Thursday, 12 April 2018

WANNACRY RANSOMWARE                                                                             
(The biggest Cyber criminal in Computer History !)
 Er.Chhungpuia Renthlei

( He articles hi kum 2017 May thla a ziah a ni) 

Aw le, tun tum chu computer khawvel history a  computer virus hmanga cyber crime lian ber leh tawhkhirh ber hiala an sawi, kum in 2017  May thla tir lama  khawvel nghawr nghing lawih khawpa computer khawih buaitu  Ransomware chungchang  ka han tarlang  ve  ang e. 

Ransomware hi eng chiah nge ni le ?
Ransom tih hi mizo tawng chuan tlanna emaw intlanchhuahna tihna a ni.  Virus chimawm tak, file khawih chhia a pawisa min dil thin tu ti ila a fiah mai awm e. Ransomware hi malicious software zinga mi a ni. Malicious software awmzia ber chu virus chikhata ni a,computer system  ah lutin a rukin data hrang hrang a chhiar a, information a chhinchhiah vek a, message  chi hrang hrang a tarlang thin. Ransomware in computer a khawihbuai dan ber chu kan computer a file pawimawh  awm tha hle hle lai  hawn theih miah loh turin  min kalh sak hmiah hmiah mai a, chu mai duhtawk lovin  pangngai taka hawng leh turin  tlanna pawisa min thing let leh thin.


Keini mipui tam zawk ten tunhnai mai a social media hrang hrang kaltlanga  kan hriat  ransomware  hi kum 1989 daih tawh a Joseph Popp  program siamchhuah a ni. A tirah chuan “AIDS” Trojan  tih leh  PC Cyborg tih hming an vuah nghe nghe. Hetianga intlanchhuahna tura sum a phut tlat thin avang hian a hmingah Tlanna Virus  ( Ransom Malware)  an ti anih mai hmel e. He Ransom Malware  hi a lam tawi in Ransomware tiin khawvel chuan kan lo hre lar ta a ni.


Ransomware chi hrang hrang te :
 Ransomware  hi family lian tak a ni a, a langsar zual deuh deuh te  chu: 
1.       Encryptors  ransomware  chuan computer hmangtu te data pawimawh  hrang hrang personal photos, archives, documents, databases, etc. te  hman theih lohin a lock vek thin. Data hawn theih lehna turin tlanna pawisa  (ransom payment) a phut nghal thin.
2.       Blocker  ransomware ve thung chuan computer  systems (Windows operating system) a block hmiah mai  thung a, computer  hmang thei leh turin tlanna pawisa  (ransom payment) a phut nghal thin.
3.       Leakware(Doxware) ransomware : Hei hian  information  te ruchhuakin hmun dangah a tlangzarhah a vau  thin.
4.       Mobile ransomware: Android platform a bi tum ber. Mobile data pawimawh hman theih lohvin a siam thin
5.       Reveton ransomware  :  license telloa software hmang ang a kan computer sawiin, Software  pawisa pe a download tur te in  thuneitu ang maiin message a tarlang thin.Kum 2012 velah European countries ah a lar hle.
6.       CryptoLocker ransomware  : Hei hian kan data leh software te hman theih loh turin a siam thin.Kum 2013 chhho ah khan a lar hle.Kum 2013 september khan Australia ah  computeter a tibuai hle bawk
7.       CryptoWall ransomware : Hei hian Microsoft windows a bitum bik a. Kum 2014 khan  Advertisement dik lo tam tak  an thehdarh  kum 2014 chho khan website langsar tak tak a tibuai.
8.       Fusob ransomware : Hei hi Mobile  bitum tura an siam a ni. April 2015 leh  March 2016 inkara mobile tibuaitu ransomware langsar ber a ni.
9.       WannaCry ransomware  : Hei hi tunlaia khawvelin a buaipui mek,.Kumin 2017 may thla tir lama  internet kaltlanga computer engemawzat a tibuaitu  hi a ni. Computer han ON chiah hian Windows hmang ho tan chuan Start menu etc lan hmain emaw, a lan rualin “Your Computer is Locked” etc. tih a rawn lang tel thin a, han close ngaihna a awm der lo thin ani. A “Lock” chhan emaw thui leh mumal hmel deuhvin a in ziak a, computer hman duh chuan pawisa pek a ngaih thu a inziak tel thin.
 Ransomware history :
Sawi tawh angin  ransomware  virus  hi kum 1989 daih tawhah khan siam a ni. Computer a tihbuai hmasak ber chu  kum 1989 a Stockholm  a AIDS conference  an neihna hmuna kalkhawm (participants) computer a ni. Pariticipants   hnena  20K Floppy Diskettes an semna ah  a ruka thawndarh  a ni. Floppy disk computer a an thunluh ve leh  he ransomware virus  hian Computer system file pawimawh awmna ber C: Drive a  khawihbuai nghala, file pawimawh hman theih lohvin a lock nghal thin AIDS conference na hmuna  thawndarh anih vangin AIDS Trojan tiin a hming an phuah nghe nghe. Tuna  ransomware –Wannacry nen ang em em hi  chu ti lutukin an ngai pawimawh lem lo.

