Yonke iNyaniso (kunye nobuxoki) ixelwe kwiNetflix's 'Zero Day,' ibekwe kwindawo

NguMykhailo Pazyniuk, iNjineli yoPhando lweMalware eMoonlock, icandelo le-cybersecurity yeMacPaw.

'Usuku lweZero' lweNetflix lubeka ababukeli phakathi kohlaselo olukhulu lwe-cyber olukhubaza i-United States. Ndikunye noRobert De Niro obambe inkanyezi njengowayesakuba nguMongameli wase-US ephanda ngohlaselo, olu ngcelele luphonononga imixholo yezopolitiko, imfazwe yedijithali, kunye nobuthathaka beziseko ezingundoqo zanamhlanje. Kodwa iyinyani kangakanani 'uSuku lweZero' ngokwembono ye-cybersecurity?

Njengenjineli yophando lwe-malware, ndibukele umboniso ngeliso elibukhali. Ngelixa eminye imiba yohlaselo lwe-cyberattack ivakala ivakala ngendlela eyothusayo, abanye bayaphambuka kwi-sci-fi. Nalu ucalucalulo lwam 'lweSuku lweZero' apho ndiya kugubungela izoyikiso ezintathu ze-cyber ezinokuthi zenzeke ngokwenyani, kunye nezithathu eziyintsomi emsulwa (ubuncinci okwangoku).

Izisongelo ezithathu ezinokuthi zenzeke

Olu chungechunge lubonisa ii-vectors zohlaselo ezininzi ezidibeneyo kunye neziphumo ezilandelayo. Ezona ndlela ziphambili zibandakanya uhlaselo olupheleleyo kwiziseko ezingundoqo kusetyenziswa i-malware enezixhobo, kunye nohlaselo lwekhonkco lokubonelela olusasazeka ngeenguqulelo ezingeyonyani zesoftware esemthethweni.

Ukuvavanya ukuchaneka komboniso, makhe sithelekise ezi meko kunye nokuhlaselwa kwe-cyberattacks okwenyani.

Ukuhlaselwa kweCyberattack kwiziseko ezingundoqo ezibalulekileyo (Umbhobho weKoloniyali, ngo-2021)

Izikrelemnqa eziphazamisa iinkonzo eziyimfuneko ngomnye weyona miba ibonakalayo 'yeSuku lweZero'. Uhlaselo olujoliswe kuyo kwiigridi zamandla, izibonelelo zamanzi, kunye nezibhedlele azinakwenzeka nje - sele zisenzeka. Uhlaselo lwe-2021 ye-Colonial Pipeline ransomware yavala enye yeendlela ezinkulu zepetroli e-US, ekhokelela ekunqongophelweni kwegesi kunye nokuthengwa kwe-panic.

I-malware enezixhobo (Stuxnet, 2010)

Lo mboniso ucebisa ukuba uhlaselo lwe-cyber lunokuyilelwa ukukhubaza ukhuseleko lwesizwe ngokonakalisa iinkqubo zoshishino. Enyanisweni, usulelo lwe-malware lweenkqubo ezibalulekileyo lunempembelelo kwi-geopolitics yehlabathi iminyaka. Umzekelo wembali yi-Stuxnet, isixhobo esiphucuke kakhulu se-cyber esisetyenziselwa ukonakalisa ii-centrifuges zenyukliya zase-Iran.

I-Stuxnet ifana ngokusondeleyo nohlaselo oluboniswe kolu thotho, ngakumbi kuba iphinde yabangela umonakalo womzimba kwiziseko ezingundoqo. Olu hlobo lwe-malware lusebenza njengentshulube, irhubuluza kwiinethiwekhi, isasazeke kuzo zonke izixhobo, kwaye ibangele ukusilela kwisoftware okanye ihardware - ihlala iqhubeka ixesha elide. Sinokuyicingela kuphela imiphumo ebuhlungu ukuba loo mbungu isebenzise i-AI ukuziqhelanisa nendawo yayo.

