Ib tus neeg siv kev paub zoo dua tuaj yeem txo cov teeb meem kev nyab xeeb ntawm smartphone

Cov txheej txheem:

Ib tus neeg siv kev paub zoo dua tuaj yeem txo cov teeb meem kev nyab xeeb ntawm smartphone
Ib tus neeg siv kev paub zoo dua tuaj yeem txo cov teeb meem kev nyab xeeb ntawm smartphone
Anonim

Key Takeaways

  • Ob daim ntawv tshaj tawm tsis ntev los no qhia tias cov neeg tawm tsam tau nce zuj zus tom qab qhov tsis muaj zog tshaj plaws hauv cov saw hlau ruaj ntseg: tib neeg.
  • Cov kws tshaj lij ntseeg tias kev lag luam yuav tsum qhia cov txheej txheem los ua kom tib neeg ua raws li kev coj ua zoo tshaj plaws.
  • kev cob qhia kom raug tuaj yeem hloov cov tswv cuab rau hauv cov neeg tiv thaiv muaj zog tshaj tawm tsam cov neeg tawm tsam.

Image
Image

Ntau tus neeg tsis txaus siab rau qhov ntawm cov ntaub ntawv rhiab hauv lawv lub xov tooj smartphones thiab ntseeg tias cov khoom siv nqa tau yooj yim no muaj kev nyab xeeb dua li PCs, raws li cov ntaub ntawv tsis ntev los no.

Thaum teev cov teeb meem saum toj kawg nkaus uas cuam tshuam rau lub xov tooj smartphones, cov ntawv ceeb toom los ntawm Zimperium thiab Cyble ob leeg qhia tias tsis muaj qhov kev ruaj ntseg built-in txaus los tiv thaiv cov neeg tawm tsam los ntawm kev cuam tshuam rau lub cuab yeej yog tias tus tswv tsis ua cov kauj ruam kom ruaj ntseg.

"Qhov kev sib tw tseem ceeb, kuv pom, yog tias cov neeg siv tsis ua kev sib txuas ntawm tus kheej ntawm cov kev coj ua zoo tshaj plaws rau lawv tus kheej lub neej," Avishai Avivi, CISO ntawm SafeBreach, hais rau Lifewire hauv email. "Yog tsis nkag siab tias lawv muaj feem cuam tshuam rau tus kheej hauv kev ua kom lawv cov cuab yeej muaj kev nyab xeeb, qhov no tseem yuav ua teeb meem ntxiv."

Txoj Kev Nyuaj Siab

Nasser Fattah, North America Thawj Tswj Hwm Pawg Thawj Coj ntawm Kev Tshawb Fawb Sib Koom, hais rau Lifewire dhau email tias cov neeg tawm tsam mus tom qab lub xov tooj smartphones vim tias lawv muab qhov chaw nres tsheb loj heev thiab muab cov cim tawm tsam tshwj xeeb, suav nrog SMS phishing, lossis smishing.

Tsis tas li ntawd, cov tswv cuab yeej ib txwm raug tsom vim lawv yooj yim rau kev tswj hwm. Txhawm rau cuam tshuam software, yuav tsum muaj qhov tsis pom lossis tsis daws qhov tsis txaus ntseeg hauv cov lej, tab sis nyem-thiab-bait social engineering tactics yog ib txwm muaj ntsuab, Chris Goettl, VP ntawm Kev Tswj Xyuas Khoom ntawm Ivanti, hais rau Lifewire ntawm email.

Yog tsis nkag siab tias lawv muaj feem cuam tshuam rau lawv tus kheej hauv kev ua kom lawv cov cuab yeej muaj kev nyab xeeb, qhov no tseem yuav yog qhov teeb meem.

Daim ntawv tshaj tawm Zimperium sau tseg tias tsawg dua ib nrab (42%) ntawm cov neeg thov kev kho qhov tseem ceeb hauv ob hnub txij li lawv tso tawm, 28% xav tau mus txog ib lub lim tiam, thaum 20% siv sijhawm ntau li ob lub lis piam mus rau kho lawv cov smartphones.

"Cov neeg siv kawg, feem ntau, tsis nyiam hloov tshiab. Lawv feem ntau cuam tshuam lawv txoj haujlwm (lossis ua si) kev ua ub no, tuaj yeem hloov tus cwj pwm ntawm lawv lub cuab yeej, thiab tuaj yeem ua rau muaj teeb meem uas tuaj yeem ua rau tsis yooj yim dua," opined Goettl.

Daim ntawv ceeb toom Cyble tau hais txog lub xov tooj ntawm tes tshiab uas nyiag ob qhov kev lees paub qhov tseeb (2FA) cov lej thiab kis los ntawm McAfee app cuav. Cov kws tshawb nrhiav pom tias lub siab phem app tau muab faib los ntawm lwm qhov chaw uas tsis yog Google Play Store, uas yog ib yam uas tib neeg yuav tsum tsis txhob siv, thiab thov kev tso cai ntau dhau, uas yuav tsum tsis txhob tso cai.

