Cac hoat dong hacking va tan cong Internet da tro thanh mot phan
trong nganh cong nghiep may tinh. Du trai qua bao thay doi va mo rong, nhung nhu
nguoi ta thuong noi, “ky thuat di den dau, hacker di den day”.
Bien phap tot nhat chong lai cac nguy co nay la hieu ro ve chung. Chung toi da
tap hop duoc mot danh sach chu giai cac thuat ngu thong thuong lien quan toi bao
mat Internet voi muc dich giup cho nguoi dung mang doi pho duoc voi cac nguy co
tu A den Z.
Dieu khien ActiveX
Cac dieu khien nay lien ket toi bat ky doi tuong truyen thong co noi dung dong
nao nhu cac bang, cac nut kich hoat trang web thong qua kich chuot. Chung thuong
duoc nhung trong mot trang Web. Mac du dieu khien ActiveX giup trang web “hoi
xuan”, nhung cac lap trinh vien co y do xau co the de dang su dung chung nhu la
mot phuong tien loi hai de download spyware. Cai dat trinh duyet va tuong lua
manh co the bao ve ban truoc cac dieu khien ActiveX. Download chung can than,
chi chap nhan ActiveX tu cac website tin cay.
Adware (Phan
mem quang cao)
Thong thuong cac thanh phan adware duoc cai dat canh ung dung phan mem
chia se hay phan mem mien phi. Cac quang cao nay mang lai loi nhuan cho hang
phat trien phan mem va chi duoc cung cap voi su dong y ban dau cua nguoi dung.
Adware the hien quang cao tren nen web thong qua cua so pop-up hoac banner quang
cao nam trong giao dien cua chuong trinh.
Antispyware software (Phan mem chong
spyware)
Day la mot thuat ngu rong danh cho cac chuong trinh bao ve may tinh truoc adware
va spyware. Hau het tat ca ung dung antispyware deu co mot bo quet do tim phan
tu dang ngo va loai bo chung. Mot so ung dung antispyware co modul bao ve thoi
gian thuc. Do la khien chan canh bao nguoi dung moi khi co chuong trinh nao do
dang co gang tu cai dat va cho phep nguoi dung tu choi chung.
Backdoor program (Chuong trinh cua
sau)
Day la chuong trinh phan mem cho phep ke tan cong dieu khien may tu xa, giau tat
ca bang chung thuc. Cac hang phan mem va chinh nguoi dung lai la tac gia pho
bien nhat cua cac chuong trinh backdoor. Ho su dung chung de thuc hien cac bai
kiem tra. Backdoor Trojan horse la chuong trinh spyware pha huy may tinh. Cac
Trojan horses nay dua chuong trinh backdoor vao nam tren may ban va tham nhap de
thu thap tin tuc hoac cai dat phan mem gian diep spyware.
Bot
Mot robot Internet, goi tat la “bot” la chuong trinh tu dong thuc hien chuc nang
timesaving thay hoat dong cua con nguoi. Do co the la mot spider loi keo website
nham thu thap du lieu nghien cuu thi truong. Cac bot spyware duoc cai dat bi mat
qua sau (worm), Trojan horse va thanh phan download vao o cung. Hau het chung
duoc dung trong cac cuoc tan cong tu xa nhu kieu tan cong DoS (denial-of-server)
hay cac kieu khac tuong tu.
Botnet
Mot botnet la mot mang bot duoc cai dat tren nhieu may tinh, moi may chay mot
malware giong het nhau. Mot botnet co the duoc dieu khien tu xa qua dich vu IRC
(Internet Relay Chat) hoac ung dung peer-to peer.
Browser-helper object (BHO)
Cac BHO la cac file (hau het la DLL) co the them tinh nang bo sung cho Internet
Explorer. Mac du co nhieu chuong trinh huu ich nhu Adobe Acrobat trien khai BHO,
nhung cac file nay cung thuong duoc dung cho cac muc dich khong lanh manh. BHO
ket hop voi adware hay spyware co the giam sat hoat dong trinh duyet, chiem
quyen dieu khien trang chu hay thay the mot so quang cao nao do bang cac quang
cao khac.
Cracker
Cracker la ten goi tat cua “Criminal Hacker” (hacker toi pham). Thong thuong chi
hay goi la hacker.
