Chii Social Engineering? 11 Mienzaniso Yekuchenjerera
Zviri Mukati
Chii chaizvo chinonzi Social Engineering, zvakadaro?
Social engineering inoreva chiitiko chekunyengera vanhu kuti vaburitse ruzivo rwavo rwakavanzika. Rudzi rweruzivo rwunotsvagwa nematsotsi runogona kusiyana. Kazhinji, vanhu vacho vanonangwa kune yavo yebhangi ruzivo kana mapassword avo eakaundi. Matsotsi anoedzawo kuwana komputa yemunhu anenge abatwa nemhosva kuti aise software yakaipa. Iyi software inobva yavabatsira kuburitsa chero ruzivo rwavangade.
Matsotsi anoshandisa magariro einjiniya nekuti kazhinji zviri nyore kubira munhu nekuwana chivimbo chavo uye kumuita kuti vasiye ruzivo rwavo. Iyo inzira iri nyore pane kubira zvakananga mukombuta yemumwe munhu pasina ruzivo rwavo.
Social Engineering Mienzaniso
Iwe unozogona kuzvidzivirira zvirinani nekuziviswa nezve nzira dzakasiyana idzo social engineering inoitwa.
1. Kunyepedzera
Pretexting inoshandiswa kana mupari wemhosva achida kuwana ruzivo rwakadzama kubva kune akabatwa kuita basa rakaoma. Murwi anoedza kuwana ruzivo kuburikidza nenhema dzakanyatsogadzirwa.
Mupari wemhosva anotanga nekuvimba nemunhu anenge abirwa. Izvi zvinogona kuitwa nokuedzesera shamwari dzavo, vaunoshanda navo, vakuru vakuru vebhanga, mapurisa, kana zvimwe zviremera zvingabvunza mashoko anokosha akadaro. Anomurwisa anovabvunza nhevedzano yemibvunzo nechikonzero chekusimbisa chitupa chavo uye anounganidza dhata remunhu mukuita uku.
Iyi nzira inoshandiswa kubvisa marudzi ese ezvemunhu uye zvepamutemo ruzivo kubva kumunhu. Ruzivo rwakadai runogona kusanganisira kero dzemunhu, nhamba dzekuchengetedzwa kwevanhu, nhamba dzenhare, marekodhi efoni, ruzivo rwebhangi, mazuva ezororo revashandi, ruzivo rwekuchengetedza zvine chekuita nemabhizinesi, zvichingodaro.
2. Kubira Kutsauswa
Iyi imhando yehutsotsi iyo inowanzo kunanga kune vanotakura uye makambani ekufambisa. Mhosva anoedza kunyengedza kambani yainonangwa nekuita kuti vape pasuru yavo yekuendesa kune imwe nzvimbo yekuendesa kune yaimboda. Iyi nzira inoshandiswa kuba zvinhu zvakakosha zviri kuendeswa kuburikidza nepositi.
Chitsotsi ichi chinogona kuitwa kunze kwenyika uye online. Vashandi vanotakura mapakeji vanogona kusvikirwa uye kugutsikana kuti vasiye kutakura kune imwe nzvimbo. Vanorwisa vanogona zvakare kuwana mukana weiyo online delivery system. Vanogona kuzobata hurongwa hwekutumira uye kuita shanduko kwairi.
3. Kubiridzira
Phishing ndeimwe yeanonyanya kufarirwa mafomu einjiniya yemagariro. Phishing scams zvinosanganisira email uye mameseji mameseji anogona kugadzira pfungwa yekuda kuziva, kutya, kana kukurumidza muvari kubatwa. Iwo mameseji kana email anovakurudzira kudzvanya pane zvinongedzo zvinotungamira kune yakaipa mawebhusaiti kana zvakanamirwa izvo zvaizoisa malware pamidziyo yavo.
