Hloov cov passwords, xijpeem cov passwords lawv yuav muaj - los ntawm kev xa ntawv, nyiaj hauv online, Wi-nkaus los ntawm Vkontakte thiab Odnoklassniki accounts, tsis ntev los no los ua ib qho kev tshwm sim ntau zaus. Qhov no yog loj vim yog qhov tseeb tias cov neeg siv tsis ua raws li cov cai yooj yim kev ruaj ntseg thaum tsim, khaws cia thiab siv cov passwords. Tab sis qhov no tsis yog vim li cas thiaj li passwords poob mus rau qhov tsis ncaj ncees lawm tes.
Tsab xov xwm no muab cov lus qhia ntxaws ntxaws txog cov txheej txheem siv tau los txhuam tus neeg siv cov password thiab vim li cas koj lam tau lam ua rau cov kev tawm tsam no. Thiab thaum kawg koj yuav pom ib daim ntawv teev cov kev pabcuam hauv online uas yuav qhia rau koj paub yog tias koj lo lus zais twb raug lawm. Tseem yuav muaj (twb) ib tsab xov xwm thib ob ntawm lub ncauj lus, tab sis kuv xav kom nyeem nws los ntawm kev txheeb xyuas tam sim no, thiab tsuas yog mus rau ib qho ntxiv mus.
Hloov tshiab: cov khoom siv hauv qab no npaj - Hais txog kev tiv thaiv (password), uas piav qhia txog kev ruaj ntseg ntawm koj tus account thiab passwords rau lawv.
Yam dab tsi yog siv los txhawm rau passwords
Rau hacking passwords tsis siv ntau hom ntau hom kev kawm. Yuav luag tag nrho lawv paub thiab yuav luag txhua yam dabtsi ntawm cov ntaub ntawv npog cia tau los ntawm kev siv tus kheej txoj kev los yog lawv cov kev sib txuas.
Phishing
Qhov ntau tshaj li niaj hnub no yog "tshem tawm" los ntawm cov passwords ntawm nrov email cov kev pab thiab kev tes hauj lwm yog phishing, thiab hom no ua haujlwm rau ib feem pua ntawm cov neeg siv.
Tus essence ntawm txoj kev yog tias koj pom koj tus kheej rau ntawm qhov chaw paub (Gmail tibsi, VC lossis Odnoklassniki, piv txwv), thiab vim li cas koj lossis lwm tus neeg raug hais kom sau koj tus username thiab password (nkag rau hauv, paub meej tias ib yam dab tsi, rau nws qhov kev hloov, thiab lwm yam). Tam sim ntawd tom qab nkag mus rau lo lus zais yog los ntawm cov tub sab.
Yuav ua li cas nws tshwm sim: koj tuaj yeem tau txais ib tsab ntawv, uas yog los ntawm qhov kev pabcuam, uas hais tias koj yuav tsum nkag mus rau hauv koj tus as khauj thiab ib qhov txuas raug, thaum koj hloov mus rau qhov chaw no, uas luam tawm thawj qhov. Nws yog qhov ua tau tom qab kev txhim kho cov pliaj software ntawm lub computer, qhov system hloov chaw xws li thaum koj nkag mus rau qhov chaw nyob ntawm qhov chaw koj xav tau mus rau qhov chaw nyob ntawm tus browser, koj yeej tau mus rau ib qho chaw phishing tsim rau tib txoj kev.
Raws li kuv tau muab teev tseg, ntau cov neeg siv lub caij nplooj ntoos zeeg rau qhov no, thiab feem ntau qhov no yog vim kev ua tsis taus kev:
- Thaum koj tau txais ib tsab ntawv uas nyob rau hauv ib daim ntawv los yog lwm tus muab rau koj nkag mus rau hauv koj tus as khauj ntawm ib qho chaw, xyuam xim seb puas tau xa los ntawm email chaw nyob ntawm lub vev xaib: qhov chaw nyob zoo ib txwm siv. Piv txwv, es tsis txhob [email protected], nws kuj yuav yog qhov [email protected] lossis ib yam zoo sib xws. Txawm li cas los xij, qhov tseeb chaw nyob tsis tas yuav lav tias txhua yam yog nyob rau hauv kev txiav txim.
- Ua ntej koj nkag mus rau koj tus password, koj yuav tsum saib xyuas qhov chaw nyob ntawm koj tus browser. Ua ntej tshaj plaws, yuav tsum tau qhia raws nraim qhov chaw uas koj xav mus. Txawm li cas los xij, yog tias muaj kev tiv thaiv ntawm lub computer, qhov no tsis txaus. Koj yuav tsum tau saib xyuas kom muaj qhov kev tiv thaiv ntawm qhov kev sib txuas, uas yog txiav txim tau los ntawm kev siv qhov kev sib tshuam hauv https es tsis txhob http thiab cov duab ntawm "lock" nyob rau hauv qhov chaw nyob, los ntawm txhaj rau qhov twg, koj tuaj yeem paub tseeb tias koj nyob ntawm qhov chaw no. Yuav luag tag nrho cov kev lag luam loj uas yuav tsum tau nkag mus rau hauv koj tus account siv encryption.
