Spear Phishing Definition | Yini I-Spear Phishing?

Okuqukethwe

Umkhonyovu wokukhwabanisa
Sebenzisa i-Gophish AWS

Spear Phishing Definition

Ubugebengu bokweba imininingwane ebucayi kuwukuhlasela kwe-inthanethi okukhohlisa isisulu ukuthi sidalule ulwazi oluyimfihlo. Noma ubani angaba yizisulu zokuhlaselwa ngomkhonto. Izigebengu zingase zibhekise kubasebenzi bakahulumeni noma izinkampani ezizimele. Ukuhlaselwa kobugebengu bokweba imininingwane ebucayi kwenza sengathi kuvela kumuntu osebenza naye noma umngane wesisulu. Lokhu kuhlasela kungaphinda kulingise izifanekiso ze-imeyili ezivela ezinkampanini ezaziwayo ezifana ne-FexEx, Facebook, noma i-Amazon. 
 
Umgomo wokuhlasela kobugebengu bokweba imininingwane ebucayi ukwenza isisulu sichofoze isixhumanisi noma silande ifayela. Uma isisulu sichofoza isixhumanisi futhi siyengelwa ekuthayipheni ulwazi lokungena ekhasini lewebhu elingelona iqiniso, usanda kunikeza izifakazelo zakhe kumhlaseli. Uma isisulu silanda ifayela, khona-ke uhlelo olungayilungele ikhompuyutha luyafakwa kukhompyutha futhi ngaleso sikhathi, isisulu sinikeze yonke imisebenzi nolwazi olukuleyo khompyutha.
 
Inombolo enhle yokuhlaselwa kobugebengu bokweba imininingwane ebucayi ixhaswe uhulumeni. Kwesinye isikhathi, ukuhlaselwa kuvela ezigebengwini ze-inthanethi ezithengisa ulwazi kohulumeni noma ezinkampanini. Ukuhlasela okuphumelelayo kobugebengu bokweba imininingwane ebucayi enkampanini noma kuhulumeni kungaholela esihlengweni esikhulu. Izinkampani ezinkulu ezifana ne-Google ne-Facebook zilahlekelwe yimali kulokhu kuhlasela. Cishe eminyakeni emithathu edlule, Kubikwa i-BBC ukuthi zombili izinkampani baphangiwe lesamba esingaba ngu-$100 wezigidi lilinye ngumuntu oyedwa.

Ngabe i-Spear phishing ihluke kanjani kune-Phishing?

Nakuba ubugebengu bokweba imininingwane ebucayi kanye nobugebengu bokweba imininingwane ebucayi kufana ezinhlosweni zakho, kuhlukile endleleni. Ukuhlasela kobugebengu bokweba imininingwane ebucayi kuwumzamo owenziwa kanye oqondiswe eqenjini elikhulu labantu. Kwenziwa ngezinhlelo zokusebenza ezingaphandle kweshalofu ezidizayinelwe leyo njongo. Lokhu kuhlasela akuthathi ikhono eliningi ukukwenza. Umqondo wokuhlasela okuvamile kobugebengu bokweba imininingwane ebucayi ukuntshontsha imininingwane ngesilinganiso esikhulu. Izigebengu ezenza lokhu ngokuvamile zinomgomo wokuthengisa kabusha iziqinisekiso kuwebhu emnyama noma ukuchitha ama-akhawunti abantu asebhange.
 
Ukuhlasela kobugebengu bokweba imininingwane ebucayi kuyinkimbinkimbi kakhulu. Ngokuvamile ziqondiswe kubasebenzi abathile, izinkampani, noma izinhlangano. Ngokungafani nama-imeyili obugebengu bokweba imininingwane ebucayi, ama-imeyili obugebengu bokweba imininingwane ebucayi abukeka sengathi aphuma kothintana naye osemthethweni lowo okuqondiwe akubonayo.. Lokhu kungaba umphathi wephrojekthi noma umholi weqembu. Okuhlosiwe kuhlelwa futhi kucwaningwe kahle. Ukuhlasela komkhonto ngokuvamile kuzosebenzisa ulwazi olutholakala esidlangalaleni ukuze kulingise abantu okuhlosiwe. 
 