 Kieu tan cong Denial-of-server (DoS)
Denial-of-server la hinh thuc tan cong block quyen truy cap mot website hay mang
cua nguoi dung thong qua lua dao voi cac thong tin gia (bao gom rat nhieu yeu
cau). Thong tin nay se lam qua tai website va kha nang thuc hien chuong trinh
cua mang. Ket qua khien nguoi dung khong the truy cap dich vu Internet va xuat
hien cac thong bao khong the truy cap. Kieu tan cong DoS de doa hieu suat hoat
dong, gay thiet hai cao, mac du muc dich chinh cua cac hacker thong thuong la
pha roi chu khong nham an trom.
Kieu tan cong Distributed denial-of-service
(DDoS)
Day la mot bien the cua DoS, tan cong len nhieu may cung mot luc nham lua dao
mot dich nham don bang cac thong tin gia. Mot toi pham hacker co the chiem quyen
dieu khien may tinh va ep no cung mot so may khac thuc hien vu tan cong DoS len
nhieu may, nhieu nguoi dung va nhieu mang.
Dialer
Cac modem truyen thong su dung mot chuong trinh goi la “dialer”
de ket noi may tinh toi Internet nhung dialer co le duoc biet den nhieu nhat
trong cac hoat dong phi phap. Mot dialer pha hoai la nguyen nhan khien may ban
goi cac so dien thoai duong dai hay cac so phai tra nhieu tien hon la ISP cua
ban. Ket qua khien hau het nguoi dung phai nhan ve hoa don dien thoai khung
khiep, con cac nha to chuc dialer thi thu duoc rat it loi nhuan.
Drive-by
Thuat ngu nay thuong hay duoc dung mot cach long leo cho cac
phan mem len lut cai dat tren may nguoi dung khong thong thao. Trong mot so
truong hop no don gian chi la ghe tham mot trang web co the download cac chuong
trinh doc hai ve may ma nguoi dung khong biet. Mot so truong hop khac co the la
cac quang cao pop-up duoc mac dinh ban dau khi cai dat qua o cung.
Evil twin
Evil twin nhu mot “con ma cua nguoi dang song” (doppelganger) lua dao diem truy
cap khong day hop phap. Thong thuong duoc xay dung theo kieu gia dinh, diem nong
evil twin cung cap quyen truy cap khong day nham much dich thu thap du lieu
nguoi dung de khai thac hoac ban.
False positive (loi sai xac thuc)
False positive co mot so loai. Khi ban phan mem, mot so chuong trinh anti-spyware
cau tha khien nguoi dung nham tuong may cua minh bi spyware tan cong, ma thuc te
chang co van de gi ca. Thuat ngu “false positive” cung co the duoc dung khi cac
ung dung anti-spyware hop phap bi danh gia lam la moi de doa.
Firewall (Tuong lua)
Firewall la thanh phan chu chot quan trong trong hang rao bao ve may tinh. Vi
firewall ngan chan cac dich vu hay chuong trinh khong xac dinh truy cap may tinh
hay tai nguyen mang. Mac du hau nhu moi mang ao deu co firewall rieng nhung cac
may tinh ca nhan cung nen trang bi cho minh them mot tuong lua. Tuong lua ca
nhan co the la mot san pham doc lap hoac la thanh phan dung san trong mot bo
chuong trinh bao mat.
Hacker
 “Hacker” la thuat ngu kha rong. Hacker co the hoat dong voi y dinh va hau qua
tu muc dich loi nhuan den pha hoai. De hack mot file hay chuong trinh don gian
chi can cau truc lai hay ngat chuong trinh thuc thi cua no. Hacker con co them
nghia phu nua la chi nhung nguoi tao ra cac chuong trinh may tinh khong co muc
dich pha hoai, nhung do lam au, lam doi nen tro thanh chuong trinh doc hai.
Hacker co the la cac lap trinh vien may tinh, nha nghien cuu bao mat hay hacker
toi pham chinh goc (con duoc goi la cracker). Ho tim kiem kha nang gay hai may
tinh, tang du lieu luu tru hoac dieu khien may tinh tu xa. Nguoi ta phan loai
hoat dong hacking theo mau sac. Hacker mu trang (vo hai), hacker mu den (doc hai)
va hacker mu xam (co nhieu much dich khac nhau).
Hijacker (Nguoi thuc hien hoat dong
chiem quyen dieu khien)
Thuong tien hanh cai dat nhu la mot toolbar huu ich cua trinh duyet, cac
Hijacker co the chinh sua thiet lap trong trinh duyet hoat thay doi mac dinh
trang chu bang cac website khac.
