{"id":162456,"date":"2018-07-18T09:30:00","date_gmt":"2018-07-18T09:30:00","guid":{"rendered":"https:\/\/bm.dev.synology.me\/?p=162456"},"modified":"2018-07-18T09:30:00","modified_gmt":"2018-07-18T09:30:00","slug":"opinie-bogdan-botezatu-specialist-in-securitate-informatica-la-bitdefender-un-an-de-la-wannacry-si-goldeneye-companiile-inca-isi-revin-dupa-catastrofa-fara-precedent","status":"publish","type":"post","link":"https:\/\/bm.dev.synology.me\/?p=162456","title":{"rendered":"Opinie Bogdan Botezatu specialist \u00een securitate informatic\u0103 la Bitdefender: Un an de la WannaCry \u015fi GoldenEye. Companiile \u00eenc\u0103 \u00ee\u015fi revin dup\u0103 catastrofa f\u0103r\u0103 precedent"},"content":{"rendered":"<p>\n\u00cen Rom\u00e2nia, cea mai cunoscut\u0103 victim\u0103 a fost constructorul auto Dacia, care a trebuit s\u0103 opreasc\u0103 temporar produc\u0163ia \u015fi s\u0103 trimit\u0103 muncitorii acas\u0103. Costurile asociate cu cele dou\u0103 \u201epandemii\u201d sunt estimate la valori cuprinse \u00eentre 3 \u015fi 4 miliarde de dolari, estimeaz\u0103 anali\u015ftii \u2013 costuri care continu\u0103 s\u0103 urce \u015fi \u00een ziua de azi, la mai bine de un an dup\u0103 cele dou\u0103 incidente.<\/p>\n<p>\nPotrivit unui raport Gartner asupra securit\u0103\u0163ii informatice, managerii de top \u2013 \u00een special executivii din IT \u2013 au devenit din ce \u00een ce mai con\u015ftien\u0163i de responsabilitatea pe care o au de a-\u015fi proteja organiza\u0163ia \u00eempotriva poten\u0163ialelor atacuri cibernetice. Aceast\u0103 responsabilitate este totodat\u0103 privit\u0103 ca o oportunitate de a alinia obiectivele departamentului IT cu obiectivele de business ale \u00eentregii organiza\u0163ii.<br \/>\nIar dintre toate tipurile de bre\u015fe, atacurile de tip ransomware \u2013 amenin\u0163are care blocheaz\u0103 accesul la date \u015fi solicit\u0103 recompens\u0103 \u2013 reprezint\u0103, de departe, cea mai mare primejdie.<\/p>\n<p>\nSecuritatea cibernetic\u0103 a devenit un subiect cheie \u00een \u015fedin\u0163ele consiliilor de administra\u0163ie \u015fi, implicit, o parte esen\u0163ial\u0103 a unei strategii de business. Liderii de afaceri nu au fost dintotdeauna receptivi la aceste dezbateri, \u00eens\u0103 recentul \u015fir de incidente cibernetice au schimbat aceast\u0103 abordare, spun anali\u015ftii.<\/p>\n<p>\nNumai incidentul WannaCry din mai 2017 a provocat daune cu valori cuprinse \u00eentre 1,5 \u015fi 4 miliarde de dolari la nivel global. Atacul, care ar fi fost operat de atacatori nord-coreeni, s-a r\u0103sp\u00e2ndit \u00een doar c\u00e2teva ore \u00een zeci \u015fi apoi sute de \u0163\u0103ri, afect\u00e2nd \u00een mod deosebit spitale, furnizori de energie, dar \u015fi numeroase afaceri mici \u015fi mijlocii.<\/p>\n<p>\nLa aproximativ o lun\u0103 dup\u0103 incidentul WannaCry, un atac similar, numit GoldenEye sau NotPetya, a f\u0103cut ravagii similare, de data aceasta f\u0103c\u00e2nd victime nu doar spitale \u015fi furnizori de energie, ci \u015fi gigan\u0163i din transporturi precum grupul danez A.P. Moller-Maersk.<\/p>\n<p>\nO analiz\u0103 recent publicat\u0103 de Wall Street Journal arat\u0103 c\u0103 daunele rezultate din atacul ransomware GoldenEye continu\u0103 s\u0103 urce p\u00e2n\u0103 \u00een ziua de azi. Motivul? La peste un an de la incident, victimele \u00eenc\u0103 se lupt\u0103 cu redresarea opera\u0163iunilor.<\/p>\n<p>\nPrintre victimele GoldenEye se num\u0103r\u0103 firma american\u0103 de curierat FedEx \u015fi compania farmaceutic\u0103 Merck &#038; Co. Cele dou\u0103 \u00eenc\u0103 diger\u0103 consecin\u0163ele atacului, mai exact pagube de sute de milioane de dolari din v\u00e2nz\u0103ri pierdute pe durata \u00eentreruperii activit\u0103\u0163ii \u015fi din actualizarea sistemelor \u015fi \u00eennoirea tehnologiilor.<\/p>\n<p>\nDac\u0103 FedEx a cheltuit \u00een ultimul an aproximativ 400 de milioane pe remedieri, cei de la Merck au pl\u0103tit p\u00e2n\u0103 la 670 de milioane de dolari pentru redresare. Tot din cauza incidentului, Merck s-a g\u0103sit \u00een imposibilitatea de a livra comenzi pentru vaccinul Gardasil 9, care previne unele tipuri de cancer.<\/p>\n<p>\nAlte industrii care s-au num\u0103rat printre \u0163intele GoldenEye includ compania global\u0103 de publicitate WPP PLC, firma de avocatur\u0103 DLA Piper, produc\u0103tori de bunuri de larg consum precum Mondelez International \u015fi alte multina\u0163ionale care au pierdut comenzi uria\u015fe \u00een urma atacului sau au fost nevoite s\u0103 investeasc\u0103 substan\u0163ial \u00een remedieri.