Isibonelo, umhlaseli angase acwaninge isisulu futhi athole ukuthi unengane. Ngemva kwalokho bangase basebenzise lolo lwazi ukuze bakhe isu lokuthi bangalusebenzisa kanjani lolo lwazi ngokumelene nabo. Isibonelo, bangase bathumele isimemezelo senkampani mbumbulu bebuza ukuthi bangathanda yini ukunakekelwa kwamahhala kwezingane zabo ezinikezwe inkampani. Lesi isibonelo esisodwa sendlela ukuhlasela komkhonto kusebenzisa ngayo idatha eyaziwa esidlangalaleni (imvamisa ngokusebenzisa inkundla yezokuxhumana) ngokumelene nawe.
 
Ngemuva kokuthola imininingwane yesisulu, umhlaseli angakwazi ukweba ulwazi lomuntu siqu noma lwezezimali. Lokhu kuhlanganisa ulwazi lwasebhange, izinombolo zokuphepha komphakathi, nezinombolo zekhadi lesikweletu. Ubugebengu bokweba imininingwane ebucayi be-spear budinga ucwaningo olwengeziwe kuzisulu zabo ukuze kungene ezivikelweni zabo ngempumelelo.Ukuhlasela kobugebengu bokweba imininingwane ebucayi ngokuvamile kuyisiqalo sokuhlasela okukhulu enkampanini. 
I-Spear phishing

Ngabe kusebenza kanjani ukuhlasela kwe-Spear phishing?

Ngaphambi kokuthi izigebengu ze-inthanethi zenze ukuhlasela kobugebengu bokweba imininingwane ebucayi ngomkhonto, zicwaninga izinhloso zazo. Phakathi nale nqubo, bathola ama-imeyili abaqondiswe kubo, izihloko zemisebenzi, nozakwabo. Olunye lwalolu lwazi lukuwebhusayithi yenkampani okuqondiwe kusebenza kuyo. Bathola ulwazi olwengeziwe ngokudlula ku-LinkedIn, Twitter, noma i-Facebook. 
 
Ngemva kokuqoqa ulwazi, isigebengu se-inthanethi siqhubekela phambili nokwenza umlayezo wabo. Bakha umlayezo obukeka sengathi uvela koxhumana naye ojwayelekile walabo abaqondiwe, njengomholi weqembu, noma umphathi. Kunezindlela ezimbalwa isigebengu se-inthanethi esingathumela ngayo umlayezo koqondiwe. Ama-imeyili asetshenziswa ngenxa yokusetshenziswa kwawo njalo ezindaweni zezinkampani. 
 
Ukuhlasela kobugebengu bokweba imininingwane ebucayi kufanele kube lula ukukubona ngenxa yekheli le-imeyili elisetshenziswayo. Umhlaseli akakwazi ukuba nekheli elifana nelomuntu umhlaseli azenza njengaye. Ukuze akhohlise okuqondiwe, umhlaseli ukhohlisa ikheli le-imeyili lomunye walabo abaqondiwe. Lokhu kwenziwa ngokwenza ikheli le-imeyili lifane nelangempela ngangokunokwenzeka. Bangakwazi esikhundleni sika-“o” ngo-“0” noma u-“l” ngosonhlamvukazi “I”, njalonjalo. Lokhu, kuhambisana neqiniso lokuthi okuqukethwe kwe-imeyili kubukeka kusemthethweni, kwenza kube nzima ukukhomba ukuhlasela kobugebengu bokweba imininingwane ebucayi.
 
I-imeyili ethunyelwe ngokuvamile iqukethe okunamathiselwe kwefayela noma isixhumanisi sewebhusayithi yangaphandle leyo ithagethi engayilanda noma iyichofoze. Iwebhusayithi noma okunamathiselwe kwefayela kuzoqukatha uhlelo olungayilungele ikhompuyutha. Uhlelo olungayilungele ikhompuyutha luqalisa uma selulande kudivayisi yalowo oqondiwe. Uhlelo olungayilungele ikhompuyutha lusungula ukuxhumana nedivayisi yesigebengu se-inthanethi. Uma lokhu sekuqalile kungangena okhiye, ivune idatha, futhi yenze lokho okuyalwa wumhleli.