Pete Chestna, CISO ntawm North America ntawm Checkmarx, ntseeg tias nws yog peb tus uas yuav ib txwm yog qhov tsis muaj zog tshaj plaws hauv kev ruaj ntseg. Nws ntseeg hais tias cov khoom siv thiab cov apps yuav tsum tau tiv thaiv thiab kho lawv tus kheej los yog ua rau muaj kev phom sij rau kev puas tsuaj vim tib neeg feem coob tsis tuaj yeem cuam tshuam. Hauv nws qhov kev paub dhau los, tib neeg paub txog kev nyab xeeb kev coj ua zoo tshaj plaws rau tej yam xws li lo lus zais tab sis xaiv tsis quav ntsej lawv.

"Cov neeg siv tsis yuav raws li kev ruaj ntseg. Lawv tsis siv [nws] raws li kev ruaj ntseg. Lawv yeej tsis xav txog kev ruaj ntseg mus txog thaum muaj xwm txheej phem tshwm sim rau lawv tus kheej. Txawm tias tom qab qhov xwm txheej tsis zoo, lawv qhov kev nco luv luv, "saib Chestna.

Cov tswv cuab tuaj yeem ua phooj ywg

Atul Payapilly, Founder of Verifiably, saib nws los ntawm qhov sib txawv ntawm qhov pom. Kev nyeem cov ntawv ceeb toom ua rau nws nco txog qhov feem ntau tshaj tawm AWS kev nyab xeeb xwm txheej, nws hais rau Lifewire dhau email. Hauv cov xwm txheej no, AWS tau ua haujlwm raws li tsim, thiab kev ua txhaum cai yog qhov tshwm sim ntawm kev tso cai tsis zoo los ntawm cov neeg siv lub platform. Thaum kawg, AWS tau hloov qhov kev paub dhau los ntawm kev teeb tsa los pab tib neeg txhais cov kev tso cai raug.

Qhov no cuam tshuam nrog Rajiv Pimplaskar, CEO ntawm Dispersive Networks. "Cov neeg siv tau tsom mus rau kev xaiv, yooj yim, thiab tsim khoom, thiab nws yog lub luag haujlwm ntawm kev lag luam cybersecurity los qhia, nrog rau tsim ib puag ncig ntawm kev ruaj ntseg kiag li, tsis muaj kev cuam tshuam rau cov neeg siv khoom."

Kev lag luam yuav tsum nkag siab tias peb feem ntau tsis yog cov neeg muaj kev ruaj ntseg, thiab peb tsis tuaj yeem cia siab tias yuav nkag siab txog qhov kev pheej hmoo thiab qhov cuam tshuam ntawm kev tsis nruab qhov hloov tshiab, ntseeg Erez Yalon, VP ntawm Kev Tshawb Fawb Kev Ruaj Ntseg ntawm Checkmarx. "Yog tias cov neeg siv tuaj yeem xa tus password yooj yim heev, lawv yuav ua li ntawd. Yog tias software siv tau txawm hais tias nws tsis tau hloov kho, nws yuav raug siv, " Yalon qhia nrog Lifewire dhau email.

Image
Image

Goettl tsim rau qhov no thiab ntseeg tias lub tswv yim zoo tuaj yeem txwv kev nkag mus los ntawm cov khoom siv tsis raug. Piv txwv li, lub jailbroken ntaus ntawv, los yog ib tug uas muaj ib tug paub tsis zoo daim ntawv thov, los yog tab tom khiav ib tug version ntawm OS uas paub tias yuav tsum tau nthuav tawm, tag nrho cov yuav siv tau raws li triggers txwv tsis pub nkag mus txog rau thaum tus tswv kho qhov kev ruaj ntseg faux pas.

Avivi ntseeg tias thaum cov neeg muag khoom thiab cov software tsim tawm tuaj yeem ua tau ntau yam los pab txo qis qhov uas tus neeg siv yuav raug nthuav tawm thaum kawg, yuav tsis muaj cov mos txwv nyiaj lossis cov thev naus laus zis uas tuaj yeem hloov pauv cov ntaub ntub dej tiag tiag.

"Tus neeg uas tuaj yeem nyem rau ntawm qhov txuas tsis zoo uas ua rau nws dhau los ntawm txhua qhov kev tswj hwm kev ruaj ntseg yog tib yam uas tuaj yeem tshaj tawm thiab zam kev cuam tshuam los ntawm xoom-hnub lossis qhov chaw tsis pom kev thev naus laus zis," said Avivi.

Pom zoo: