{"id":275014,"date":"2022-07-31T11:29:38","date_gmt":"2022-07-31T09:29:38","guid":{"rendered":"https:\/\/zjarr.tv\/?p=275014"},"modified":"2022-07-31T11:29:38","modified_gmt":"2022-07-31T09:29:38","slug":"sulmi-kibernetik-mbi-195-mln-euro-per-sherbime-digjitale-ish-ministri-i-drejtesise-ngre-dyshime-sisteme-mbrojtese-amatore-duhen-hetime-emergjente","status":"publish","type":"post","link":"https:\/\/zjarr.tv\/en\/sulmi-kibernetik-mbi-195-mln-euro-per-sherbime-digjitale-ish-ministri-i-drejtesise-ngre-dyshime-sisteme-mbrojtese-amatore-duhen-hetime-emergjente\/","title":{"rendered":"Sulmi kibernetik\/ \u201cMbi 195 mln euro p\u00ebr sh\u00ebrbime digjitale\u201d, ish-ministri i Drejt\u00ebsis\u00eb ngre dyshime: Sisteme mbrojt\u00ebse amatore! Duhen hetime emergjente"},"content":{"rendered":"

Sulmi kibernetik i ndodhur disa dit\u00eb m\u00eb par\u00eb, ka sjell\u00eb edhe reagimin e ish-ministrit t\u00eb Drejt\u00ebsis\u00eb, Eduart Halimi. N\u00eb nj\u00eb analiz\u00eb t\u00eb gjat\u00eb n\u00eb Facebook, Halimi ka ngritur dyshime lidhur me sigurin\u00eb e sistemit p\u00ebr k\u00ebto sh\u00ebrbime digjitale. Sipas tij siguria duket se \u00ebsht\u00eb e degraduar nd\u00ebrsa rendit edhe 10 konkluzione p\u00ebr k\u00ebt\u00eb \u00e7\u00ebshtje.<\/p>\n

Statusi i plot\u00eb:<\/strong><\/p>\n

Sulmi kibernetik! 10 konkluzione mbi degradimin e siguris\u00eb dhe pse AUDITI i siguris\u00eb s\u00eb AKSHI \u00ebsht\u00eb IMEDIAT<\/p>\n

Biseduam gjat\u00eb sot paradite me departamentin e CyberSecurity & LegalTech lidhur me deklarat\u00ebn p\u00ebr shtyp t\u00eb AKSHI, para se t\u00eb shkruaja di\u00e7ka p\u00ebr lexuesit! N\u00eb nj\u00eb video t\u00eb regjistuar me regji q\u00ebndrore dhe tekst t\u00eb p\u00ebrgatitur ku drejtuesja e AKSHI-t lexonte n\u00eb prompter tekstin, vet\u00ebm zv.Kryeministrja e em\u00ebruar pak or\u00eb m\u00eb par\u00eb mund t\u00eb jet\u00eb e mir\u00ebkuptuar q\u00eb sigurisht nuk ka lidhje me k\u00ebt\u00eb histori. Megjithat\u00eb t\u00eb pakt\u00ebn pat\u00ebm nj\u00eb deklarat\u00eb pas 2 jav\u00ebsh, e cila zbuloi disa t\u00eb dh\u00ebna q\u00eb na \u00e7ojn\u00eb n\u00eb disa konkluzione t\u00eb thjeshta p\u00ebr t\u00eb qart\u00ebsuar lexuesit n\u00ebse sulmi ka qen\u00eb \u201ci tmersh\u00ebm\u201d apo amator; n\u00ebse ekzistonin sistemet mbrojt\u00ebse apo kan\u00eb r\u00ebn\u00eb nga cil\u00ebsia e dob\u00ebt.<\/p>\n

Ja 10 konkluzionet e thjeshta q\u00eb dalin pas deklarat\u00ebs s\u00eb regjistruar t\u00eb AKSHI-t:<\/p>\n

