlukanisa izinhlelo ezisengozini kunethiwekhiLokhu kusebenza kokubili ekuxhumaneni okunezintambo kanye nokungenantambo. Ezimweni eziningi, ukumane unqamule izixhumi zenethiwekhi, ukuhlela kabusha ama-VLAN, noma ukusebenzisa imithetho ethile yomlilo ukuvimba ukuxhumana okusolisayo kuyokwanela. Umgomo uwukuvimbela umhlaseli ngaphandle kokubhubhisa ubufakazi noma ukuvala izinhlelo ngokungakhethi.
Kanye nokuhlukaniswa ngokomzimba noma okunengqondo, kubalulekile ukubuyekeza ukufinyelela okukude.I-VPN, amadeskithophu akude, ukuxhumana kwabantu besithathu, ukufinyelela okuyimfihlo, njll. Kungadingeka ukukhubaza okwesikhashana ukufinyelela okuthile kuze kube yilapho kusobala ukuthi yiziphi iziqinisekiso okungenzeka ukuthi zibekwe engcupheni.
Ukuvimba ama-akhawunti asolisayo kanye neziqinisekiso kumele kwenziwe ngokunembileKusukela kuma-akhawunti anamalungelo aphezulu, ama-akhawunti esevisi adaluliwe, abasebenzisi abahileleke ngqo ekungeneni, noma labo ababonisa umsebenzi ongajwayelekile, kuyalulekwa ukuthi kuphoqelelwe izinguquko ezibanzi zephasiwedi uma isimo sesilawulwa kangcono, kuqalwe ama-akhawunti abalulekile kuqala.
Isinyathelo sobuchwepheshe kakhulu ukuqinisa ukuhlukaniswa kwethrafikhi nokuhlunga Ukuze kuvinjelwe ukunyakaza okuseceleni kanye nokuxhumana komyalo nokulawula, imithetho yomlilo, i-IDS/IPS, izixazululo ze-EDR/XDR, kanye nezinye izilawuli ziyasetshenziswa, okuvumela ukuvimba izizinda ezinonya, ama-IP, kanye namaphethini omgwaqo atholakale ngesikhathi sokuhlaziywa.
Ngesikhathi esifanayo, ama-backups kumele avikelwe.Uma ama-backup eku-inthanethi noma atholakala ezinhlelweni ezisengozini, kunengozi yokuthi nawo angase abethelwe noma aphazanyiswe. Kunconywa ukuwanqamula, uqinisekise ubuqotho bawo, futhi uwagcinele isigaba sokutakula, uma usuqinisekile ukuthi ahlanzekile.
I-forensics yedijithali: ukwakha kabusha ukuhlaselwa nokuthola ubuthakathaka
Njengoba usongo luqukethwe, ingxenye yangempela "ye-digital forensics" iyaqalaLowo msebenzi ocophelelayo wokwakha kabusha isinyathelo ngesinyathelo lokho umhlaseli akwenzile, indlela angene ngayo, lokho akuthinte, nokuthi ubesenesikhathi esingakanani ngaphakathi.
Ukuhlaziywa kwe-forensic kuqala ngokucubungula ubufakazi obuqoqiwe.Izithombe zediski, ukuthwebula imemori, amalogi esistimu nawenethiwekhi, amasampula e-malware, amafayela aguquliwe, njll., nokufunda ezigamekweni zangempela ezifana ukwehluleka kwezixazululo ze-EDRAmathuluzi akhethekile asetshenziswa ukwakha kabusha izikhathi, ukulandelela izinguquko zokucushwa, ukuhlonza izinqubo ezisolisayo, kanye nokuhlela ukuxhumana kwenethiwekhi okungavamile.
Enye yezinhloso eziyinhloko ukuthola ubuthakathaka obuxhashazwayo kanye nezikhala zokuphephaLokhu kungafaka phakathi isofthiwe esiphelelwe yisikhathi, ukucushwa okuzenzakalelayo, ama-port avulekile angafanele, ama-akhawunti angenazo iziqiniseko ezimbili, izimvume eziningi, amaphutha okuthuthukiswa, noma ukwehluleka kokuhlukaniswa kwenethiwekhi. Lolu hlu lobuthakathaka luzobe selwakha isisekelo sezinyathelo zokulungisa, kanye namathuluzi okulungisa Ukuphathwa Kwesimo Sokuphepha Kwesicelo (i-ASPM).
