Usizo

Izibonelo zemibuzo

Isibonelo: Amaseva okushintshanisa

Izibalo ezijwayelekile · Uchungechunge lwezikhathi

Igrafu ehlanganisiwe ekhombisa inani lamakheli e-IPv4 & IPv6 atholakele aphendula nsuku zonke ngesonto eledlule, emhlabeni wonke, abhalwe ngokuthi i-CVE-2023-36439.

Izibalo ezijwayelekile · Ukubona ngeso lengqondo · Ithebula

Ithebula elibonisa inani lamakheli e-IPv4 ne-IPv6 atholakale ephendula usuku ngalunye ku-DAY edlule, emhlabeni wonke, enamathegi njenge-CVE-2023-36439.

Izibalo ezijwayelekile · Ibalazwe lezihlahla

Ibalazwe lesihlahla elibonisa inani lamakheli e-IPv4 ne-IPv6 atholakale ngosuku oluthile, elibhalwe ngokuthi i-CVE-2023-36439, nenombolo yezwe ngalinye emele ngokulinganayo.

Ukuchofoza esigabeni sezwe kunikeza ukuhlukaniswa kwemithombo kanye nezibalo ezijwayelekile ezithathwe Ibhuku leqiniso lezwe le-CIA.

Isibonelo: Amadivayisi we-CWMP aveziwe

Izibalo ezijwayelekile · Uchungechunge lwezikhathi

Umugqa wesikhathi obonisa iminyaka 2 yedatha yomlando (isikhathi esiphezulu kudeshibhodi yomphakathi) - kulokhu eSaudi Arabia okukhombisa inani lamakheli we-IP wedivayisi ye-CWMP evezwe nsuku zonke.

Qaphela: Le grafu ikhombisa ukuthuthuka okukhulu ngokuya ngokuvezwa kwe-CWMP ekupheleni kukaJanuwari 2023

Isibonelo: Izimo ze-MISP

Izibalo zedivayisi ye-IoT · Ukubona ngeso lengqondo · Ishadi le-bar

Amadivayisi amaningi nezixazululo zesofthiwe kungathathwa iminwe ngesikhathi sokuhlolwa. Lo mdwebo ubonisa (ngesikali se-logarithmic) inani lamakheli e-IP atholakala nsuku zonke ngokwesilinganiso, ngenyanga edlule, nge MISP izibonelo ezigijima.

Isibonelo: Amaphutha asetshenzisiwe

Izibalo zokuhlaselwa: Ubuthakathaka · Ukuqapha

Ama-100 aphezulu atholakele azama ukusizakala ngobuthakathaka (ngaphandle kwalabo abaqapha i-Shadowserver kuma-honeypots ethu), ekuqaleni ahlelwe ngenani lama-IP ahlukile ahlaselayo ngosuku olwedlule.

Ukuchofoza inketho yebalazwe kuvumela umsebenzisi ukuthi ashintshe phakathi kwe-“umthombo (Source)” ne-“Indawo okuyiwa kuyo (Destination)” Izinhlobo Zokusingatha (okungukuthi ukuhlasela i-IP geolocation Vs i-honeypot IP geolocation).

Qaphela: I-geolocation ehlaselwayo ingase noma ingase ingameleli ngokunembile indawo ehlaselwayo ngokwayo.

Isibonelo: Ukuhumusha izenzakalo

Ukusebenzisa ideshibhodi ukusiza ukuhumusha imicimbi: Ukwanda okungajwayelekile kwamadivayisi we-CWMP aveziwe (kucatshangwa ukuthi ama-routers asekhaya e-Huawei) eGibhithe, kulandelwa ukuhlaselwa kwe-Mirai okuvela ezweni elifanayo.

Qaphela: I-Shadowserver isebenze ne-nCSIRT yaseGibhithe ukwazisa nokulungisa.

Izibalo zedivayisi ye-IoT · Uchungechunge lwezikhathi

Ukubonwa kokwanda kwevolumu yamadivayisi we-IoT avezwe emphakathini omphakathi esiGibithe ngo-2023-01-05.

Imibuzo

Izibalo zedivayisi ye-IoT · Ibalazwe lezihlahla ngomthengisi

Ukubuyela emuva nokuqhubekela phambili ngezinsuku kukhombisa amadivayisi okungenzeka abe amadivayisi e-Huawei abonakalayo kusukela ngo-2023-01-05.

Imibuzo

Izibalo ezijwayelekile · Uchungechunge lwezikhathi

Ukukhuphuka okuhambisanayo kokutholwa kwe-CWMP okuveziwe kusuka ekuskeneni okufana nokukhuphuka kuka-2023-01-05.

Imibuzo

Izinzwa ze-shadowserver honeypot zikhombe amadivayisi asolisayo aseGibithe athintekayo aqalisa ukuhlasela kwe-Mirai nokuhlasela ngamandla.