    \n
  1. Nuk ka dyshim se AKSHI ka paguar m\u00eb shum\u00eb se 195 milion\u00eb euro p\u00ebr sh\u00ebrbimet dixhitale; t\u00eb cilat n\u00eb 80% t\u00eb rasteve ua ka dh\u00ebn\u00eb 4 kompanive shqiptare. P\u00ebrqendrimet n\u00eb nj\u00eb godin\u00eb (data center q\u00ebndror i AKSHI-t) dhe jo t\u00eb shp\u00ebrndara n\u00eb infrastruktur\u00eb dhe gjeografi t\u00eb ndyshme, n\u00ebn nj\u00eb nj\u00ebsi prokurimi kan\u00eb ulur cil\u00ebsin\u00eb, disponibilitetin, sakt\u00ebsin\u00eb e sh\u00ebrbimeve, duke sjell\u00eb si shkak edhe problemet (sistemi i tatimeve jo i integruar nuk ka p\u00ebsuar problem).<\/li>\n<\/ol>\n
      \n
    1. Krijohen dyshime se kemi ngritur nj\u00eb sistem dixhital amator me sisteme mbrojt\u00ebse po aq amatore, me q\u00ebllim jo cil\u00ebsin\u00eb, por kontrollin e plot\u00eb t\u00eb nj\u00eb grupi njer\u00ebzish mbi fondet dhe shumat marramend\u00ebse q\u00eb kan\u00eb shpenzuar.<\/li>\n
    2. Nuk ka qen\u00eb ndonj\u00eb sulm shtet\u00ebror (i organizuar nga shtetet si\u00e7 u tha) apo sulm dDos i komplikuar, si\u00e7 edhe ne mendonim p\u00ebr t\u00eb justifikuar sadopak AKSHI-n, por \u201csulmi\u201d ishte Ransomware & ZeroCleare Wipe Out; pra q\u00eb pal\u00eb t\u00eb treta kan\u00eb pasur akses tek t\u00eb dh\u00ebnat e publikura\u2014e th\u00ebn\u00eb ndryshe akses i paautorizuar. Siguria n\u00eb k\u00ebt\u00eb pik\u00eb \u00ebsht\u00eb kompromentuar r\u00ebnd\u00eb dhe t\u00eb dh\u00ebnat jan\u00eb prekur.<\/li>\n<\/ol>\n
        \n
      1. Pohimi i AKSHI-t p\u00ebr Ransomware & ZeroCleare tregon q\u00eb ka pasur akses, vjedhje t\u00eb dh\u00ebnash, kompromentim apo fshirje (Wipe Out). Kjo \u00ebsht\u00eb edhe m\u00eb e r\u00ebnd\u00eb, sepse t\u00eb gjitha perimetrat dhe procedurat e siguris\u00eb kan\u00eb r\u00ebn\u00eb (n\u00ebse do t\u00eb ekzistonin).<\/li>\n<\/ol>\n
          \n
        1. Kthimi i sh\u00ebrbimeve pas m\u00eb shum\u00eb se nj\u00eb jave v\u00ebrtetoi dyshimet n\u00eb lidhje me procedurat e siguris\u00eb, sh\u00ebrbimet e dublikuara, paralele, t\u00eb dob\u00ebta apo inekzistente. Rikthimi me siguri nga backup-et q\u00eb ka pasur, nuk kan\u00eb qen\u00eb reduntant t\u00eb dublikuara n\u00eb koh\u00eb reale (sh\u00ebrbime t\u00eb dublikuara reduntant n\u00eb vende t\u00eb ndyshme q\u00eb z\u00ebv\u00ebnd\u00ebsojn\u00eb nj\u00ebra-tjetr\u00ebn n\u00eb raste avarish, emergjence apo katastrofe).<\/li>\n
        2. Microsoft nuk duket p\u00ebrgjegj\u00ebs p\u00ebr implementimin e siguris\u00eb. AKSHI ka k\u00ebrkuar ndihm\u00eb\/suport tek Microsoft Dart Support pasi sulmi ka ndodhur. Ky \u00ebsht\u00eb nj\u00eb sh\u00ebrbim suport-i dhe blog-u (Microsoft Detection and Response Team (DART) is a blog series focused on the latest attack methods as well as cybersecurity best practices), i ofruar nga Microsoft n\u00eb raste sulmesh kibernetike. Mungesa e detajeve teknike nga eksperti i nxjerr\u00eb n\u00eb deklarata me shum\u00eb gjasa b\u00ebhet p\u00ebr t\u00eb shfokusuar p\u00ebrgjegj\u00ebsit\u00eb e AKSHI-t n\u00eb sigurin\u00eb e dob\u00ebt dhe inekzistente q\u00eb ofron p\u00ebr sh\u00ebrbimet online publike.<\/li>\n<\/ol>\n
            \n
          1. Sulmi destrukiv \u201cZeroCleare\u201d e ka origjin\u00ebn n\u00eb kompani energjie n\u00eb Lindjen e Mesme dhe bazohet n\u00eb nj\u00eb lloj \u201cmalware\u201d (virus) q\u00eb merr akses t\u00eb paautorizuar n\u00eb sisteme duke shfryt\u00ebzuar dob\u00ebsit\u00eb e siguris\u00eb dhe procedurat e sistemeve.<\/li>\n
          2. Aksesi i paautorizuar n\u00eb sisteme ka ndodhur pas shp\u00ebrndarjes s\u00eb malware \u201cZeroCleare\u201d n\u00eb infrastruktur\u00ebn e AKSHI-t, dhe si pasoj\u00eb e pasiguris\u00eb s\u00eb sistemeve dhe t\u00eb mos p\u00ebrdit\u00ebsimit (updates ose security patchs), pun\u00ebs s\u00eb dob\u00ebt n\u00eb mir\u00ebmbatjen e parametrave t\u00eb siguris\u00eb, shkeljen e procedurave t\u00eb siguris\u00eb p\u00ebr vendosjen e USB-s\u00eb, anti-viruset q\u00eb p\u00ebrdoren p\u00ebr email, politika e dob\u00ebt e fjal\u00ebkalimeve etj.<\/li>\n
          3. AKSHI\u2014duke pranuar llojin e sulmit \u201cZeroCleare\u201d\u2014automatikisht ka pranuar nivelin super t\u00eb dob\u00ebt p\u00ebr sigurin\u00eb sepse ky lloj malware \u201cZeroCleare\u201d b\u00ebn pjes\u00eb n\u00eb kategorin\u00eb e malware \u201cTrojan\u201d t\u00eb njohur mbi m\u00eb shum\u00eb se 2 vite. Ky malware \u00ebsht\u00eb analizuar dhe jan\u00eb publikuar analiza nga kompanit\u00eb e specializara si IMB, kaspersky etj. Ky malware \u201cTrojan\u201d nuk b\u00ebn pjes\u00eb n\u00eb kategorin\u00eb e malware-ve (exploit ose vulnerability) \u201c0 day\u201d t\u00eb panjohur apo t\u00eb ri q\u00eb do t\u00eb ishte nj\u00eb sulm i sofistikuar apo i panjohur, si\u00e7 e paraqiti AKSHI n\u00eb komunkim. Ky malware ka mbi 2 vjet q\u00eb njihet shum\u00eb mir\u00eb dhe n\u00ebse oficer\u00ebt e siguris\u00eb t\u00eb AKSHI-t ose personat p\u00ebrgjegj\u00ebs p\u00ebr sigurin\u00eb do t\u00eb kishin p\u00ebrdit\u00ebsuar \u201cupdate\u201d dhe \u201cpatch\u201d e siguris\u00eb tek t\u00eb gjitha sistemet apo t\u00eb p\u00ebrdit\u00ebsonin dhe kujdeseshin q\u00eb anti-viruset t\u00eb ishin t\u00eb p\u00ebrdit\u00ebsuara apo t\u00eb mbronin \u00e7do nj\u00ebsi kompjuterike, kjo nuk do t\u00eb kishte ndodhur.<\/li>\n
          4. \u00cbsht\u00eb emergjent nj\u00eb hetim\/audit i thelluar p\u00ebr sigurin\u00eb p\u00ebr t\u00eb nxjerr\u00eb p\u00ebrgjegj\u00ebsit\u00eb p\u00ebrkat\u00ebse p\u00ebr degradimin e proceseve t\u00eb siguris\u00eb, nga nje malware i vjet\u00ebr 2 vje\u00e7ar\/trojan ZeroCleare; m\u00ebnyra sesi u shp\u00ebrnda n\u00eb rrjetin e AKSHI-t malware ose trojan ZeroCleare; \u00e7far\u00eb vrimash (exploit ose vulnerability) kishte infrastruktura q\u00eb malware \u201cZeroCleare\u201d arriti t\u00eb penetroj\u00eb p\u00ebr t\u00eb kuptuar sakt\u00eb shkall\u00ebn e komplementimit t\u00eb parametrave t\u00eb siguris\u00eb t\u00eb AKSHI dhe \u00e7far\u00eb ka pasur n\u00eb fuqi para incidentit.<\/li>\n<\/ol>\n