<\/p>\n<p>\nExist\u0103 \u015fi ve\u015fti bune. Din fericire, companiile de securitate cibernetic\u0103 \u0163in la r\u00e2ndul lor pasul cu amenin\u0163area ransomware. Prin tehnologii care folosesc inteligen\u0163a artificial\u0103, capabile s\u0103 \u00eempiedice \u00eencerc\u0103rile de criptare a fi\u015fierelor, solu\u0163iile de securitate performante reu\u015fesc s\u0103 combat\u0103 majoritatea atacurilor de tip ransomware \u2013 inclusiv c\u00e2nd atacatorii exploateaz\u0103 o vulnerabilitate nou\u0103. Aceste tehnologii detecteaz\u0103 \u201eanomalii\u201d \u00een comportamentul unui sistem compromis, \u00eentrerup\u00e2nd atacul \u00eenainte s\u0103 se desf\u0103\u015foare \u015fi f\u0103c\u00e2nd copii de siguran\u0163\u0103 pentru a putea restaura date eventual compromise.<\/p>\n<p>\nTotu\u015fi, trebuie amintit c\u0103 cea mai bun\u0103 ap\u0103rare \u00eempotriva ransomware r\u0103m\u00e2ne crearea de copii de siguran\u0163\u0103 \u2013 a\u015fa \u2013numitele backupuri. Pe l\u00e2ng\u0103 investi\u0163iile \u00een solu\u0163ii de securitate, companiile care de\u0163in date de importan\u0163\u0103 strategic\u0103 pentru buna func\u0163ionare a opera\u0163iunilor, dar \u015fi informa\u0163ii ale unor poten\u0163iali clien\u0163i sau parteneri au obliga\u0163ia de a p\u0103stra offline copii redundante ale acestor date \u00een eventualitatea unui atac de tip ransomware.<\/p>\n<p>\nDac\u0103 p\u00e2n\u0103 \u00een 2018 aceast\u0103 obliga\u0163ie era privit\u0103 mai mult ca o datorie moral\u0103 fa\u0163\u0103 de business \u015fi profitabilitate, legi noi precum regulamentul pentru protec\u0163ia datelor cu caracter personal (GDPR) fac din aceast\u0103 cerin\u0163\u0103 o obliga\u0163ie legal\u0103 pentru conformitate.<br \/>\nDe \u0163inut minte e \u015fi c\u0103 cele dou\u0103 forme de ransomware se instalau f\u0103r\u0103 interven\u0163ia utilizatorului, trebuia doar ca terminalul s\u0103 fie conectat la internet \u015fi s\u0103 nu aib\u0103 sistemul de operare actualizat la zi, ceea ce arat\u0103, a c\u00e2ta oar\u0103, c\u00e2t de important e s\u0103 folosim cele mai noi versiuni ale tuturor programelor \u015fi aplica\u0163iilor folosite.<\/p>\n<p>\nDup\u0103 WannaCry \u015fi GoldenEye, ransomware-ul a r\u0103mas o amenin\u0163are la fel de agresiv\u0103. De\u015fi nu au mai fost raportate atacuri la o asemenea scar\u0103, a continuat s\u0103 fac\u0103 victime, cu prec\u0103dere \u00een sectorul medical, unde dosarele care con\u0163in istoricul pacien\u0163ilor reprezint\u0103 \u0163inta favorit\u0103 a atacatorilor. Dac\u0103 lu\u0103m \u00een calcul c\u0103 studii recente arat\u0103 c\u0103 multe dintre organiza\u0163ii susceptibile unor bre\u015fe r\u0103m\u00e2n \u00een continuare vulnerabile, putem estima c\u0103 incidente similare ar putea ap\u0103rea pe viitor. Depinde \u00eens\u0103 doar de felul \u00een care se mobilizeaz\u0103 companiile felul \u00een care va evolua amploarea acestor incidente.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u00cen mai \u015fi iunie anul trecut, dou\u0103 atacuri de tip ransomware au f\u0103cut ravagii nemai\u00eent\u00e2lnite, paraliz\u00e2nd opera\u0163iunile mai multor companii globale, printre care furnizori de energie \u015fi companii de utilit\u0103\u0163i. <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[529],"tags":[7734,13416,363,6577,8039,37437,15103,201,342,7283,150,8887,7978,17927,10652,10338,87,9781,219,19591],"class_list":["post-162456","post","type-post","status-publish","format-standard","hentry","category-opinii","tag-analisti","tag-asociere","tag-atacuri","tag-auto","tag-bitdefender","tag-botezatu","tag-catastrofa","tag-companii","tag-continuare","tag-costuri","tag-energie","tag-estimare","tag-furnizori","tag-incidente","tag-informatica","tag-operatiuni","tag-opinie","tag-revenire","tag-securitate","tag-specialist"],"_links":{"self":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/162456","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=162456"}],"version-history":[{"count":0,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/162456\/revisions"}],"wp:attachment":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=162456"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=162456"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=162456"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}