Ukuhlaziywa kunquma nobubanzi bangempela bokuhlaselwa.Lokhu kuhlanganisa ukunquma ukuthi yiziphi izinhlelo eziye zaphazamiseka, ukuthi yimaphi ama-akhawunti asetshenzisiwe, ukuthi iyiphi idatha efinyelelwe noma ehlungiwe, nokuthi umhlaseli ube nekhono lokuhamba ngokukhululeka isikhathi esingakanani. Ezindaweni eziyinkimbinkimbi, lokhu kungadinga izinsuku noma amasonto okubuyekezwa okuningiliziwe.
Uma kunezinkomba zokuphuma, amalogi enethiwekhi kanye nedathabheyisi ayahlolwa ngokujulile. ukuze kulinganiswe ukuthi kungakanani ulwazi oluputshukile, ukuthi luya kuphi, futhi ngaluphi uhlobo. Lolu lwazi lubalulekile ekuhloleni umthelela wezomthetho nowedumela, kanye nezibopho zesaziso eziphathimandleni nakubantu abathintekayo.
Wonke lo msebenzi ubonakala emibikweni yobuchwepheshe kanye neyezokuphathaLe mibiko akufanele ichaze nje kuphela izici zobuchwepheshe zalolu hlaselo, kodwa futhi nemiphumela yalo ebhizinisini kanye nezincomo zokuthuthukisa. Isebenza njengesisekelo sokuthethelela ukutshalwa kwezimali kwezokuphepha, ukubuyekeza izinqubo zangaphakathi, kanye nokuqinisa ukuqeqeshwa kwabasebenzi.
Hlola umonakalo, idatha esengozini, kanye nomthelela ebhizinisini
Ngaphandle kwezici zobuchwepheshe kuphela, ngemva kwesigameko, izinombolo nemiphumela kudingeka kubekwe etafuleni.Okusho ukuthi, ukuhlola umthelela emisebenzini, kwezomnotho, kwezomthetho kanye nakwezedumela.
Okokuqala, umthelela wokusebenza uyahlaziywa.Lokhu kufaka phakathi: izinsizakalo eziye zangasebenzi, ukuphazamiseka kokukhiqiza, isikhathi sokungasebenzi kwezinhlelo ezibalulekile, ukubambezeleka kokulethwa noma amaphrojekthi, ukungakwazi ukufaka i-invoyisi, ukukhanselwa kwama-aphoyintimenti noma ukungenelela, njll. Lolu lwazi luyisisekelo sokulinganisa ukulahlekelwa okubangelwa ukuphazamiseka kwebhizinisi.
Ngemuva kwalokho idatha ethintekile kumele ihlolwe ngokucophelela.: ulwazi lomuntu siqu lwamakhasimende, abasebenzi, abaphakeli noma iziguli; idatha yezezimali; izimfihlo zokuhweba; impahla yobuhlakani; izinkontileka; amarekhodi ezokwelaphaAmarekhodi ezemfundo, njalo njalo. Uhlobo ngalunye lwedatha lunezingozi nezibopho ezahlukene ezihlobene nalo.
Ukuze uthole idatha yomuntu siqu, izinga lokuzwela kumele lihlolwe. (isibonelo, idatha yezempilo noma yezezimali uma kuqhathaniswa nolwazi lokuxhumana olulula), inani lamarekhodi adaluliwe, kanye namathuba okusetshenziswa okunonya njengokukhwabanisa, ukwebiwa kobunikazi, noma ukusongela. Lokhu kuhlola kunquma ukuthi kufanele yini kwazise i-Spanish Data Protection Agency (AEPD) kanye nabantu abathintekayo, kanye nokuthi yiziphi izinyathelo zokubuyisela okufanele zinikezwe.
Okwesithathu, umthelela oqondile kwezomnotho uyabalwa.Lezi zindleko zifaka phakathi izinsizakalo zokuphepha kwe-inthanethi zangaphandle, abameli, ukuxhumana ngezinkinga, ukuvuselelwa kwesistimu, ukuthengwa ngokushesha kwamathuluzi amasha okuphepha, isikhathi esengeziwe, ukuhamba, njll. Ngaphezu kwalokho, kunemiphumela engaqondile, okunzima kakhulu ukuyilinganisa, njengokulahlekelwa amakhasimende, ukulimala kwedumela, izinhlawulo zomthetho, noma izinhlawulo zenkontileka.