Imibuzo

Futhi ukuhlaselwa okuhambisana ne-Telnet Brute Force okuvela kumadivayisi aseGibithe athintekile.

Imibuzo

Ukusebenzisa imithombo eminingi nokukhetha izinketho Uphawu Ukugqagqana kuvumela ukuthi ukubonwa kwenziwe egrafini efanayo.

Imibuzo

Isibonelo: Imibiko ekhethekile

Ngezikhathi ezithile iShadowserver ikhipha imibiko ekhethekile eyodwa. Simemezela imininingwane ku-X/Twitter nakuwebhusayithi yethu - kodwa ngemva komcimbi ungase ufune ukwazi izinsuku ezifanele. Enye indlela yokuthola izinsuku iwukusebenzisa ishadi le-Time Series ukufuna izinsuku ze-Special Report - bese ungadlulisela lezo zinsuku kwezinye izethulo ezifaneleke kangcono izibalo zosuku olulodwa (njengamamephu noma amamephu ezihlahla). Imibiko ekhethekile inomthombo obekwe ku special ebhodini lokulinganisa.

Ukufuna Imibiko Ekhethekile Esithombeni Sesikhathi:

Imibuzo

Ibalazwe lesihlahla njengesibonelo Umbiko okhethekile otholakala ku-2024-01-29:

Ukuze uthole uhlu lwemibiko ekhethekile sicela ubheke uhlu lwemibiko esikhungweni sethu main website. Imibiko ekhethekile iyoba negama elithi "Elikhethekile".

Isibonelo: Amashadi ahlelwe ngezikhathi

Ukuguquguquka umehluko omkhulu

Amashadi we-Output Time Series ngokuzenzakalelayo anombala ompunga okhanyayo wemigqa ye-axis. Ngokukhetha i- "Toggle High Contrast (Ukuqhathanisa okuphezulu okuguqukayo)" kungenzeka ukwenza imigqa ye-axis ibe mnyama - okungase kube lula ukuyikhiqiza kabusha emibikweni.

Ukuguquguquka ukubonakala

Lapho uchungechunge olunezinombolo eziningi lwemininingwane luboniswa eshadini le-Time Series - uchungechunge ngalunye lwedatha luzoqanjwa ngaphansi kwalo. Ngokukhetha “Toggle Visibility (Ukuguquguquka ukubonakala)”, kungenzeka ukukhipha wonke uchungechunge lwedatha ekubukeni.
Khona-ke ungakwazi ukuchofoza kuphela izinto ofuna ukubonisa ngegama ngaphansi kweshadi. Isikali sizolungiswa ngokuzenzakalelayo ukuze sihambisane nochungechunge lwedatha/inhlanganisela oyikhethile.

Ukuguquguquka ukuqoqwa

Lapho uchungechunge lwemininingwane eminingi lunikezwa eshadini le-Time Series kunezindlela EZIMBILI zokubuka idatha ehlanganayo (ngokuphambene nemininingwane ehlanganisiwe). Eyokuqala ukusebenzisa inkinobho yokuguqula ethi “overlapping (ukugqagqana)” ohlangothini lwesobunxele lwesikrini. Lokhu kuyokhiqiza amashadi anemigqa ehlanzekile kusethi ngayinye yedatha.
Ngenye indlela, sebenzisa inketho ye-hamburger selector “Toggle Stacking (Ukuguquguquka ukuqoqwa)” ukukhiqiza amashadi ngeqoqo ngalinye ledatha elinombala walo wokugcwalisa. Kuye ngemininingwane onayo, izindlela ezihlukahlukene zingase ziveze imiphumela ecacile.

Ukuthuthukiswa kwe-Shadowserver Dashboard kwaxhaswa yi- UK FCDO. Izibalo zeminwe yamadivayisi e-IoT kanye nezibalo zokuhlaselwa kwe-honeypot ezixhaswe ngezimali yi-Connecting Europe Facility ye-European Union (Iphrojekthi ye-EU CEF VARIoT).

Sithanda ukubonga bonke abalingani bethu abanomusa abafaka isandla kudatha esetshenziswe ku-Shadowserver Dashboard, kufaka phakathi (ngokulandelana kwama-alfabhethi) Ukudla Komphakathi kwe-APNIC, Bitsight, CISPA, if-is.net, Kryptos Logic, I-SecurityScorecard, Inyuvesi Kazwelonke YaseYokohama nabo bonke labo abakhetha ukungaziwa.

I-Shadowserver isebenzisa amakhukhi ukuze iqoqe ama-analytics. Lokhu kusivumela ukuba silinganise ukuthi isayithi lisetshenziswa kanjani futhi sithuthukise okuhlangenwe nakho kwabasebenzisi bethu. Ukuze uthole ukwaziswa okwengeziwe mayelana namakhukhi nokuthi i-Shadowserver iwasebenzisa kanjani, bheka inqubomgomo yobumfihlo. Sidinga imvume yakho ukuze sisebenzise amakhukhi ngale ndlela kudivayisi yakho.