Oleh Diposting pada

Over the first 23 years of this century, the Linux operating system has become as ubiquitous as Windows. Although only 3% of people use it on their laptops and PCs, Linux dominates the Internet of Things, and is also the most popular server OS. You almost certainly have at least one Linux device at home — your Wi-Fi router. But it’s highly likely there are actually many more: Linux is often used in smart doorbells, security cameras, baby monitors, network-attached storage (NAS), TVs, and so on.

At the same time, Linux has always had a reputation of being a “trouble-free” OS that requires no special maintenance and is of no interest to hackers. Unfortunately, neither of these things is true of Linux anymore. So what are the threats faced by home Linux devices? Let’s consider three practical examples.

Router botnet

By running malware on a router, security camera, or some other device that’s always on and connected to the internet, attackers can exploit it for various cyberattacks. The use of such bots is very popular in DDoS attacks. A textbook case was the Mirai botnet, used to launch the largest DDoS attacks of the past decade.

Another popular use of infected routers is running a proxy server on them. Through such a proxy, criminals can access the internet using the victim’s IP address and cover their tracks.

Both of these services are constantly in demand in the cybercrime world, so botnet operators resell them to other cybercriminals.

NAS ransomware

Major cyberattacks on large companies with subsequent ransom demands — that is, ransomware attacks, have made us almost forget that this underground industry started with very small threats to individual users. Encrypting your computer and demanding a hundred dollars for decryption — remember that? In a slightly modified form, this threat re-emerged in 2021 and evolved in 2022 — but now hackers are targeting not laptops and desktops, but home file servers and NAS. At least twice, malware has attacked owners of QNAP NAS devices (Qlocker, Deadbolt). Devices from Synology, LG, and ZyXEL faced attacks as well. The scenario is the same in all cases: attackers hack publicly accessible network storage via the internet by brute-forcing passwords or exploiting vulnerabilities in its software. Then they run Linux malware that encrypts all the data and presents a ransom demand.

Spying on desktops

Owners of desktop or laptop computers running Ubuntu, Mint, or other Linux distributions should also be wary. “Desktop” malware for Linux has been around for a long time, and now you can even encounter it on official websites. Just recently, we discovered an attack in which some users of the Linux version of Free Download Manager (FDM) were being redirected to a malicious repository, where they downloaded a trojanized version of FDM onto their computers.

To pull off this trick, the attackers hacked into the FDM website and injected a script that randomly redirected some visitors to the official, “clean” version of FDM, and others to the infected one. The trojanized version deployed malware on the computer, stealing passwords and other sensitive information. There have been similar incidents in the past, for example, with Linux Mint images.

It’s important to note that vulnerabilities in Linux and popular Linux applications are regularly discovered (here’s a list just for the Linux kernel). Therefore, even correctly configured OS tools and access roles don’t provide complete protection against such attacks.

Basically, it’s no longer advisable to rely on widespread beliefs such as “Linux is less popular and not targeted”, “I don’t visit suspicious websites”, or “just don’t work as a root user”. Protection for Linux-based workstations must be as thorough as for Windows and MacOS ones.

How to protect Linux systems at home

Set a strong administrator password for your router, NAS, baby monitor, and home computers. The passwords for these devices must be unique. Brute forcing passwords and trying default factory passwords remain popular methods of attacking home Linux. It’s a good idea to store strong (long and complex) passwords in a password manager so you don’t have to type them in manually each time.

Update the firmware of your router, NAS, and other devices regularly. Look for an automatic update feature in the settings — that’s very handy here. These updates will protect against common attacks that exploit vulnerabilities in Linux devices.

Disable Web access to the control panel. Most routers and NAS devices allow you to restrict access to their control panel. Ensure your devices cannot be accessed from the internet and are only available from the home network.

Minimize unnecessary services. NAS devices, routers, and even smart doorbells function as miniature servers. They often include additional features like media hosting, FTP file access, printer connections for any home computer, and command-line control over SSH. Keep only the functions you actually use enabled.

Consider limiting cloud functionality. If you don’t use the cloud functions of your NAS (such as WD My Cloud) or can do without them, it’s best to disable them entirely and access your NAS only over your local home network. Not only will this prevent many cyberattacks, but it will also safeguard you against incidents on the manufacturer’s side.