Semuenzaniso, vashandisi vepamhepo sevhisi vanogona kugamuchira email ichiti pane shanduko yemutemo inoda kuti vachinje mapassword avo nekukasika. Iyo tsamba ichange iine chinongedzo kune webhusaiti isiri pamutemo iyo yakafanana neyekutanga webhusaiti. Mushandisi anozoisa magwaro eakaundi yavo mune iyo webhusaiti, achifunga kuti ndiyo iri pamutemo. Pakutumira ruzivo rwavo, ruzivo ruchawanikwa kune tsotsi.
4. Spear Phishing
Iyi imhando yehutsotsi hunonangana kune mumwe munhu kana sangano. Anorwisa anogadzirisa mameseji avo zvichienderana nenzvimbo yebasa, hunhu, uye zvibvumirano zvine chekuita neakabatwa, kuti aite kunge ari echokwadi. Spear phishing inoda kushanda nesimba kune tsotsi uye zvinogona kutora nguva yakawanda kupfuura yenguva dzose. Zvisinei, ivo vakaoma kuziva uye kuva nekubudirira kuri nani.
Semuyenzaniso, munhu anorwisa ari kuedza pfumo phishing pasangano anotumira email kune mushandi anoteedzera IT consultant wekambani. Iyo email ichagadzirwa nenzira inofanana nemabatiro anoita mupi wezano. Ichaita seyechokwadi zvakakwana kuti inyengedze mugamuchiri. Iyo email ichaita kuti mushandi achinje password yavo nekuvapa chinongedzo kune yakashata peji yewebhu iyo inorekodha ruzivo rwavo uye kuitumira kune anorwisa.
5. Mvura-Holing
Kubiridzira kwemvura kunotora mukana wemawebhusaiti akavimbika anogara achishanyirwa nevanhu vazhinji. Mhombwe inounganidza ruzivo maererano neboka rakanangana nevanhu kuti vaone kuti ndeapi mawebhusaiti avanogara vachishanyira. Aya mawebhusaiti anozoyedzerwa kuona kusasimba. Nokufamba kwenguva, nhengo imwe chete kana kupfuura dzeboka iri dzichatapukirwa. Anorwisa anozokwanisa kuwana iyo yakachengeteka system yeava vashandisi vane hutachiona.
Zita racho rinobva mukufananidza kunwa kunoita mhuka mvura nekuungana panzvimbo dzadzinovimba nadzo kana dzanzwa nyota. Havafungi kaviri nezvekutora matanho ekuzvidzivirira. Zvikara zvinoziva izvi, saka zvinomirira pedyo, zvakagadzirira kuvarwisa kana varindi vazvo vadzikira. Kudonhedza mvura munzvimbo yedhijitari inogona kushandiswa kuita kumwe kurwiswa kwakaipisisa kweboka revashandisi vanotambura panguva imwe chete.
6. Kurezva
Sezvinooneka kubva pazita racho, kubata chiredzo kunosanganisira kushandisa vimbiso yenhema kumutsa havi yekuda kuziva kana makaro. Iye akabatwa anokwezverwa mumusungo wedhijitari uyo unozobatsira tsotsi kubira ruzivo rwavo kana kuisa malware mumasystem avo.
Kureurura kunogona kuitika kuburikidza nevese online uye offline mediums. Semuenzaniso wepamhepo, mupari wemhosva anogona kusiya chirauro muchimiro cheflash drive yakabatwa nemalware munzvimbo dzinoonekwa. Iyi inogona kunge iri lifti, imba yekugezera, nzvimbo yekupaka, nezvimwe, zvekambani yakanangwa. Iyo flash drive ichava nekutarisa kwechokwadi kwairi, izvo zvichaita kuti munhu akabatwa aitore oiisa kubasa kana komputa yepamba. Iyo flash drive inozotumira otomatiki malware muhurongwa.
Nzira dzepamhepo dzekuraudzira dzinogona kunge dziri muchimiro chezvishambadzo zvinokwezva uye zvinokwezva izvo zvinokurudzira vanobatwa kudzvanya pazviri. Iyo link inogona kudhawunirodha zvirongwa zvakashata, izvo zvinozokanganisa komputa yavo nemalware.