Uhlaselo lwekhonkco lokubonelela (NotPetya, 2017)

'Usuku lweZero' lucebisa ukuba uhlaselo lunokusasazeka ngokukhawuleza ngeesistim ezinxibelelanayo - imeko enokwenzeka ngokupheleleyo. Namhlanje, umthengisi omnye osengozini kwikhonkco lokubonelela unokosulela amawaka emibutho. Iqela lethu uye wabona iindlela ezininzi zokuhlasela ezifanayo ngelixa uhlalutya isoftware yobuxoki ehlanganiswe nokufakelwa kobusela, ukukhohlisa abasebenzisi ukuba bakholelwe ukuba basebenzisa iinkqubo ezisemthethweni.

Olunye lolona hlaselo lwe-cyber olubi kakhulu kwimbali, i-NotPetya, lusasazeke ngohlaziyo oluchaphazelekileyo lwesoftware esetyenziswa kakhulu eUkraine, ibangele umonakalo weebhiliyoni zeedola kwihlabathi liphela.

Izisongelo ezintathu ezikude nenyani

INetflix iyagqwesa ekubaleni amabali, yiyo loo nto imiboniso yayo inomtsalane. Nangona kunjalo, nantsi indlela uSuku lweZero olwenzeka ngayo ukukhwabanisa ngenxa yokukrokra.

Ukuwa kwenkqubo ekhawulezileyo nangexesha elinye

'NgoSuku lweZero', i-cyberattack ibonakala ithatha phantsi yonke into ngexesha elinye - iimarike zezimali, iinkonzo ezingxamisekileyo, ezothutho. Ngelixa uhlaselo olulungelelanisiweyo lunokwenzeka, uhlaselo lwe-cyber lwehlabathi lokwenyani aludli ngokusasazeka ngolo hlobo. Uhlaselo olunje ngeNotPetya okanye iSolarWinds kuthathe ixesha ukusasaza, kwaye imibutho yasabela ngesantya esahlukileyo.

"Ukuba sithetha ngomngcipheko oqhelekileyo, inokuba kwi-baseband okanye kwi-hardware. Kodwa ngabathengisi abaninzi ababonelela ngeziseko zophuhliso ezibalulekileyo kwilizwe liphela, oku kuhlala kungenzeki okwangoku, ” uphawula uNjineli oyiSenior Reverse eMacPaw's Moonlock (okhethe ukungaziwa).

Ulawulo olupheleleyo ngezitshixo ezimbalwa

'Usuku lwe-Zero' luxhomekeke kwi-Hollywood trope yakudala - i-hacker echwetheza ngomsindo kwigumbi elimnyama, ngoko nangoko ebangela ukuba iinkqubo ziwohloke njengeedominoes. Enyanisweni, uhlaselo lwe-intanethi luthatha iiveki, iinyanga, okanye iminyaka ukulungiselela. Ukophulwa kweziseko ezingundoqo kufuna ubunjineli obuntsonkothileyo boluntu, ukuzingela ubuthathaka, ukunyakaza okusecaleni, kunye nobuchwephesha ukuphepha ukubhaqwa. Ayikhe ibelula njengokubetha izitshixo ezimbalwa kunye nokubukela umhlaba uvutha.

I-supervirus engathintekiyo

Umboniso ubonisa isixhobo se-cyber esingathintekiyo kwaye akukho ndlela yokunciphisa iziphumo zaso. Kuyinyani ukuba i-malware eqhubela phambili inokuzingisa kakhulu, kodwa akukho cyberattack engenakuguquleka ngokwenene. Kwaneyona malware eyonakalisayo inokuthotywa kunye neendlela ezichaseneyo, nokuba kungokhuseleko lwesiphelo, ulwahlulo lwenethiwekhi, okanye ungenelelo ngesandla. Ingcinga ethi "yakube iqalisiwe, umdlalo uphelile" yintsomi emsulwa.