Use specialized security tools. Depending on the device, the names and functions of available tools may vary. For Linux PCs and laptops, as well as some NAS devices, antivirus solutions are available, including regularly updated open-source options like ClamAV. There are also tools for more specific tasks, such as rootkit detection.

For desktop computers, consider switching to the Qubes operating system. It’s built entirely on the principles of containerization, allowing you to completely isolate applications from each other. Qubes containers are based on Fedora and Debian.


#Linux #home #protect #Linux #devices #hacking

Oleh Diposting pada

When you throw away or sell an old computer or phone, you probably remember to delete photos, messages and other personal stuff. But there’s another kind of personal data that (almost) no one thinks about — and it needs to be erased not only from phones, but also from watches, printers and other smart devices — even your fridge. These are the settings for connecting to your Wi-Fi network.

The danger of leaky Wi-Fi access

Accessing someone else’s Wi-Fi network has commercial value. The simplest and most innocent (albeit naughty) form is using a neighbor’s connection. Far less innocent is data theft: in a home or office network, devices usually trust each other, so connecting to someone else’s Wi-Fi makes it easy to steal photos and documents from other network devices.

Even worse is when a Wi-Fi network is infiltrated for illegal activity, such as spamming or DDoS attacks. Exploiting a discovered Wi-Fi network just once, an attacker can hack a device on it (the router itself, home network-attached storage (NAS), a video surveillance camera, or any other easily hackable devices) — and then use it as a proxy server, without further recourse to Wi-Fi “services”. Such proxies operating from home networks are in steady demand from cybercriminals. Of course, the owner of the hacked device bears the brunt: their internet is slower; their IP address lands in various denylists; and, in rare cases, they might get blocked by the ISP or even get a police visit.

As for printers, cameras and other devices on an office network, their Wi-Fi settings can be used to attack the company in question. This attack vector is great for hackers, because in many companies cybersecurity is set up to protect against threats from the internet, while office devices — especially printers — are paid little attention. By connecting to the Wi-Fi network, attackers can easily carry out data theft and/or ransomware attacks.

How Wi-Fi settings get stolen

Most devices store Wi-Fi network information in unprotected form, making it child’s play to retrieve it from a discarded or sold-on gadget. It’s also not hard to find out who previously owned it:

  • If you sold it, the buyer knows it came from you;
  • If you decided to recycle the device, it’s possible you left your contact details when turning it in;
  • If you threw it away, most likely it was somewhere very close to where you used the device.

A bad factory reset also leaves behind many clues: the device name often points to the owner (Alex’s iPhone 8), and the Wi-Fi network name — to their address or employer (TheBensonsHouse, Volcano_Coffee_staff).

Such pointers make your Wi-Fi network easy to locate, and the password for it is right there in the device memory. For added credibility, attackers can connect to your network by spoofing the MAC address of the discarded device.

How to guard against Wi-Fi leaks

Reset and wipe. The most obvious security measure is to wipe the settings from all devices before parting with them. For laptops and computers, it’s recommended to physically format the drive; for other equipment, we advise a full factory reset with deletion of all data. After resetting, go to the network settings and make sure that everything’s really gone — then do another reset to make doubly sure. Unfortunately, the quality of factory resets varies depending on the device and the manufacturer, and there’s no cast-iron guarantee that a reset really does delete everything. For example, Canon recently reported an issue in 200 printer models in which the reset failed to clear the Wi-Fi settings. Canon’s advisory explains that a double reset is required, but for many other devices there’s simply no reliable way to clear the network settings.

Changing the Wi-Fi settings. This method is fiddly, but reliable and not too difficult technically. After getting rid of a device, change your Wi-Fi network password and update the settings on all your other devices. The fewer devices you have, the less trouble, of course. Always use strong, long passwords. And when you change one, generate a password randomly rather than just adding a number or letter at the end. Kaspersky Password Manager, included in a Kaspersky Premium subscription, will help you do this. In the Wi-Fi settings, select WPA2 or WPA3 encryption.

Strict access control. Every Wi-Fi-connected device has its own network access rights. For office and well-configured home networks, managing Wi-Fi access rights at the device level will help — your Wi-Fi router must support these settings. Configure your router so that any unknown or newly connected device is completely isolated and prohibited from accessing the internet or any device on your home network until you explicitly allow it to do so. When discarding or selling a device, be sure to isolate it in the router settings — not just remove it from the list. Then, even if attackers try to connect to the router through stolen credentials, no access will be granted.