            N\u00eb fund, por jo nga r\u00ebnd\u00ebsia, sh\u00ebrbimet e rikthyera jan\u00eb aq te ngadalta saq\u00eb p\u00ebrdoruesve u duhen or\u00eb dhe ngaj\u00ebher\u00eb edhe dit\u00eb p\u00ebr t\u00eb rregjistruar apo p\u00ebrfituar dokumente, dhe n\u00eb fund mos harroni: kemi shpenzuar 195 mln eur p\u00ebr k\u00ebto sh\u00ebrbime!<\/p>\n

            Postimi n\u00eb faqen zyrtare t\u00eb ish-ministrit.<\/p>","protected":false},"excerpt":{"rendered":"

            Sulmi kibernetik i ndodhur disa dit\u00eb m\u00eb par\u00eb, ka sjell\u00eb edhe reagimin e ish-ministrit t\u00eb Drejt\u00ebsis\u00eb, Eduart Halimi. N\u00eb nj\u00eb analiz\u00eb t\u00eb gjat\u00eb n\u00eb Facebook, Halimi ka ngritur dyshime lidhur me sigurin\u00eb e sistemit p\u00ebr k\u00ebto sh\u00ebrbime digjitale. Sipas tij siguria duket se \u00ebsht\u00eb e degraduar nd\u00ebrsa rendit edhe 10 konkluzione p\u00ebr k\u00ebt\u00eb \u00e7\u00ebshtje. Statusi […]<\/p>\n","protected":false},"author":2037,"featured_media":110533,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[241,364,231],"tags":[],"class_list":{"0":"post-275014","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-aktualitet","8":"category-koment-opinion","9":"category-lajme"},"_links":{"self":[{"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/posts\/275014","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/users\/2037"}],"replies":[{"embeddable":true,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/comments?post=275014"}],"version-history":[{"count":0,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/posts\/275014\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/media\/110533"}],"wp:attachment":[{"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/media?parent=275014"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/categories?post=275014"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zjarr.tv\/en\/wp-json\/wp\/v2\/tags?post=275014"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}