Spear Phishing Tsanangudzo | Chii chinonzi Spear Phishing?

Zviri Mukati

Spearphishing scam

Spear Phishing Tsanangudzo

Spear phishing i cyber-attack iyo inonyengedza munhu akabatwa kuti aburitse ruzivo rwakavanzika. Chero ani zvake anogona kuva chipfuro chekurwiswa nemapfumo. Matsotsi anogona kunanga vashandi vehurumende kana makambani akazvimirira. Spear phishing kurwisa kuita kunge kunobva kune waunoshanda naye kana shamwari yemunhu akabatwa. Kurwiswa uku kunogona kutevedzera matemplate eemail kubva kumakambani anozivikanwa seFexEx, Facebook, kana Amazon. 
 
Chinangwa chekurwisa phishing ndechekuita kuti munhu akabatwa adzvanye link kana kudhawunirodha faira. Kana munhu akabatwa akadzvanya chinongedzo uye anokwezvwa kuti anyore mu login info pane fake web peji, vachangobva kupa magwaro avo kune anorwisa. Kana munhu akabatwa akadhawunirodha faira, ipapo malware inoiswa pakombuta uye panguva iyoyo, akabatwa akapa pamusoro pezviitiko zvese uye ruzivo rwuri pakombuta iyoyo.
 
Nhamba yakanaka yekurwiswa kwepfumo-phishing inotsigirwa nehurumende. Dzimwe nguva, kurwiswa kunobva kune cybercriminals vanotengesa ruzivo kuhurumende kana makambani. Kubudirira kwepfumo-phishing pakambani kana hurumende kunogona kutungamirira kurudzikinuro rwakakura. Makambani makuru akadai seGoogle neFacebook akarasikirwa nemari pakurwiswa uku. Anenge makore matatu apfuura, BBC yakashuma kuti makambani maviri vakabirwa yemari inosvika zana remamiriyoni emadhora pamunhu mumwe nemumwe.

Spear Phishing yakasiyana sei nePhishing?

Kunyange zvazvo phishing uye spear-phishing zvakafanana muzvinangwa zvavo, zvakasiyana nenzira. A phishing attack inguva imwe chete yekuedza yakanangana neboka guru revanhu. Izvo zvinoitwa ne-off-the-sherufu maapplication akagadzirirwa icho chinangwa. Kurwiswa uku hakutore hunyanzvi hwekuita. Pfungwa yenguva dzose kurwisa phishing ndeyekuba zvitupa pamwero mukuru. Matsotsi anoita izvi kazhinji ane chinangwa chekutengesa magwaro padandemutande rakasviba kana kupedza maakaundi ekubhanga evanhu.
 
Spear phishing kurwisa kwakanyanyisa. Ivo vanowanzo kutariswa kune chaivo vashandi, makambani, kana masangano. Kusiyana neakajairwa maemail ephishing, pfumo-phishing maemail anoita seanobva kune zviri pamutemo kuonana kunocherechedzwa nevavariro.. Uyu anogona kunge ari maneja weprojekiti kana timu inotungamira. Zvinangwa zvakarongwa uye zvakanyatsotsvakurudzwa. Kurwiswa kwepfumo kunowanzo shandisa ruzivo rwunowanikwa pachena kutevedzera zvinangwa zvemunhu. 
 
Somuenzaniso, murwi anogona kunzvera munhu akabatwa ndokuwana kuti ane mwana. Ipapo vanogona kushandisa ruzivo irworwo kugadzira zano remashandisirwo eruzivo irworwo kwavari. Semuenzaniso, vanogona kutumira chiziviso chekambani yenhema vachibvunza kana vangada kuchengetwa kwemahara kwevana vavo vanopihwa nekambani. Uyu ungori mumwe muenzaniso wekuti kurwisa kwepfumo kunoshandisa sei data rinozivikanwa neveruzhinji (kazhinji kuburikidza nesocial media) kukurwisa.
 
Mushure mekuwana magwaro emunhu akabatwa, anorova anogona kuba ruzivo rwemunhu kana rwemari. Izvi zvinosanganisira ruzivo rwekubhangi, nhamba dzekuchengetedzwa kwevanhu, uye nhamba dzekadhi rechikwereti. Spear phishing inoda kumwe kutsvagisa kune avo vakakuvadzwa kuti vapinde mukudzivirira kwavo kubudirira.Kurwisa kwepfumo kunowanzova kutanga kwekurwiswa kukuru kwekambani. 
Pfumo phishing

Kurwisa kweSpear Phishing kunoshanda sei?

Vasati vaita cybercriminal kurwisa kwepfumo, vanotsvaga vavariro yavo. Munguva iyi, vanowana vavariro yavo 'email, mazita emabasa, uye vavanoshanda navo. Imwe yeruzivo urwu iri pawebhusaiti yekambani iyo chinangwa chinoshanda pairi. Ivo vanowana rumwe ruzivo nekuenda kuburikidza neyakananga LinkedIn, Twitter, kana Facebook. 
 
Mushure mekuunganidza ruzivo, cybercriminal inoenderera mberi nekugadzira meseji yavo. Ivo vanogadzira meseji inoita senge iri kubva kune yaanoziva yechinangwa, senge mutungamiri wechikwata, kana maneja. Pane nzira dzakati wandei iyo cybercriminal inogona kutumira meseji kune chinangwa. Maemail anoshandiswa nekuda kwekushandisa kwavo kazhinji munzvimbo dzemakambani. 
 
Kurwiswa nepfumo-phishing kunofanirwa kuve nyore kuziva nekuda kwekero yeemail iri kushandiswa. Anorwisa haakwanisi kuva nekero imwe chete neyemunhu ari kurovha. Kunyengedza chinangwa, anorwisa anobira kero yeemail yeumwe weanotarisana nawo. Izvi zvinoitwa nekuita kuti kero yeemail iite seyakafanana neyekutanga sezvinobvira. Vaigona kutsiva “o” na”0” kana kuti “l” nemavara makuru “I”, zvichingodaro. Izvi, pamwe chete nenyaya yekuti zviri muemail zvinotaridzika zviri pamutemo, zvinoita kuti zviome kuziva kurwisa kwepfumo.
 
Iyo email inotumirwa kazhinji ine faira yakanamatira kana chinongedzo kune yekunze webhusaiti iyo iyo chinangwa chaigona kudhawunirodha kana kudzvanya. Webhusaiti kana faira yekunamatira ingave ine malware. Iyo malware inoita kana yango dhawunirodha pachinhu chechinangwa. Iyo malware inotanga kutaurirana neiyo cybercriminal mudziyo. Kana izvi zvangotanga zvinogona kunyora makiyi, kukohwa data, uye kuita zvinorairwa nemugadziri.

Ndiani anofanirwa kunetseka nezve Spear Phishing kurwisa?

Wese munhu anofanirwa kuve akangwarira kurwiswa kwepfumo phishing. Mamwe mapoka evanhu anowanzoita kurwiswa kupfuura vamwe. Vanhu vane mabasa epamusoro-soro mumaindasitiri akadai sehutano, mari, dzidzo, kana hurumende vane njodzi huru.. Kubudirira kwepfumo phishing kurwisa chero kweaya maindasitiri kunogona kutungamira kune:

  • Kutyora kwedata
  • Kubhadhara kukuru kwerudzikinuro
  • Kutyisidzira kweNational Security
  • Kurasikirwa nemukurumbira
  • Migumisiro yepamutemo

 

Iwe haugone kudzivirira kuwana phishing emails. Kunyangwe iwe ukashandisa email sefa, kumwe kurwiswa kwepfumo kuchauya kuburikidza.

Nzira yakanakisa yaunokwanisa kubata nayo iyi ndeyekudzidzisa vashandi maitiro ekuona maemail akashata.

 

Unogona sei kudzivirira Spear Phishing kurwiswa?

Pane akati wandei matanho aungatora kudzivirira pfumo phishing kurwiswa. Pazasi pane rondedzero yedziviriro uye yekudzivirira kurwisa pfumo-phishing:
 
  • Rega kuisa ruzivo rwakawanda pamusoro pako pasocial media. Iyi ndiyo imwe yekutanga kumira kwecybercriminal kubata hove kuti uwane ruzivo nezvako.
  • Ita shuwa kuti sevhisi yekutambira yaunoshandisa ine email kuchengetedza uye anti-spam dziviriro. Izvi zvinoshanda semutsetse wekutanga wekudzivirira kubva kune cybercriminal.
  • Usadzvanya pane zvinongedzo kana faira zvakabatanidzwa kusvika iwe uine chokwadi chekwakabva email.
  • Ngwarira maemail asina kukumbirwa kana maemail ane zvikumbiro zvekukurumidzira. Edza kusimbisa chikumbiro chakadaro kuburikidza neimwe nzira yekutaurirana. Ipa munhu anofungidzirwa runhare, kutumira mameseji, kana kutaura takatarisana.
 
Masangano anofanirwa kudzidzisa vashandi vawo nezvemapfumo-phishing matekiniki. Izvi zvinobatsira vashandi kuziva zvekuita kana vasangana ne-spear-phishing email. Iyi ndiyo dzidzo inogona ibudirire neSpear Phishing Simulation.
 
Imwe nzira yaunokwanisa kudzidzisa nayo vashandi vako maitiro ekudzivirira kurwiswa nepfumo-phishing kuburikidza nekuita phishing.

Chii chinonzi Phishing Simulations?

A spear-phishing simulation chishandiso chakanakisa chekuita kuti vashandi vakurumidze pamapfumo-phishing maitiro emacybercriminals. Iri nhevedzano yezviitwa zvekudyidzana zvakagadzirirwa kudzidzisa vashandisi vayo nzira yekuziva maemail-ekunyepa kuti vadzivise kana kuzvitaura. Vashandi vanotarisana nepfumo-phishing simulations vane mukana uri nani wekuona pfumo-phishing kurwisa uye kuita zvakakodzera.

Ko kuenzanisa kwepfumo phishing kunoshanda sei?

  1. Zivisa vashandi kuti vachange vachigamuchira "fake" phishing email.
  2. Vatumire chinyorwa chinotsanangura maitiro ekuona maemail e phishing zvisati zvaitika kuti vave nechokwadi chekuti vaziviswa vasati vaongororwa.
  3. Tumira iyo "fake" phishing email panguva isina kujairika mukati memwedzi waunozivisa kudzidziswa kwephishing.
  4. Eresa nhamba dzevashandi vangani vakadonha pakuedza phishing maringe nechiyero chisina kana kuti ndiani akashuma kuedza kwe phishing.
  5. Ramba uchidzidzira nekutumira matipi ekuziva phishing uye kuyedza vaunoshanda navo kamwe chete pamwedzi.

 

>>> Unogona kudzidza zvakawanda nezve kutsvaga iyo chaiyo phishing simulator HERE.<<

gophish dashboard
Maitiro Ekuita Yemahara Phishing Muedzo YeSangano Rako

Nei ndingade kutevedzera kurwisa kwePhishing?

Kana sangano rako rikarohwa nekurwiswa nemapfumo, huwandu hwekurwisa kwakabudirira huchave hunokunetsa.

Avhareji yebudiriro mwero wekurwiswa kwepfumo ndeye 50% yekudzvanya chiyero che phishing emails. 

Iyi ndiyo mhando yemhosva iyo kambani yako isingade.

Kana iwe uchiunza ruzivo kune phishing munzvimbo yako yebasa, hausi kungodzivirira vashandi kana kambani kubva pakubiridzira kadhi rechikwereti, kana kubirwa chitupa.

A phishing simulation inogona kukubatsira kudzivirira kutyora kwedata kunodhura kambani yako mamirioni mumatare uye mamirioni mukuvimba nevatengi.

>> Kana iwe uchida kutarisa matani ehuwandu hwe phishing, ndapota enda mberi utarise yedu Yekupedzisira Gwaro reKunzwisisa Phishing muna 2021 PANO.<<

Kana iwe uchida kutanga muyedzo wemahara weGoPhish Phishing Framework yakasimbiswa neHailbytes, unogona kutibata pano kuti uwane rumwe ruzivo kana tanga muyedzo wako wemahara paAWS nhasi.

Shandisa GoPhish Phishing Platform paUbuntu 18.04 muAWS

Services

Our Company

Our Address

Hailbytes

9511 Queens Guard Ct.

Laurel, MD 20723

Telefon: (732) 771-9995

Email: info@hailbytes.com

Solutions

Chengetedzo FAQ

Social Media