A simple option for Wi-Fi access control. For those who find the previous method a bit too complicated, we recommend our smart home security guide, which takes a detailed look at how to properly configure home Wi-Fi and segment it for different categories of devices: computers, smartphones, smart home gadgets, and guest devices. To protect your home Wi-Fi from outsiders, we recommend the Devices on My Network feature in Kaspersky Premium. At first launch, the feature automatically maps your home network and identifies the name and type of each device, after which it continuously monitors the network for the appearance of “strangers” and warns you if a new unknown device pops up. If something in the list looks out of place, you can investigate and take action: from changing your Wi-Fi password to disabling unknown devices. And Kaspersky Premium will guide you through the process.


#WiFi #hacking #recycled #printers #computers #smarthome #equipment

Oleh Diposting pada

Fitur pinter sareng konektipitas internét diwangun kana kalolobaan set televisi, monitor orok, sareng seueur alat digital sanés ayeuna. Henteu paduli naha anjeun nganggo fitur pinter ieu atanapi henteu, alat pinter ngahasilkeun résiko kaamanan anu anjeun kedah terang sareng nyandak léngkah-léngkah pikeun ngajagaan diri anjeun, sedengkeun upami anjeun nganggo seueur fitur bumi pinter, ngamankeun komponén mangrupikeun sadayana. leuwih kritis. Kami parantos nyebarkeun tulisan anu misah ngeunaan perencanaan bumi pinter, janten di dieu urang bakal difokuskeun kaamanan.

Résiko imah pinter pangbadagna

Perkakas rumah tangga anu nganggo jaringan ngenalkeun sababaraha jinis résiko anu béda-béda:

  • Paranti bagikeun seueur data sareng padagang rutin. Contona, televisi pinter anjeun tiasa ngidentipikasi eusi anu anjeun tonton – sanajan dina flash drive atanapi pamuter éksternal. Sababaraha padagang anu ngahasilkeun seueur artos spionase konsuménna. Alat-alat anu kurang canggih, sapertos mesin cuci pinter, ngumpulkeun sareng ngabagi data ka padagangna.
  • Upami alat pinter anjeun ditangtayungan ku kecap akses anu lemah, sareng masih dijalankeun dina setélan pabrikna, anu henteu dirobih ku saha waé, atanapi ngandung kerentanan sistem operasi, hacker Tiasa ngabajak alat. Balukar tina ieu rupa-rupa dumasar kana jinis alat. Mesin cuci pinter tiasa dipareuman di tengah siklus nyeuseuh sabagé jenis prank, sedengkeun monitor orok tiasa disalahgunakeun pikeun nénjo rumah tangga sareng nyingsieunan aranjeunna. Imah pinter anu lengkep rentan ka skénario anu saé – sapertos pareum listrik atanapi pemanasan.
  • Alat pinter anu dibajak tiasa kainfeksi kode jahat sareng dianggo pikeun ngaluncurkeun serangan siber dina kadua komputer dina jaringan asal sareng alat dina Wéb anu langkung lega. Serangan DDoS anu kuat dipikanyaho parantos diluncurkeun tina kaméra panjagaan anu kainféksi. Pamilik gadget anu katépaan ngagaduhan résiko ningali sambungan internétna ngagagap sareng asup kana sababaraha daptar hideung.
  • Upami tingkat kaamanan anu dilaksanakeun ku vendor henteu cekap, data anu dikirim ku alat tiasa dipendakan sareng diterbitkeun. Rakaman kaméra panjagaan sareng peephole kadang disimpen di lingkungan awan anu kirang ditangtayungan – gratis pikeun ditingali ku saha waé.

Kabeneran pikeun anjeun, teu aya horor ieu anu tiasa tumiba ka anjeun – résiko tiasa ngirangan sacara signifikan.