Ekugcineni, kuhlolwa umthelela wedumela kanye nokwethenjwa kwababambiqhaza.Lokhu kufaka phakathi ukusabela kwamakhasimende, abatshalizimali, abalingani, abezindaba kanye nabasebenzi. Isigameko esingaphathwanga kahle, esingenakho ukucaca noma impendulo ehamba kancane, singaba nezindleko zedumela ezihlala iminyaka, noma ngabe sixazululwe kahle ngobuchwepheshe.
Ukuthola kabusha okuphephile: ukubuyisela izinhlelo ngaphandle kokubuyisela isitha kabusha
Uma sekuqondwe ukuthi kwenzekeni futhi umhlaseli esexoshiwe, isigaba sokuqala kabusha izinhlelo siyaqala. bese ubuyela esimweni esijwayelekile. Ukushesha kuyachitha uma ufuna ukugwema ukutheleleka kabusha noma ukushiya iminyango yangemuva isebenza.
Isinyathelo sokuqala ukuchaza izinto eziza kuqala ekubuyiseleni esimweni sazoAkuzona zonke izinhlelo ezibaluleke ngokulinganayo ekuqhubekeni kwebhizinisi: kubalulekile ukuhlonza ukuthi yiziphi ezibaluleke ngempela (ukukhokhisa, ama-oda, izinhlelo zokusekela, amapulatifomu esevisi yamakhasimende, ukuxhumana okuyisisekelo) bese uzibuyisela kuqala, ushiye lezo zesimo sesibili noma sokuphatha kuphela ukuze zisetshenziswe kamuva.
Ngaphambi kokubuyisela, izinhlelo kumele zihlanzwe noma ziphinde zifakwe.Ezimweni eziningi, inketho ephephile kakhulu ukufometha nokufaka kabusha kusukela ekuqaleni, bese usebenzisa ama-patches kanye nokucushwa okuqinisiwe, kunokuzama "ukuhlanza" uhlelo oluphazamisekile ngesandla. Lokhu kuhlanganisa ukubuyekeza ngokucophelela izikripthi zokuqala, imisebenzi ehleliwe, ama-akhawunti esevisi, okhiye bokubhalisa, kanye nanoma yiziphi izindlela zokuphikelela ezingaba khona.
Ukubuyiselwa kwedatha kumele kwenziwe kusukela kuma-backups aqinisekisiwe. njengokungaguquki. Ukuze kwenziwe lokhu, ama-backup ahlaziywa ngamathuluzi okulwa ne-malware, futhi izinsuku ziyabuyekezwa ukuze kukhethwe izinguqulo ngaphambi kokuqala kwesigameko. Noma nini lapho kungenzeka, kunconywa ukuthi uqale ubuyisele endaweni yokuhlola ehlukanisiwe futhi uqinisekise ukuthi konke kusebenza kahle futhi ngaphandle kwezimpawu zomsebenzi ononya.
Ngesikhathi sokubuya ekukhiqizweni kwezinhlelo nezinsizakalo, ukuqapha kumele kube nzima kakhulu.Umgomo uwukubona ngokushesha noma yimuphi umzamo womhlaseli wokuxhuma kabusha, umsebenzi ongavamile, ukwanda kwethrafikhi okungalindelekile, noma ukufinyelela okungavamile. Izixazululo ezifana ne-EDR/XDR, i-SIEM, noma izinsizakalo zokuqapha eziphethwe (MDR) zisiza kakhulu kulokhu kuqapha okuthuthukisiwe.
Sebenzisa isigaba sokwakha kabusha ukuze uthuthukise izilawuli zokuphepha Kuyisinqumo esihlakaniphile. Isibonelo, izinqubomgomo zephasiwedi zingaqiniswa, ukuqinisekiswa kwezinto eziningi, qinisa ukuhlukaniswa kwenethiwekhi, nciphisa amalungelo amaningi, faka uhlu olugunyaziwe lwezinhlelo zokusebenza, noma sebenzisa amathuluzi engeziwe okuthola ukungena kanye nokulawula ukufinyelela.
Izifundo ezifundiwe kanye nentuthuko eqhubekayo ngemuva kwalesi sigameko
Uma isimo esiphuthumayo sesidlulile, sekuyisikhathi sokuhlala phansi ngokuthula. futhi uhlaziye ukuthi yini ehambe kahle, ukuthi yini engahambanga kahle, nokuthi yini engathuthukiswa. Ukuphatha lesi sigameko njengomsebenzi wokuqeqesha wangempela yikho okuphakamisa ngempela izinga lokuvuthwa kokuphepha kwe-inthanethi.
