Mamayewar Rasha ta Ukraine Spurs Ransomware & Malware

Yayin da Rasha ke ci gaba da mamayewa da cin zarafi a Ukraine, ƙarin damuwa game da tsaro ta yanar gizo da kuma yuwuwar hare-hare daga masu yin barazana da Rasha ke marawa baya sun taso kuma har yanzu suna da yawa. Yayin da hare-haren malware na Rasha ke ci gaba da karuwa, Cyclonis Limited da abokan aikinta na bincike suna sa ido sosai kan abubuwan da ke tasowa kuma sun tattara ingantattun hanyoyi don taimaka muku kare kanku daga hare-hare.           

Hukumomin Amurka sun ba da sanarwar tsaro ta hadin gwiwa da dama, wadanda suka fito daga FBI, CISA da NSA, suna gargadin karuwar hare-haren yanar gizo da ke samo asali daga masu yin barazana da Rasha ke marawa baya, ciki har da na gwamnati. Ƙara shahara da samun damar kayan aikin kayan aikin ransomware da ransomware-as-a-service, sun haifar da fashewar hare-haren ransomware.

Don ƙarin koyo game da ci gaba da hare-haren yanar gizo akan Ukraine, ziyarci https://www.cyclonis.com/cyber-war-ukraine-russia-flares-up-invasion-continues/.

Yunkurin mamayar da Rasha ta yi wa Ukraine ya haifar da sauye-sauyen da ba zato ba tsammani a cikin shimfidar kayan aikin fansa. Misali, mashahuran kungiyar Conti ransomware sun gamu da kwararar bayanan sirri bayan sun bayyana goyon bayansu ga mamayewar Ukraine. Kusan lokaci guda, masu aikata laifukan da ke aiki da Racoon Stealer malware sun ba da sanarwar dakatar da aiki, yayin da daya daga cikin jiga-jigan kungiyar masu kutse ya mutu sakamakon yakin Ukraine.

Kamar yadda Damuwa Game da Dutsen Yukren, Masana Tsaron Intanet & Gwamnatoci Suna Ba da Faɗakarwar Ransomware

Duk da waɗannan sauye-sauye, ana sa ran Conti, LockBit 2.0, da sauran ƙungiyoyin ransomware za su ci gaba da aiki. Sakamakon karuwar damuwa kan halin da ake ciki a Ukraine, masana harkar tsaro ta yanar gizo da gwamnatoci sun ba da sanarwar tsaro ta yanar gizo suna gargadin dukkanin kungiyoyi da su kasance cikin shiri don yiwuwar gurgunta hare-haren yanar gizo. Ransomware, masu share bayanai, masu satar bayanai, botnets masu rarrabawar Sabis (DDoS), da sauran cututtukan malware da aka kwatanta a ƙasa ana tsammanin za su yi girma.

Conti ɗan wasan barazanar ransomware ne mai samun goyan bayan Rasha da ke da alhakin kai hare-hare da yawa kan mahimman hanyoyin samar da ababen more rayuwa. Conti ransomware yana aiki tun 2020. Yana amfani da algorithm AES-256 don lalata manyan fayiloli kuma yana buƙatar biyan kuɗi don buɗe fayilolin wanda aka azabtar. A lokacin da ake rubuta wannan rahoto, kungiyar ta fansho ta yi ikirarin cewa ta kulla yarjejeniya da kungiyoyi sama da 50, da suka hada da Sabis na Lafiya na Ireland da Oiltanking Deutschland GmbH, wani babban kamfanin ajiyar mai na Jamus.

LockBit 2.0 ɗan wasan fansa-as-a-sabis ne mai barazanar barazana wanda aka sani da kai hari ga manyan kamfanoni kamar Accenture da Bridgestone. Yana kai hari kan sabar Windows da Linux ta hanyar amfani da rashin lahani a cikin injina na ESXi na VMWare. LockBit yana amfani da hanyoyi da yawa don fitar da bayanai masu mahimmanci kuma yana lalata mahimman fayiloli. LockBit gabaɗaya yana barin umarni akan tsarin da aka daidaita yana ba da cikakken bayanin yadda za'a iya biyan kuɗi don dawo da bayanan da aka lalata. A cewar masu bincike a Trend Micro, a cikin rabin na biyu na 2021 Amurka ce kasar da LockBit 2.0 ta fi shafa.

Karakurt ɗan wasan kwaikwayo ne mai ci gaba mai dorewa da ke mai da hankali kan ɓarna bayanai da satar bayanan da ke da alaƙa da wasu kayan haɗin yanar gizo masu haɗari. A lokuta da yawa, an sami kamuwa da cututtuka na Karakurt da Conti sun yi karo da juna akan tsarin iri ɗaya. Masu bincike sun kuma lura da ma'amalar cryptocurrency tsakanin walat ɗin da ke da alaƙa da ƙungiyoyin biyu. Ko da kun biya buƙatun fansa na Karakurt, za ku iya faɗuwa ga Conti da sauran masu yin barazana nan gaba kaɗan.

Yadda Ake Kare Kanku Daga Harin Ransomware

Hare-haren da aka bayyana a sama ba su takaita ga kamfanoni da hukumomin gwamnati kadai ba. Yana da mahimmanci a tuna cewa yawancin hare-hare na ransomware suna kai hari ga kowane masu amfani da masu siye a duk duniya. Masu amfani za su iya bin waɗannan jagororin don taimakawa don hana harin ransomware da malware da taimakawa haɓaka tsaro na kan layi:

• Kare kwamfutarka daga yuwuwar hare-haren yanar gizo tare da ingantaccen shirin rigakafin malware kamar SpyHunter.

• Ajiye bayanan ku akai-akai. Yi la'akari da amfani da ingantaccen tsarin ajiyar girgije kamar Cyclonis Ajiyayyen don kare mahimman fayilolinku.

• Yi hankali akan layi. Kar a danna hanyoyin haɗin yanar gizo masu banƙyama daga sunayen yanki da ba a san su ba. Kar a sauke haɗe-haɗe ko danna hanyoyin haɗin yanar gizo a cikin imel ɗin da ba a buƙata ba. Waɗannan hanyoyin haɗin yanar gizo na iya haifar da ɓarna ko shigar da software maras so ba tare da sanin ku ba.

• Yi amfani da hadaddun kalmomin shiga na musamman. Don taimakawa kiyaye duk kalmomin shiga naku a wuri ɗaya na tsakiya, yi amfani da ingantaccen mai sarrafa kalmar sirri kamar Manajan kalmar wucewa ta Cyclonis.

• Ci gaba da sabunta software ɗin ku. Masana sukan ba da shawarar kunna sabunta software ta atomatik inda akwai.