Kumaha upami anjeun henteu peryogi bumi anjeun janten pinter

Imah pinter anu dianggurkeun nyaéta kaayaan anu cukup umum. Numutkeun statistik vendor alat, satengah sadaya alat IoT henteu kantos ningali sambungan jaringan. Pamilik ngagunakeun éta dina modeu non-pinter baheula, kalayan henteu aya manajemén liwat aplikasi sélulér atanapi kamewahan abad ka dua puluh hiji anu sanés. Sanajan kitu, malah hiji alat nu teu ngonpigurasi ku cara kieu nyiptakeun resiko kaamanan. Paling dipikaresep eta nembongkeun titik aksés Wi-Fi bébas diakses tur teu aman atawa nyoba nyambung ka telepon caket dieu liwat Bluetooth unggal ayeuna lajeng. Dina hal ieu, batur, kayaning tatangga anjeun, bisa di kontrol. Ku alatan éta, pangsaeutikna anu anjeun kedah laksanakeun pikeun “ngabobodo” perkakas bumi pinter anjeun nyaéta marios manual pangguna, muka setélan, sareng mareuman konektipitas Wi-Fi sareng Bluetooth.

Aya alat anu henteu ngantep anjeun ngalakukeun ieu atanapi bakal ngahurungkeun Wi-Fi deui saatos pareum listrik. Ieu tiasa dilereskeun ku trik anu rada nangtang tapi parantos réngsé: samentawis ngarobih sandi Wi-Fi bumi anjeun, nyambungkeun ka alat anu bermasalah, teras gentos kecap konci deui. Alat bakal tetep nyobian nyambungkeun nganggo kecap akses anu teu sah, tapi mustahil pikeun hack ku cara nyiksa setélan standar.

Saran umum

Henteu paduli naha bumi pinter anjeun diurus sacara terpusat atanapi diwangun ku alat anu teu cocog anu henteu nyambung ka unggal anu sanés, aranjeunna tetep peryogi kaamanan dasar.

  • Pastikeun router Wi-Fi anjeun aman. Inget yen router Anjeun oge bagian tina sistem home pinter. Kami parantos nyebarkeun sababaraha pituduh anu lengkep pikeun ngamankeun sistem Wi-Fi bumi anjeun sareng ngonpigurasikeun router anjeun kalayan leres. Hiji-hijina hal anu urang hoyong tambahkeun nyaéta yén firmware router bumi sering dipendakan ngandung kerentanan anu dieksploitasi pikeun nyerang jaringan asal, ku kituna pendekatan set-and-poho teu jalan di dieu. Pembaruan firmware kedah dipariksa sacara teratur. Router kualitas ngamungkinkeun anjeun ngapdet firmware langsung tina panel manajemén antarmuka wéb. Upami éta sanés masalahna pikeun anjeun, kunjungan halaman wéb anu ngajual atanapi ngahubungi panyadia ladénan internét anjeun pikeun kéngingkeun versi firmware anu langkung énggal sareng turutan pituduh anu pas pikeun masangana. Pikeun ngalengkepan petualangan router ieu, pariksa lamun kamampuhan pikeun ngatur router ti luar jaringan asal ditumpurkeun dina setélan. Karyawan ISP kadang butuhna pikeun ngungkulan, tapi sering ngaktifkeunana nalika henteu diperyogikeun, ningkatkeun résiko cybersecurity.
  • Pariksa jaringan anjeun sacara teratur pikeun mastikeun teu aya alat anu henteu sah anu nyambung ka éta. Cara panggampangna pikeun ngalakukeun ieu nyaéta ngagunakeun aplikasi khusus. Kaspersky Premium tiasa nampilkeun daptar sadaya alat anu nyambung ka jaringan, sareng sering ogé vendor sareng status panyalindunganna upami sayogi. Penting pikeun anjeun ngalacak alat anjeun sareng miceun alat anu sanés, sapertos kulkas, anu henteu peryogi sambungan Wi-Fi – atanapi tatangga anu nyambung ka Wi-Fi gratis.
  • Pertimbangkeun reputasi vendor nalika mésér gadget. Unggal padagang ngalaman tina kerentanan sareng cacad, tapi sanaos sababaraha anu gancang ngalereskeun bug na sareng ngarilis apdet, anu sanésna bakal nampik yén aya masalah salami aranjeunna tiasa. Numutkeun kana survey Kaspersky, 34% pangguna yakin yén ngan ukur milih padagang anu dipercaya pikeun ngagaduhan bumi pinter anu aman. Sanaos éta pasti ngirangan résiko, tetep aman ogé peryogi léngkah-léngkah sanés.

Kumaha upami bumi pinter anjeun diwangun dina Wi-Fi?

Naha anjeun gaduh seueur alat pinter anu henteu nyambung ka silih, atanapi digabungkeun sareng bantosan Amazon Alexa atanapi Apple Homekit? Dina hal ieu, unggal alat disambungkeun sacara mandiri ka internét liwat Wi-Fi. Ieu mangrupikeun skenario anu paling pajeulit tina sudut pandang kaamanan, sabab kecap akses, firmware sareng kerentanan kedah dilacak pikeun tiap alat masing-masing. Hanjakalna, detil setelan rupa-rupa pisan antara jinis alat sareng padagang, janten urang kedah ngawatesan diri kana saran umum.

  • Nyiapkeun a jaringan Wi-Fi tamu. Para ahli nyauran ieu “segmentasi jaringan”. Ideally, jaringan asal anjeun kudu dibagi kana tilu bagéan: komputer imah, alat tamu jeung parabot home pinter. Seueur router anu henteu sanggup sihir sapertos kitu, tapi anjeun sahenteuna kedah gaduh dua bagéan: hiji kanggo alat bumi sareng hiji kanggo tamu. Ieu bakal nyegah datang ti reconfiguring kaméra anjeun sarta ngamimitian vakum robot ngan keur senang. Éta henteu kedah nyarios yén bagéan éta kedah diamankeun ku kecap akses Wi-Fi anu béda, sareng bagéan tamu kedah gaduh setélan kaamanan anu langkung ketat – sapertos isolasi klien, wates bandwidth, sareng saterasna. Ngawatesan alat IoT pikeun misahkeun bagéan ngirangan résiko anu aya hubunganana. A hacker moal bisa narajang komputer imah tina kaméra IP ngabajak. Sabalikna ogé leres: komputer bumi anu kainféksi moal tiasa ngaksés kaméra pidéo. Buka antarbeungeut manajemén basis wéb router sareng marios setélan Wi-Fi pikeun nuturkeun tip ieu. Lamun sababaraha alat Anjeun disambungkeun via kabel, pastikeun aranjeunna dina bagean jaringan bener ku mariksa bagian séjén tina setélan router.
  • Setel kecap akses anu kuat. Pindah ka setélan pikeun unggal alat. Ieu kadang bisa dilakukeun via aplikasi mobile resmi, sarta kadangkala ngaliwatan panganteur web. set panjangna, unik sandi pikeun tiap alat ku nuturkeun manual pamaké. Anjeun teu tiasa nganggo kecap akses anu sami pikeun sadaya alat! Pikeun ngajaga bebek anjeun dina urutan, paké manajer sandi. Ngomong-ngomong, hiji kalebet sareng Kaspersky Premium, sareng éta ogé sayogi salaku aplikasi mandiri.

  • Apdet firmware. Laksanakeun ieu kanggo unggal alat anjeun anu ngadukung apdet firmware liwat aplikasi atanapi antarmuka wéb, teras ulangan sacara teratur.
  • Pariksa setélan layanan online. Alat anu sami tiasa dianggo dina modeu anu béda – ngirimkeun jumlah inpormasi anu béda dina internét. Salaku conto, robot vacuum cleaner tiasa diidinan unggah pola beberesih anu lengkep ka server – hartosna peta bumi anjeun – atanapi henteu. The peephole video bisa diidinan pikeun nyimpen kana server sagala poto atawa video nu datang approaching panto anjeun nu diidentifikasi maké sensor gerak, atawa bisa jadi diwenangkeun pikeun nembongkeun aranjeunna nalika anjeun mencet tombol. Hindarkeun ngabeungbeuratan padagang panyimpen awan kalayan inpormasi anu teu diperyogikeun: mareuman fitur anu henteu dianggo. Sareng langkung saé henteu ngirimkeun ka server hiji hal anu tiasa dikaluarkeun tina ngabagi tanpa badé kompromi utilitas alat.
  • Turutan apdet on vendor alat nu Anjeun pake. Kadang-kadang, alat IoT kapanggih ngandung kerentanan kritis atanapi masalah anu sanés, sareng anu gaduhna kedah nyandak tindakan: ngapdet firmware, aktipkeun atanapi nganonaktipkeun fitur-fitur anu tangtu, ngareset kecap akses, ngahapus cadangan awan anu lami… dimana aranjeunna nyebarkeun saran sareng buletin kaamanan, tapi ieu sering ditulis dina basa anu kompleks sareng ngandung inpormasi dina sababaraha alat anu henteu relevan pikeun anjeun. Lantaran kitu, leuwih sae pikeun pariksa warta ngeunaan alat Anjeun ti jaman ka jaman tur buka ramatloka resmi lamun manggihan nanaon ngeunaan.