“Ukuba injongo kukufumana ubuthathaka kwinkqubo eyosulelekileyo, kusetyenziswa iifuzzers. Baqhuba ngokungamisi kwiiseva zeCI. Kodwa endaweni yokunyanzeliswa ngoburhalarhume onke amaxabiso anokwenzeka, baxhomekeke kwiinguqulelo ezikrelekrele. Ngaphezu koko, ayikuko konke ukulahlwa kwengozi okukhokelela kubuthathaka obusebenzisekayo. Kwaye nokuba usebenze kwinkqubo eyosulelekileyo kwindawo yokuqala, uya kufuna ukuba semngciphekweni wokuphumeza ikhowudi. Ke, unento efana nelophu yexesha kwi-'Terminator'. Ke ngoko, ndingatsho ukuba ezi meko azikholeleki kwimeko yangoku yophuhliso lwe-AI, ” yongeza iNjineli eyiNjineli ePhezulu kwi-MacPaw's Moonlock.

Ngaba iintsomi zinokuba yinto yokwenene?

Ngelixa 'uSuku lweZero' luthatha inkululeko yokuyila, ezinye zezinto zalo eziyintsomi zinokude zibeyinyani. Inkqubela phambili kuhlaselo oluqhutywa yi-AI, ubunjineli obunzulu boluntu, kunye ne-malware ezimeleyo ngenye imini inokusisondeza kwizoyikiso eziboniswe kumboniso. Izixhobo zokugenca ezincediswa yi-AI sele zihlengahlengisa imeko yezoyikiso, zenza uhlaselo lwe-cyber lukhawuleze kwaye lusebenze ngakumbi.

Umzekelo, iqela le-Moonlock Lab lisanda kufumanisa i-malware esekwe kwiPython esebenzisa i-OpenAI API (i-ChatGPT) ukuqhuba amaphulo okukhwabanisa. Ngelixa i-AI isafuna imibuzo eyakhiwe kakuhle ukuvelisa umxholo wobuqhetseba, yenza lula kakhulu kwaye iwukhawulezise umsebenzi wabadlali abagrogrisayo.

Ngaphezu koko, njengoko oorhulumente kunye nabadlali belizwe-karhulumente betyala imali kwimfazwe ye-cyber, umgca phakathi kwentsomi kunye nenyani uyaqhubeka ukufiphala. Imikhankaso ye-disinformation eqhutywa yi-AI, i-automated zero-day exploits, kunye ne-malware ezisasaza ngokwayo ayisekho imeko ekude. Nangona kunjalo, ngeli nqanaba, abadlali bezoyikiso basebenzisa i-AI ngokuzenzekela kunye nokulungiswa kohlaselo - hayi ' ukusebenzisa i-AI ukulungelelanisa ikhowudi kwinkqubo yophumezo ', njengoko kubonwa kuthotho.

Fiction njengebali elilumkisayo

Uthotho lwe-'Zero Day' lunokuthi luzibaxe izinto ezithile ze-cyber warfare, kodwa luqaqambisa inyani ebalulekileyo - izixhobo zethu zedijithali zisesichengeni. Ngelixa sisenokungayiboni intsholongwane yomhla we-Hollywood 'yedoomsday virus' nangaliphi na ixesha, izoyikiso zelizwe lokwenyani njenge-ransomware, uhlaselo olubalulekileyo lweziseko ezingundoqo, kunye nolwaphulo-mthetho oluqhutywa yi-AI lufuna ingqalelo yethu kunye nokwazi.

Njengabaphandi be-malware, iingcali zokhuseleko, kunye nabasebenzisi bemihla ngemihla, kufuneka sifunde kuzo zombini izehlo zelizwe lokwenyani kunye nezilumkiso eziyintsomi. Izisongelo zeCyber ziyavela, 'uSuku lweZero' lukhawulezisa umgca wexesha.