Keylogger
Keylogger la cac chuong trinh ghi lai moi hoat dong ban phim
thuc hien tren mot may tinh. Mac du mot so ung dung dieu khien goc su dung cac
Keylogger de giam sat, nhung hau het chung duoc goi trong cac spyware. Sau do
cac Keylogger gui thong tin nhay cam toi may tinh tu xa. Tu do, ke trom co the
truy cap du lieu nhu ma so the tin dung, tai khoan ngan hang hay mat khau va ma
so bao mat xa hoi.
Malware
Malware thuong duoc dung de mo ta mot phan cua phan mem khai thac hoac quay ray
nguoi su dung. No thuong am chi hau het cac dang phan mem doc hai nhu adware
hoac spyware.
Man-in-the-middle attack (Kieu tan
cong lay con nguoi lam trung gian)
Trong kieu tan cong nay, cac hoat dong o nhom thu ba se chen len dac quyen hop
le cua nguoi dung, lam tang quyen truy cap khong duoc chap thuan trong may tinh
hoac mang. Kieu tan cong Man-in-the-middle attack (MITM) khai thac quy trinh
tham dinh mot chieu cua diem truy cap khong day (WAP). MITM thuc hien bang cach
chan quyen tham dinh mot chieu hop le do mot mang cap phat cho bat ky ket noi
Media Access Connection (MAC) nao. Voi cai khien chan la quyen truy cap hop phap
cua nguoi dung, MITM co day du quyen truy cap du lieu vao ra trong may tinh
nguoi dung.
Pharming
Giong nhu phishing, pharming cung hoat dong theo hinh thuc xa hoi, du do de lay
thong tin nhay cam tu phia nan nhan. Nhung trong khi cac phisher gia trang la to
chuc hop phap thi cac pharmer chiem quyen dieu khien ten mien de dinh huong lai
luu luong toi noi khac. Bang cach nay, mot nguoi ghe tham website cua mot ngan
hang truc tuyen co the bi chuyen sang mot website nhan ban khac va duoc nhac
cung cap du lieu ca nhan cho cracker thu thap va su dung.
Phishing
La hinh thuc gia mao mot to chuc hop phap de du do nguoi dung cung cap du lieu
nhay cam, la ky thuat ua thich cua toi pham mang. Nguoi dung thuong nhan duoc
mot e-mail giong het nhu tu cac to chuc tin cay. Do co the la mail do ngan hang
cua ban gui, bi thu thap, luu giu va chinh sua thanh to chuc chung can. Nguoi
dung con duoc du do theo lien ket nhung toi mot website co suc thuyet phuc doi
hoi ho phai dang nhap, su dung thong tin tai khoan ca nhan.
Trong cac hoat dong phishing, spear phishing nham vao mot so nguoi dung cu the
nhu gamer. Trong VoiIP phishing, nguoi dung duoc truc tiep kiem chung thong tin
tai khoan qua dien thoai thay vi website.
Phreaking
La su ghep noi cua cac tu “phone” (dien thoai)va “freak” (quai vat), phreaking
chi mot nhom lon cac hoat dong hacking bao gom thao tung va khai thac he thong
vien thong.
Phan mem antispyware lua dao
Duoc sap dat nhu la ung dung antispyware hop phap, cac phan mem
doc hai nay quet may tinh va su dung nhieu loi sai false positive khien nguoi
dung phai mua san pham. Rogue thuong tu phat tan minh qua cac quang cao pop-up
thong bao may tinh sap bi tan cong hoac nhiem virus. Cac chuong trinh nay co the
rat kho tu thao go duoc.
Rootkit
Mac du chua co mot dinh nghia chinh xac ve rootkit, nhung thuong no duoc hieu la
mot phan cua phan mem cho phep ke xam nhap giau cac file va chuong trinh doc hai
truoc nguoi dung va quan tri vien he thong. Cac rootkit co the cuc ky kho go bo
va cho phep ke pha roi thuc hien nhieu cong viec bat hop phap khong the do tim.
Spam
 Khoi dau tu luong lon cac thu khong mong doi tran ngap tai khoan
nguoi dung duoi dang e-mail (hau het la e-mail quang cao), trong do nguoi gui co
gang thu hut nguoi dung mua san pham cua minh. Den nay spam da phat trien mo
rong pham vi sang tin nhan instant message (goi la spim), cac binh luan tren
blog (splogs), tin nhan di dong (SMS spam), dien dan, v.v… Khong phai chi dung
lai o muc phien phuc kho chiu, cac spam dinh kem con chua virus, malware hay
lien ket toi cac website doc hai. Spam la phuong tien co ban cho cac hoat dong
lua dao phishing.