 Ransomware  hmang hian criminal te chuan Kum 1989  khan  computer hmangtu  tam tak hnenah  Software hmangtu  license   tawp  angin message an thawn  a, an software  hman theih lohin an lock sak hmiah a,  an hman leh theih nan PC Cyborg Corporation ah US$189 (Rs 12285)  pe turin  message an thawn nghal a ni.

Khawvelin tunlaia ransomware  a buaipui ber , WannaCry ransomware  rawn irhchhuahna bul ber  chu kum 2013 a hmuhchhuah cryptographic algorithm khirh tak mai hmanga data leh system file lock thei  CryptoLocker an tih hi a ni. Tahla lian tak hmanga kawngkhar kal hang deuh hian computer file leh data pawimawh an  kalh hmiah mai thin. A hawnna chahbi (decryption key) lei nan pawisa an phut thin..

 Tunlai a Ransomware Messages langsar zual te:
“Your personal files are encrypted”
“Your computer has been locked”
“FBI Online Agent has blocked your computer for a security reason”
“You became victim of the PETYA RANSOMWARE!”
“WARNING! Your personal files are encrypted”
“YOUR FILE HAS BEEN LOCKED”

Ransomware  in a tihbuai langsar te :
CNN in a report danin Mithiam te chuan  Ransomware  hi   khawvel a  cyber  crime  history ah chuan a lian ber a ni.   Ransomware in a bitum lian ber pakhat chu Microsoft Windows Operating system ( Windows XP leh  Windows 2003 ) a ni. Heng te hi  khawvel hmun hrang  hrang mi maktaduai telin kan la hman, mahse Version thar  tam tak zawk a chhuahtawh avanga microsoft ten an  hluihlawn leh enkawl zui tawh loh te a ni. Heng te hi ransomware  chuan a rawn bitum ta ngat mai reng a. Hetiang anih avang hian Microsoft chuan   update software an siamchhuak nghal a.  Microsoft chuan  sorkar tan ralkhel dar vuak  ngei ngei na tur a ni an ti hmiah mai. 
Nikum 2016 January leh may  thla inkarah ringawt khan ransomware families 50 lai mai  hmuh belh a ni .Ransomware  76%  te hi spam atanga thehdarh a ni. Ransomware  59%  te hi  email attachment  leh  embedded URLs atanga thehdarh a ni.FBI in a chhut dan chuan  darkar tin hian  khawvel hmun hrang hranga computer  4,000 zet mai hi ransomware in a tibuai mek.FedEx, Britain’s National Health Service leh  Russian Interior Ministry te hi a tihbuai nasat ber ber te an ni.

Ransomware  in pawisa  pe tura a tih te hi chawhrualin Rs 19500  atanga  Rs 39000 vel a ni thin.Tunlai hian Ransomware  hian sumdawng te a target ber a, tunah hian  email  siamtu ( webmail providers)  a bitum leh mek a ni.US President  Trump a khan  cybersecurity order a tihchhuah hnu lawkah  ramsomware hian US sorkar computer pawimawh a lock nghal. Hetih lai hian US government  systems te a tihbuai loh thu an sawi  thung. Khawvela antivirus  lar tak mai Kasperkey Lab.  hriat theih chinah  dan chuan  ram hrang hrang 100 chuang ah  computer 45,000 zet a khawih buaia. Tin, Antivrus  kan hman lar tak mai Avast  pawhin  ram hrang hrang 99 ah  computer 57,000 zet a khawih chingpen  thu an report bawk. Heng zingah hian Russia, Ukraine, Taiwan, Reuters e.t.c te chu a tuar nasa te an ni.

India pawh Gujarat  sorkar computer 120  te, West Midnapore - Belda, Datan, Narayangarh leh Keshiyari te, Balurghat  Bengal's South Dinajpur  power pekchhuahna  computer te  ramsomware hian a tibuai mek bawk. kumin 2017 march thla atang khan  Security  a  update nghal  tih Union Minister Ravi Shankar Prasad  chuan a sawi nghe nghe bawk.  China ah government agencies leh  schools tiamin 30,000 institutions  a khawi buai bawk.