Ubani odinga ukukhathazeka ngokuhlaselwa kobugebengu bokweba imininingwane ebucayi?

Wonke umuntu udinga ukuqaphela ukuhlaselwa kobugebengu bokweba imininingwane ebucayi ngomkhonto. Ezinye izigaba zabantu kungenzeka kakhulu bahlaselwe kunabanye. Abantu abanemisebenzi esezingeni eliphezulu ezimbonini ezifana nezempilo, ezezimali, imfundo, noma uhulumeni basengozini enkulu.. Ukuhlasela okuyimpumelelo kobugebengu bokweba imininingwane ebucayi kunoma iyiphi yalezi zimboni kungaholela kulokhu:

  • Ukwephulwa kwedatha
  • Izinkokhelo ezinkulu zesihlengo
  • Izinsongo Zezokuphepha Zikazwelonke
  • Ukulahlekelwa isithunzi
  • Imiphumela yezomthetho

 

Awukwazi ukugwema ukuthola ama-imeyili obugebengu bokweba imininingwane ebucayi. Noma usebenzisa isihlungi se-imeyili, okunye ukuhlaselwa komkhonto kuzovela.

Indlela engcono kakhulu ongayenza ngayo lokhu iwukuqeqesha abasebenzi ukuthi bangawabona kanjani ama-imeyili akhohlisayo.

 

Ungakuvimbela kanjani ukuhlaselwa kwe-Spear phishing?

Kunezinyathelo ezimbalwa ongazithatha ukuze uvimbele ukuhlaselwa kobugebengu bokweba imininingwane ebucayi. Ngezansi uhlu lwezinyathelo zokuvikela nezivikela ekuhlaselweni kobugebengu bokweba imininingwane ebucayi:
 
  • Gwema ukufaka ulwazi oluningi ngawe ezinkundleni zokuxhumana. Lesi ngesinye sezindawo zokuqala zokuma kwesigebengu se-inthanethi ukuze sidobe ukuze sithole ulwazi ngawe.
  • Qiniseka ukuthi isevisi yokubamba oyisebenzisayo inokuvikeleka kwe-imeyili kanye nokuvikela okulwa nogaxekile. Lokhu kusebenza njengendlela yokuqala yokuzivikela ngokumelene nesigebengu se-inthanethi.
  • Ungachofozi izixhumanisi noma ifayela elinamathiselwe kuze kube yilapho uqiniseka ngomthombo we-imeyili.
  • Qaphela ama-imeyili noma ama-imeyili angacelwanga anezicelo eziphuthumayo. Zama ukuqinisekisa isicelo esinjalo ngezinye izindlela zokuxhumana. Nikeza umsolwa ucingo, umbhalo, noma khuluma ubuso nobuso.
 
Izinhlangano kumele zifundise abasebenzi bazo ngamasu obugebengu bokweba imininingwane ebucayi. Lokhu kusiza abasebenzi ukuthi bazi ukuthi benzeni uma behlangabezana ne-imeyili yobugebengu bokweba imininingwane ebucayi. Lokhu imfundo can kuzuzwe nge-Spear Phishing Simulation.
 
Enye indlela ongafundisa ngayo abasebenzi bakho ukuthi bangakugwema kanjani ukuhlaselwa kobugebengu bokweba imininingwane ebucayi ngokusebenzisa ukulingisa kobugebengu bokweba imininingwane ebucayi.

Yini Ukulingisa Ubugebengu Bokweba imininingwane ebucayi?

Ukulingisa kobugebengu bokweba imininingwane ebucayi kuyithuluzi elihle kakhulu lokwenza abasebenzi basheshe kumaqhinga obugebengu bokweba imininingwane ebucayi bezigebengu ze-inthanethi. Kuwuchungechunge lwezivivinyo ezisebenzisanayo eziklanyelwe ukufundisa abasebenzisi bayo ukuthi bangahlonza kanjani ama-imeyili obugebengu bokweba imininingwane ebucayi ukuze bagwenywe noma babike. Izisebenzi ezichayeka ekufanisweni kobugebengu bokweba imininingwane ebucayi zinethuba elingcono kakhulu lokubona ukuhlasela kobugebengu bokweba imininingwane ebucayi futhi zisabele ngendlela efanele.