Los ntawm txoj kev, kuv yuav nco ntsoov no tias ob qho tibsi phaib thiab tshawb nrhiav (lo lus piav hauv qab) tsis tau hais tias cov neeg ua haujlwm tu mob (uas yog, lawv tsis tas yuav nkag mus rau ib lab passwords) - tag nrho cov no yog ua los ntawm cov kev pab tshwj xeeb, sai thiab loj. , thiab tom qab ntawd qhia txog qhov kev ua tiav ntawm tus neeg tua neeg. Tshaj tej ntawm, cov kev pabcuam no tuaj yeem ua haujlwm tsis tau rau hacker lub computer, tab sis tsis pub leejtwg paub ntawm koj li thiab ntawm ntau txhiab tus lwm cov neeg siv, uas zoo heev ua rau cov nyaav ntawm hacks.
Xaiv Password
Tua siv kev siv rov qab lo lus password (Brute Force, quab yuam quab yuam hauv Lavxias) kuj muaj ntau heev. Ob peb xyoos dhau los, feem ntau ntawm cov kev tawm tsam no yeej yog ib qho kev tshawb nrhiav los ntawm tag nrho cov kev sib txuas ntawm ib cov cim ntawm cov cim los tsim cov passwords ntawm ib qhov ntev ntev, tom qab ntawd txhua yam yog me ntsis yooj yim (kev nyiag nkas).
Kev tshawb fawb ntawm cov tsheej lab ntawm cov passwords uas tau khiav tawm hauv xyoo tsis ntev los no qhia tau hais tias tsawg tshaj li ib nrab ntawm lawv yog qhov tshwj xeeb, thaum nyob rau cov chaw uas cov neeg siv feem ntau tsis tshua pom kev nyob, qhov feem pua tsawg heev.
Qhov no txhais li cas? Feem ntau, cov kws tshawb fawb tsis tas yuav los ntawm cov neeg tsis paub ua ob peb zaug: muaj lub hauv paus 10-15 lab password (tus naj npawb kwv yees, tab sis nyob ze qhov tseeb) thiab hloov cov kev sib txuas lus no xwb, nws muaj peev xwm khwv tau ib nrab ntawm cov nyiaj hauv ib qho chaw.
Yog hais tias muaj kev sib ntaus rau ntawm ib qho kev sib tw, ntxiv rau lub hauv paus, kev siv dag zog yuam kev siv tau, thiab niaj hnub software tso cai rau koj ua li no sai sai: ib lo lus yuam kev ntawm 8 cim tau tawg nyob rau hauv ib qho teeb meem ntawm hnub (thiab yog cov cim yog hnub lossis thiab cov hnub, uas tsis yog tsawg - hauv feeb).
Thov cim: Yog tias koj siv tib lub password rau ntau qhov chaw thiab cov kev pab cuam, ces thaum koj tus password thiab qhov chaw nyob e-mail tiv thaiv rau ntawm ib leeg twg, nrog kev pab tshwj xeeb software no tuaj yeem ua ke ntawm tus ID nkag mus thiab tus password yuav tau sim nyob rau ntau pua lwm qhov chaw. Piv txwv li, tam sim no tom qab lub leakam ntawm ntau lab Gmail thiab Yandex passwords kawg ntawm xyoo tas los, ib tug yoj ntawm hacking accounts originated ntawm keeb kwm, chav, Battle.net thiab Uplay (Kuv xav tias lwm tus ntau, rau cov kev pab cuam gaming kuv tau dua pheej hu).
Hacking qhov chaw thiab tau txais passwords hashes
Cov chaw loj tshaj plaws tsis khaws koj tus password rau hauv daim ntawv uas koj paub. Tsuas yog ib tug hash muab cia rau hauv cov ntaub ntawv - ntawm kev ua ntawv thov kev ua haujlwm tsis muaj txig (uas yog, koj tuaj yeem tsis tau koj tus password ntxiv ntawm qhov no) rau tus password. Thaum koj nkag mus rau lub vev xaib, cov hash yog rov ua dua tshiab, thiab yog tias nws ua rau muaj dab tsi nyob rau hauv lub database, ces koj nkag mus rau hauv tus password kom raug.