Kumaha upami bumi pinter anjeun diurus sacara terpusat?

Upami bumi pinter anjeun mangrupikeun sistem terpusat, sareng kalolobaan alat dikontrol ku hub, ieu ngajantenkeun tugas anu gaduh langkung gampang. Sadaya léngkah di luhur, sapertos netepkeun kecap konci anu kuat, ngamutahirkeun firmware sacara teratur, sareng saterasna, biasana kedah dilakukeun dina hiji alat: controller home pinter. Aktipkeun auténtikasi dua-faktor dina controller lamun mungkin.

Kami ogé nyarankeun ngawatesan aksés internét ka pangontrol, contona ku ngawatesan babagi data sareng komputer mana waé kecuali server sareng alat anu ngajual dina jaringan asal. Ieu tiasa dilakukeun dina setélan router bumi. Sababaraha pangendali tiasa dianggo tanpa sambungan internét pisan. Upami ngokolakeun bumi pinter anjeun tina jarak jauh henteu penting pikeun anjeun, pegatkeun sambungan hub tina internét mangrupikeun ukuran kaamanan anu kuat. Ieu sanes ubar-sadayana, sabab serangan multi-tahap anu kompleks masih bakal nyababkeun ancaman, tapi sahenteuna serangan anu paling umum atanapi biasa bakal dicegah.


#Kerentanan #alat #pinter #sareng #ngamankeunana

Oleh Diposting pada

Cyber ​​crime is becoming a common occurrence in the digital age and is expected to cause $6 Trillion in financial damage by 2021. Whether it be data leaks, ransomware campaigns or DDoS attacks that shut down entire companies. These threats are growing every day and are putting everyone at risk. And Antivirus is a solution to protect against cyber crimes.

antivirus

Here are some reasons why antivirus is important

One of the best ways to protect yourself from cyber crimes is to install one of the best antivirus solutions on your computer, tablet PC or smartphone. A good antivirus program will look for cyber security threats. Alerts you of anything deemed suspicious and reduces incoming attacks, which means you don’t have to worry about hackers.

Virus slow down computer

When a computer falls victim to malware, viruses kumpulan slot gacor or other types of cyber attacks, its performance will be significantly hindered. Viruses can take up a lot of memory, perform malicious actions in the background, interfere with the way your computer operates, make it difficult to access the internet and cause legitimate applications to crash. Overall, you will find your computer much slower and more difficult to use. But an antivirus solution will prevent this from happening.

Antivirus software can protect data

Hackers are increasingly launching devastating attacks on unsuspecting victims. From spying on social media accounts to sealing their personal information, cyber criminals are causing chaos online. And if they manage to hack into your computer because it’s not safe, they can do a lot more damage. By downloading one of the best antivirus programs, you will always be safe from hacking threats.

Prevent data loss

It is possible that you store a lot of important data on your computing device, from family photos to business documents. If you don’t back up your hard drive and hackers then break your computer, you could end up losing everything on it. Worse, cyber criminals can even tamper with your personal data.

A good antivirus application will keep hackers out of your device and ensure the contents of your computer cannot be deleted, stolen or altered.

Protect from children

The web can be a dangerous place, especially for children. Be it pornography or gambling sites, much of the content found on the internet is not suitable for children. Without antivirus protection, it is possible for children to find websites, search engines, forums, and other internet services that contain inappropriate content and malware. Simply put, antivirus makes the internet safer for kids.

Make sure your device is hack proof

With the increasing risk of cybercrime. Tech companies are increasingly providing their devices and software with built-in security features to protect users from hackers. But unfortunately, perpetrators are constantly developing new link slot gacor methods to sneak past security measures and hack into devices.

If you want to make your device more secure and protect your privacy. Investing in antivirus software is a very good idea. When antivirus is combined with built-in security features. Your device becomes much more powerful and unbreakable by cyber criminals as a result. So much is at stake without an antivirus.