7. Quid Pro Quo
A quid pro quo kurwisa zvinoreva "chimwe chinhu chechimwe chinhu" kurwisa. Iko mutsauko weiyo baiting tekinoroji. Panzvimbo pekunyengedza vakakuvadzwa nevimbiso yekubatsirwa, quid pro quo kurwisa inovimbisa sevhisi kana chimwe chiitiko chaitwa. Anorwisa anopa rubatsiro rwemanyepo kune anenge abatwa achichinjana kuwana kana ruzivo.
Nzira inonyanyozivikanwa yekurwiswa uku ndeye apo tsotsi anoteedzera mushandi weIT wekambani. Mhombwe anobva abata vashandi vekambani iyi ovapa software nyowani kana kusimudzira system. Mushandi anozokumbirwa kudzima yavo anti-virus software kana kuisa yakaipa software kana vachida kukwidziridzwa.
8. Kukwenya muswe
A tailgating attack inonziwo piggybacking. Zvinosanganisira mupari wemhosva ari kutsvaga kupinda mukati menzvimbo yakaganhurirwa iyo isina matanho akakodzera echokwadi. Mupari wemhosva anogona kupinda nekupinda kumashure kwemumwe munhu anenge apihwa mvumo yekupinda munzvimbo iyi.
Semuenzaniso, tsotsi rinogona kuedzesera mutyairi wekutakura zvinhu ane maoko akazara mapasuru. Anomirira mushandi ane mvumo kuti apinde pamusuwo. Iye munyengeri wekutumira mukomana anobva akumbira mushandi kuti amuchengetere gonhi, nokudaro achimurega achipinda pasina mvumo.
9. Musungo wehuchi
Uhu hunyengeri hunosanganisira tsotsi rinonyepedzera kunge munhu anoyevedza pamhepo. Munhu wacho anoshamwaridzana nevavanovavarira uye anonyepera hukama hwepamhepo navo. Mupari wemhosva anobva atora mukana wehukama uhwu kubvisa ruzivo rwevakabatwa, kukwereta mari kubva kwavari, kana kuvaita kuti vaise malware mumakomputa avo.
Zita rekuti 'honeytrap' rinobva mumaitiro evasori ekare kwaishandiswa vakadzi kunanga varume.
10. Rogue
Rogue software inogona kuoneka muchimiro chehutsotsi anti-malware, rogue scanner, rogue scareware, anti-spyware, zvichingodaro. Rudzi urwu rwekombuta malware inotsausa vashandisi mukubhadhara yakafananidzwa kana yenhema software yakavimbisa kubvisa malware. Rogue kuchengetedza software yave kunetseka kuri kukura mumakore achangopfuura. Mushandisi asingafungidzire anogona kuwira nyore nyore kune software yakadai, inowanikwa yakawanda.
11.Malware
Chinangwa chekurwisa malware ndechekuita kuti munhu anenge abatwa aise malware mumasystem avo. Anorwisa anoshandisa manzwiro evanhu kuita kuti munhu akabatwa abvumire iyo malware mumakomputa avo. Iyi nzira inosanganisira kushandisa mameseji, mameseji, social media, email, nezvimwewo, kutumira mameseji ephishing. Aya mameseji anonyengedza munhu akabatwa nekudzvanya chinongedzo chinovhura webhusaiti ine iyo malware.
Nzira dzekutyisidzira dzinowanzo shandiswa kune meseji. Vanogona kutaura kuti pane chakashata neakaundi yako uye kuti unofanira kubva wadzvanya pane yakapihwa link kuti upinde muakaundi yako. Iyo link inozoita kuti iwe utore faira iyo iyo malware ichaiswa pakombuta yako.
Gara Uchiziva, Gara Wakachengeteka
Kuzvichengeta uchiziva ndiro danho rekutanga rekuzvidzivirira kubva social engineering kurwisa. Zano rekutanga kufuratira chero mameseji achikumbira password yako kana ruzivo rwemari. Iwe unogona kushandisa mafirita e spam anouya nemasevhisi ako eemail kuratidza maemail akadaro. Kuwana yakavimbika anti-virus software kunobatsirawo kuwedzera kuchengetedza system yako.