WannaCry ransomware laka inven theih dan:
1.       Windows security patch MS17-010 hi install chuan computer a alo luttur a veng thei a. Windows automatic a update lo te tan https://technet.microsoft.com/en-us/library/security/ms17-010.aspx atang hian he security patch hi download theih in a awm a, download zawh ah install mai tur a ni.
2.       Firewall atangin port 139, 445 leh 3389 te block tur.
3.       Mi i hriat ngailoh hnen atanga eimail i dawn emaw, company i hriat ngailoh hnen atanga email i dawn emaw in attachment hawng suh.
4.       SMB disable rawh. Hei hi windows features atangin a disable theih a ni.
5.       I web browser ah pop-up block rawh. Hei hi browser setting ah set theih a ni emaw install theih a ni.
6.       Windows security update thar ber install thin ang che.
7.       Antivirus tha tak hmang la, update tha ang che.
I file pawimawh zualte external hard dik ah emaw, pendrive ah emaw DVD/CD ah te backup thin rawh

Ransomware bakah  internet leh mobile hmangtu te tibuai thei langsarzual han tarlang leh lawk ang hmiang
Adware: Hei  hi computer tana thil hlauhawm em em nilo mah se, a hmangtu tan thil ninawm anih avang leh malware siam tute tan computer attack theihna anih avangin thil hlauhawm ve thawkhat chu ani. Free Software (Shareware) kan tih te hian Advertisement a keng tel thin a, tunlaia Android leh Apple iOS-a Free app tamtak hian an kengtel thin ani.Hetiang Free Software ho hi chung advertisement vanga “Free” thei annih vangin Adware chu an tello thei lo ani. Entirnan, tunlaia Free Anti-Virus lar ve tak, AVG Free ah pawh hian Adware a tel ve a, a hnuaia a lan dan ang hian, advertisement lai hi amahin a in thlak vel reng thin.

Spyware: Hetiang hi chu Adware ang tho anni a, mahse advertisement mai bakah thiltih theih dang annei a, chu chu a hmangtu information lakkhawm a, chumi hmanga “Targeted Advertising” an tih, a hmangtu a zira advertisement link dah ani. Website hran hran kan han browse hian, kan thil en lai leh website tlawh zing deuh te, shopping website-a kan thil en etc. te alo chhinchhiah a, chumi hmang chuan kan thil duhzawng leh chakzawng awm deuh a hrethiam a, site dang kan tlawh zel pawhin kan duhzawng awm tak tak chauh advertisement alo tilang thin ani.Hacker ho hian Spyware hi an hmang tangkai thiam em em a, heng “Targeted Advertisement” hmang hian miin an chhiar chak deuh leh tui lam tak tur link an website kalna apiangah anlo dah a, mahse chutiang link chuan hmun dang daihah hruaiin, an computer-a vulnerability exploit tumin an bei ta thin ani.

Keylogger : Hei hi chu a hming chawi ang hian, mi keystroke (keyboard-a kan thil type engkim) alo chhinchhiah-a, file-ah emaw chhiar theihin a dah (Save) ru thin ani. Hemi hmang hian miin Encryption emaw password maksak deuh pawh lo hmang ta se, chumi password an type laia an keystroke a hriattheih avangin awlsam tein chumi password chu a hriat theih mai thin ani. A aia ril zawka han luh dawn chuan, chhiar tur tamtak a awm a, keylogger chuan computer Operating System (Windows) leh Hardware (Keyboard) an inbiakna lo ngaihthla anih avangin, hardware leh software keylogger a awm

Kan inven fimkhurna tur te :
1.       Mobile leh internetah kan hriat chian loh website leh advertisement link click loh emaw, thawndarh loh tur
2.       Software  pirated copy  hman loh hram hram tur.
3.       Mobile leh computer software te a hun takah update thin tur
4.       Kan data pawimawh te  hun bi nei taka  Pendrive leh  Cloud  ah backup thin tur.
5.       A  nazawng a internet  online loh  tur.
6.       E mail  regular taka chek a, message tul lo delete zel tur. Tin, hriatchian loh message emaw, attachment hawn loh tur.
7.       Mobile hmangtu ten  data pawimawh  te regular taka backup  thin tur.
8.       Social media ah  kan hriat chian loh midang thawndarh mai mai loh tur
 Website visitors ten Website hrang hrang  kan  luh laia keimahni click ni miah lo va  Computer screen a thuziak rawn lang ve   "pop-up Message " ang hian a rawn lang a Kan computer-a  Virus (Malware) paih bo tum ang takin  “Clean Now” “Remove all threats " tih  thu te a rawn ziak thin.  Hetiang han hmuh hi chuan mi tam tak tak chuan  awih loh a har si a, an thu zawm  a awl tak zet a ni. An thu zawm a han click veleh malware te chu tifai awmang takin engemaw chen a hnu ah  pawisa a rawn dil thin. Online transaction hmangin mi Credit Card emaw atangin pawisa a lak mai bakah an Card information a ru thin a, chumi information chu thil dang atan ahman turin a  khawlkhawm thin bawk a ni.
Tunlaiah  internet  hmangtu te khawvelah kan pung chho zel a, ransomware hi chu  virus chi khat  a ni maia, Virus dang  hlauhawm tak tak a atam em em mai sia . Heivang hian cyber  crime  tuartu kan ni thei vek tih hria ila.  fimkhur tlang ang u khai.


No comments:

Post a Comment