Kujwayelekile ukuhlela ukubuyekezwa kwangemva kwesigameko Lo mhlangano uhlanganisa abameleli be-IT, ezokuphepha, ibhizinisi, ezomthetho, ezokuxhumana, kanye, uma kusebenza, abathengisi bangaphandle. Ubuyekeza izikhathi, izinqumo ezenziwe, izinselelo ezihlangatshezwene nazo, izithiyo, kanye nezindawo ezingabonakali ekutholakaleni noma ekuphenduleni.
Omunye wemiphumela yalokhu kubuyekezwa ukulungisa uhlelo lokuphendula ezigamekweni.: chaza kabusha izindima kanye noxhumana nabo, thuthukisa amathempulethi okuxhumana, lungisa izinqubo zobuchwepheshe, ucacise izindlela zokwenyusa, noma wengeze izimo ezithile zokusebenzisa (isb., ukuhlaselwa kwe-ransomware, ukuvuza kwedatha, noma izehlakalo zamafu).
Esinye isixazululo esibalulekile ukubeka phambili izinyathelo zokuphepha kwesakhiwo Ngokusekelwe ebuthakathakeni obutholakele: izinhlelo zokulungisa, ukuqinisa ukucushwa, ukuhlukanisa amanethiwekhi, ukubuyekeza imithetho yomlilo, ukusebenzisa i-MFA lapho ingakasebenzi khona, ukunciphisa ukufinyelela okukude, ukusebenzisa isimiso selungelo elincane, nokuthuthukisa isitokwe sempahla.
Ngesikhathi esifanayo, lesi sigameko sivame ukugqamisa isidingo sokuqeqeshwa okwengeziwe kanye nokuqwashisa.Ukuzijwayeza ubugebengu bokweba imininingwane ebucayi, imihlangano yokuphendula ngendlela esebenzayo, izikhathi zemikhuba emihle yokuphatha ulwazi, kanye nokuzivocavoca okusethebuleni kusiza abasebenzi bazi ukuthi benze kanjani futhi banciphise ingozi yamaphutha abantu abangela ukwephulwa okuningi kangaka.
Izinhlangano ezinezinsizakusebenza zangaphakathi ezimbalwa zingase zicabangele ukunikeza izinsizakalo eziphethwe ngaphandle. njengokuqapha okungu-24/7, ukutholwa nokuphendula okuphethwe (i-MDR), noma amaqembu angaphandle okusabela ezigamekweni ahambisana ne-CSIRTs yangaphakathi. Lokhu kubaluleke kakhulu lapho ukuqapha okuqhubekayo kungenakulondolozwa noma lapho izindawo ziyinkimbinkimbi kakhulu.
Ekugcineni, yonke isigameko esihlaziywe kahle siba yisivikelo sokuthuthuka. Lokhu kuqinisa ukuqina, kusheshisa amakhono okuphendula, futhi kunciphisa amathuba okuba ukuhlaselwa okufanayo kuphumelele ngokulinganayo esikhathini esizayo. Ukubuka ukuphathwa kwezehlakalo njengomjikelezo oqhubekayo wokulungiselela, ukuthola, ukuphendula, nokufunda yikho okuhlukanisa izinhlangano ezivele "zicime imililo" kulezo eziphuma ziqine ngempela ngokushaya ngakunye.
Ukugcina umbono ophelele walokho okufanele ukubheke ngemuva kwesigameko sokuphepha kwe-inthanethi —kusukela ekuboneni ukuhlaselwa kuya ekugcineni ubufakazi, ukuxhumana nabantu besithathu, ukululama okuphephile, kanye nezifundo ozifundile— kukuvumela ukuthi usuke ekwesabeni okungenhloso uye empendulweni yobungcweti nehlelekile, ekwazi ukunciphisa umonakalo, ukulandela imithetho, kanye nokuqinisa ukuphepha kwenhlangano ngendlela ebonakalayo.
Umbhali oshisekayo ngomhlaba wamabhayithi nobuchwepheshe ngokujwayelekile. Ngiyathanda ukwabelana ngolwazi lwami ngokubhala, futhi yilokho engizokwenza kule bhulogi, ngikubonise zonke izinto ezithakazelisayo kakhulu ngamagajethi, isofthiwe, ihadiwe, izitayela zobuchwepheshe, nokuningi. Inhloso yami ukukusiza ukuthi uzulazule emhlabeni wedijithali ngendlela elula nejabulisayo.