Ngabe ukulingisa kobugebengu bokweba imininingwane ebucayi ngomkhonto kusebenza kanjani?

  1. Yazisa abasebenzi ukuthi bazothola i-imeyili yobugebengu bokweba imininingwane ebucayi “engelona iqiniso”.
  2. Bathumelele i-athikili echaza indlela yokubona ama-imeyili obugebengu bokweba imininingwane ebucayi kusengaphambili ukuze uqiniseke ukuthi bayaziswa ngaphambi kokuthi bahlolwe.
  3. Thumela i-imeyili yobugebengu bokweba imininingwane ebucayi “umgunyathi” ngesikhathi esingahleliwe phakathi nenyanga omemezela ngayo ukuqeqeshwa kobugebengu bokweba imininingwane ebucayi.
  4. Linganisa izibalo zokuthi bangaki abasebenzi abawele emzamweni wobugebengu bokweba imininingwane ebucayi uma kuqhathaniswa nenani elingazange libike noma ubani obike umzamo wobugebengu bokweba imininingwane ebucayi.
  5. Qhubeka nokuqeqesha ngokuthumela amathiphu mayelana nokuqwashisa ngobugebengu bokweba imininingwane ebucayi futhi uhlole osebenza nabo kanye ngenyanga.

 

>>>Ungafunda kabanzi mayelana nokuthola isifanisi sobugebengu bokweba imininingwane ebucayi esilungile LAPHA.<<

ideshibhodi ye-gophish
Ungakwenza Kanjani Ukuhlolwa Kwamahhala Kobugebengu Bokweba imininingwane ebucayi Enhlangano Yakho

Kungani ngingafuna ukulingisa ukuhlasela kobugebengu bokweba imininingwane ebucayi?

Uma inhlangano yakho ihlaselwa ukuhlaselwa ngomkhonto, izibalo zokuhlaselwa okuyimpumelelo zizokukhathaza.

Izinga lempumelelo elimaphakathi lokuhlasela kobugebengu bokweba imininingwane ebucayi izinga lokuchofoza elingu-50% lama-imeyili obugebengu bokweba imininingwane ebucayi. 

Lolu uhlobo lwesikweletu inkampani yakho engayifuni.

Uma uletha ukuqwashisa ngobugebengu bokweba imininingwane ebucayi endaweni yakho yokusebenza, awugcini nje ukuvikela abasebenzi noma inkampani ekukhwabaniseni ikhadi lesikweletu, noma ukwebiwa komazisi.

Ukulingisa ubugebengu bokweba imininingwane ebucayi kungakusiza ugweme ukuphulwa kwedatha okubiza inkampani yakho izigidi ngecala kanye nezigidi ekuthembekeni kwamakhasimende.

>>Uma ufuna ukuhlola inqwaba yezibalo zobugebengu bokweba imininingwane ebucayi, sicela uqhubeke uhlole Umhlahlandlela wethu Omkhulu Wokuqonda Ubugebengu Bokweba imininingwane ebucayi ngo-2021 LAPHA.<<

Uma ufuna ukuqala isilingo samahhala se-GoPhish Phishing Framework egunyazwe ngabakwa-Hailbytes, ungasithinta lapha ukuze uthole olunye ulwazi noma qala isivivinyo sakho samahhala ku-AWS namuhla.

Sebenzisa i-GoPhish Phishing Simulation Platform ku-Azure noma i-AWS
Sebenzisa i-Gophish

Solutions

I-AWS-Uzakwethu
I-AWS-Qualified-Software

Inkampani yethu

Ikheli Lethu

Hailbytes

9511 Queens Guard Ct.

Laurel, MD 20723

Ifoni: (732) 771-9995

I-imeyili: info@hailbytes.com

Hlala unolwazi; hlala uvikelekile!

Bhalisela Incwadi Yethu Yamaviki Onke

Thola izindaba zakamuva ze-cybersecurity ngqo ebhokisini lakho lokungenayo.