Raws li nws yog qhov yooj yim twv, nws yog cov hashes uas muab, thiab tsis tus passwords lawv tus kheej, rau kev ruaj ntseg vim - thaum ntawd ib hacker tau txais mus rau hauv lub database thiab tau txais nws, nws yuav tsis siv cov ntaub ntawv thiab kawm tau cov passwords.
Txawm li cas los, feem ntau heev, nws muaj peev xwm ua tau li no:
- Los xam cov hash, qee qhov algorithms siv, feem ntau ntawm cov uas paub thiab ntau (uas yog, leej twg siv tau lawv).
- Muaj databases nrog tsheej lab ntawm cov passwords (los ntawm ib tug cwj pwm quab yuam clause), tus attacker kuj muaj rau cov hashes ntawm cov passwords, calculated siv tag nrho cov muaj algorithms.
- Los ntawm kev sib piv cov ntaub ntawv los ntawm cov ntaub ntawv database thiab password hashes los ntawm koj tus kheej database, koj tuaj yeem txiav txim siab uas siv algorithm thiab xyuas kom paub cov passwords tiag rau ib feem ntawm cov ntaub ntawv nyob rau hauv cov ntaub ntawv los ntawm kev sib piv yooj yim (rau tag nrho cov uas tsis yog-yus). Thiab cov khoom siv dag zog yuam yuav pab koj kawm tau cov cim tshwj xeeb, tab sis luv passwords.
Raws li koj tau pom, cov lag luam lag luam ntawm ntau cov kev pab cuam uas lawv tsis khaws koj cov passwords ntawm koj lub vev xaib tsis tas tiv thaiv koj los ntawm nws txoj kev tuaj yeem.
Spyware (SpyWare)
SpyWare lossis spyware - ntau ntau ntawm kev siab phem software uas yog siv nruab rau hauv computer (spyware kuj tuaj yeem koom nrog ib feem ntawm ib co tsim nyog software) thiab sau cov neeg siv xov xwm.
Ntawm lwm yam, qee yam ntawm SpyWare, piv txwv li, keyloggers (cov kev pab cuam uas taug qab cov yaum sij uas koj nias) lossis cov khoom ntiag tug khiav tawm, yuav siv tau (thiab siv) kom tau cov neeg siv cov password.
Social engineering thiab lo lus nug rov qab rau lo lus nug
Raws li Wikipedia qhia peb, social engineering yog ib txoj hauv kev nkag mus rau cov ntaub ntawv raws li tus yam ntxwv ntawm tus neeg txoj kev xav (qhov no xam phaj saum toj no). Hauv Internet, koj tuaj yeem pom ntau tus qauv ntawm kev siv engineering (Kuv pom zoo kom tshawb nrhiav thiab nyeem ntawv - qhov no yog qhov zoo nkauj), qee yam ntawm cov cwj pwm zoo nyob rau hauv lawv cov kev coj. Feem ntau, txoj kev khaw cia rau qhov tseeb tias yuav luag txhua cov ntaub ntawv tsim nyog los nkag tau cov ntaub ntawv tsis pub leej twg paub siv tau cov neeg tsis muaj zog.
Thiab kuv yuav muab tsuas yog ib qho yooj yim thiab tsis yog tshwj xeeb tshaj yog elegant tsev neeg piv txwv txog passwords. Raws li koj paub, nyob rau ntau lub chaw rau kev txhim kho password, nws txaus los teb lo lus nug rau cov lus nug tswj: lub tsev kawm ntawv twg koj mus koom, leej niam lub npe hu ua, tus tsiaj lub npe ... Txawm tias koj tsis tau tso tawm cov ntaub ntawv no rau hauv kev qhib kev rau tes hauj lwm, koj puas xav tias nws nyuaj seb puas siv tib lub network sib txuas, sib raug zoo nrog koj, lossis tshwj xeeb nkag siab, tsis muaj peev xwm tau txais tej ntaub ntawv no?
Yuav ua li cas paub tias koj tus password tau raug hacked
Zoo thiab, qhov kawg ntawm tsab xov xwm, ntau qhov kev pab cuam uas cia koj paub tias koj tus password tau tawg, los ntawm kev kuaj koj email chaw nyob lossis tus username nrog lo lus zais databases uas tau nkag los ntawm hackers. (Kuv yog ib tug me ntsis ras tias cov ntawm lawv muaj ntau feem pua tseem ceeb ntawm databases los ntawm kev pab Lav Xias).
- //haveibeenpwned.com/
- //breachalarm.com/
- //pwnedlist.com/query
Pom koj tus account hauv daim ntawv teev cov hackers paub? Nws ua rau kev txiav txim siab hloov tus password, tab sis nyob rau hauv ntau yam qhia txog kev ruaj ntseg kev coj nyob rau hauv nrog rau account passwords, kuv yuav sau nyob rau hauv cov tuaj hnub.