Spoof (Hoat dong lua dao)
Cac hoat dong spoof nhu lua dao dia chi website, phat tan thu rac, gia mao dia
chi IP thuong do hacker doc hai thuc hien. Chung su dung cac hoat dong nay de
tim kiem, thu thap tai lieu tu cac to chuc hop phap. Hoat dong spoof duoc dung
de do tim dau vet nguoi dung qua phan tra loi canh bao tu cac to chuc dang tin
cay nhu ngan hang cung cap. Nguoi dung tra loi yeu cau gia mao va lam ra ve khan
cap nay se duoc de nghi cung cap du lieu rieng tu. Hoat dong spoof thuong la
phishing, pharming va phreaking.
Trong pharming, thuong mot dia chi IP gia mao dia chi cua cac to chuc hop phap
duoc su dung de lam cho nguoi dung tin tuong website do la hop le.
Spyware (Phan mem gian diep)
Spyware la cac chuong trinh tap hop va truyen tai chi tiet ca nhan hay cac hoat
dong cua nhom thu ba ma khong can su cho phep cua nguoi dung. Giong nhu adware (phan
mem quang cao), no thuong duoc cai dat nhu la mot thanh phan nhom thu ba gan
trong phan mem mien phi (freeware) hoac phan mem chia se (shareware). Nhung giua
hai kieu nay cung khong khac nhau la may.
Tracking cookies (Cookies do tim)
Cac trinh duyet Internet ghi va doc cookie, file co luong nho du lieu (nhu
mat khau va cac thiet lap tai mot website nao do) dua tren cau truc cua website.
Trong nhieu truong hop cookie la co loi cho nguoi dung. Tuy nhien mot so cookie
duoc dung de hop nhat va do tim hoat dong nguoi dung tren nhieu website khac
nhau. Dieu do giup nhung nguoi nghien cuu thi truong thu thap duoc thong tin ca
nhan cua nguoi dung.
Trojan horses
Cac Trojan horse thuong duoc tha vao va chay trong may tinh ca nhan ma nguoi
dung khong biet. Chung co nhieu chuc nang nhu su dung modem cua may tinh de goi
dien thoai duong dai, phat sinh hoa don dien thoai khong lo. Khong giong nhu
virus va sau, Trojan horse khong tu nhan ban duoc minh.
Virus
 Giong nhu virus o nguoi, cac bien the virus trong may tinh bao gom ma doc hai,
co the phat tan de dang tren nhieu host. Virus khet tieng trong hoat dong pha
hoai phan cung, phan mem va cac file ca nhan. Virus khong the tu minh phat tan
ma doi hoi nguoi dung phai chia se file nhiem doc qua e-mail dinh kem, o cung di
dong, dia, mang P2P, website hoac bat ky co che truyen tai file nao khac.
Worm (Sau)
Thuong la mot cap voi virus, worm cung la cac chuong trinh tu nhan ban. Nhung
chung tu sinh soi doc lap voi tuong tac nguoi dung, qua ket noi mang chia se
hoac ket noi mang truc tiep. Cac worm co the pha huy du lieu tren may ca nhan
nhung hau het la de doa bang thong hoac tu dong tat may nguoi dung.
Zombie (May tinh bi chiem quyen dieu
khien)
Su dung virus, Trojan horse va worm, hacker toi pham co the dieu khien hoat dong
pha hoai tu xa len mot may tinh ma nguoi dung khong biet. Cac may tinh bi chiem
quyen dieu khien (zombie) thuong bi cuong buc boi mot chuong trinh dieu khien tu
xa tham gia vao mang luoi bot (goi la cac botnet) de khoi chay cac vu tan cong
DDoS.
Lo hong Zero-day
Cac hacker doc hai kham pha ra rang chung co the gia tang muc do pha hoai bang
cach cracking hang rao bao ve san pham trong cung mot ngay tin tuc ve lo hong
moi phat sinh hay ban va loi tiep sau do duoc phat hanh. Dieu nay bat buoc cac
hang phan mem va bao mat phai cong bo rong rai lo hong truoc hoat dong nhanh
chong cua nhung ke khai thac. Ket qua cua cac cuoc tan cong zero-day se tac dong
len nguoi dung khong cap nhat ban va loi sua chua lo hong do.
Theo QuanTriMang
Article source http://w4rum.com/480.t
|
