Sidee looga hortagi karaa loogana falceliyaa weerarrada burcadda cinwaannada jabsata?
W.Q: Bashiir Dhoorre
Xigashada Sawirka, Getty Images
Weerarrada lagula wareego akoonno ay leeyihiin hay’ado dowlad iyo dad caan ka ah baraha bulshada sida Youtube, Facebook ama Instagram ayaa soo noqnoqday dhowaanahan. Arrintaan kaliya ma ahan mid Soomaaliya ku koobaan.
Jabsiga baraha bulshada ayaa waxaa ku dhacay sare-u-kac gaaraya 1,000%, 12-kii bil ee la soo dhaafay sida ay sheegtay shabakadda echnewsworld.com.
Sahmin ay sameysay hay’ad lagu magacaabo Identify theft resource center ayay ku ogaatay in 85% dadkii ay wareysteen la jabsaday boggoodii Instagram, halka 25% la jabsaday akoonkoodii Facebook.
Baraha bulshada ee internetka waxa ay ka mid yihiin isgaarsiinta casriga ah ee wax badan ka beddeshay qaabkii ay warbaahintu u shaqeyn jirtay. Sidaas darteed, waa in loola tacaamulaa sidii in ay tahay qeyb warbaahineed oo leh ahmiyad la mid ah midda ay TV-yada iyo idaacadaha kale leeyihiin.
Maqaalkaan waxa aan idinku soo gudbin doonnaa tallaabooyinka ay tahay in la qaado si looga hortago weerarrada noocaan ah (prevention) iyo sida looga facleliyo (response), loogana soo kabsado (recovery), haddii lagugu qaado weerar suurtageliyay in gacantaada laga saaro maamulka akoonkaaga.
Wajiga diyaar-garowga (preparation)
Wajiga koowaad ee diyaargarowga waa midka ugu muhiimsan ee la-dagaallanka kooxaha burcadda internetka. Wajigaan waxaa lagu xaddidaa siyaasadaha la xiriira isticmaalka aaladaha ay hay’addu leedahay. Waa in la qeexaa cidda masuulka ka ah amniga Internetka iyo siyaasadaha ay tahay in ay raacaan shaqalaaha hay’adda ee ku aaddan amniga internetka iyo aaladaha iyo meelaha aysan booqan karin inta ay isticmaalayaan shabakadda hay’adda ama shirkadda.
Waxa uu ka kooban yahay:
Dajinta siyaasado qayaxan: Maamulka sare ee masuulka ka ah sugidda amniga waa in ay dajiyaan siyaasadda isticmaalka (User acceptance policy), siyaasadda furaha sirta ah (Password policy), laguna qasbo shaqaalaha in ay adeegsadaan xisaab-sireed ay adag tahay in la qiyaaso. Dhammaan shaqaalaha waa in ay saxiixaan siyaasaddan.
Xigashada Sawirka, Getty Images
Warbixinada qotada dheer iyo wararka BBC Somali oo toos kuugu imanaaya WhatsApp.
Halkaan kaga soo biir
Dhamaadka xayeysiinta
In la tababaro shaqaalaha, lana baro qaabka looga falceliyo marka uu weerar dhaco iyo cidda ay tahay in ay la xiriiraan haddii ay dareemaan in ay dhibbane u noqdeen weerar dhanka internetka ah. Qodobbadaan oo dhan waa in la qeexo kaddibna lala wadaago dhammaan shaqaalaha, ka hor inta uusan weerarku dhicin.
Tababarkaan waxaa muhiim ah in lagu baro shaqaalaha in ay ka feejignaadaan booqashada link-ada abaabulan (fake) ee la isku soo diro iyo in ay ka taxaddaraan application-ka ay fasax u siinayaan ama ay ku xirayaan akoonkooda sida kuwa saadaaliya sida aad u ekaan doonto muddo kaddib, in aad qof lacag leh noqon doonto iyo inaad carruur badan dhali doonto.
Shaqaalaha waa in lagu tababaraa in ay baaritaan dheeri ah ku sameeyaan apps-ka ay soo degsadaan. Marka aad dowlad u shaqeyso waxa aad u baahan tahay inaad ka shakiso cid kasta oo saaxiibtinnimo kuu soo dirta.
Waajib uga dhig shaqaalaha in ay adeegsadaan (Two step/factor authentication) marka ay isticmalaayaan akoonnada dowladda ama system-ka ay dowladdu leedahay.
Dhisidda koox ka falcelisa marka uu weerar dhaco (Incident response team). Waa koox u carbisan aqoon durugsanna u leh sida looga hortago, loona baaro weerarrada internetka iyo sida burcadda looga saaro shabakadaha ay u dhaceen.
Magacaabidda wakiil dowladda ama hay’adda u qaabilsan la tacaamulka shabakadaha baraha bulshada ee ay hay’addu ama dowladdu isticmaasho (Point of contact).
Xigashada Sawirka, Getty Images
Sidoo kale waa in la sameeyaa liis ay ku qoran yihiin shakhsiyaadka ay tahay in lala xiriiro haddii uu weerar dhaco sida booliska, madaxda sare, shaqaalaha qaabilsan amniga internetka, hayadaha qaabilsan dambiyada ka dhaca internetka iyo sidoo kale hay’adaha caalamiga ah ee arrimaha noocaan oo kale ah qaabilsan.
Wajiga Labaad: Ka falcelinta weerarka (Incident response)
Marka ay shirkaduhu diyaariyaan qaabkii ay uga falcelin lahaayeen weerarrada dhanka internetka ah sida aan ku sheegnay qodobka koowaad ee is diyaarinta, waxaa xiga in la howlgaliyo (activation) qorshaha ka falcelinta weerarrada internetka ee ka mid ah siyaasadaha aan kor ku soo xusnay.
Siyaasadda ka falcelinta ee (Incident response) waxa ay qeexeysaa tallaaboyinka ay tahay in la qaado marka la xaqiijiyo inuu weerar dhacay hay’addana loo dhacay. Tallaabada koowaad waa in la howlgaliyo kooxda ka falcelinta iyo ka hortagga weerarrada (Incident response team) ee aan kor ku soo xusnay.
Kooxda ka hortagga iyo ka falcelintu waxa ay ka jawaabtaa su’aalaha:
Intee nalaga soo galay?
Weerarku siduu u dhacay? Link la soo diray, password qof uu qishay mise si kale?
Yaa wakiil ka ah shirkadda akoonkeeda la jabsaday?
Yaa ay tahay in la wargeliyo?
Weerarku intuu la egyahay?
Sidee Akoonka la dhacay dib loogu soo celin karaa?
Sidee looga hor tagi karaa in uusan mar dambe dhicin weerarkaan oo kale?
Akoonka mala geli karaa mise gebi ahaanba waa lala wareegay?
Password–ka mala beddeli karaa?
Yaa iska leh e-mail-ka iyo lambarka lagu diiwaan galiyay bogga la dhacay?
Jawaabta su’aalahaan waxa ay kooxda qaabilsan ka falcelinta weerarka ka kaalmeyneysaa in ay si fudud u ogaadaan baaxadda khasaaraha, cilladaha keenay weerarka iyo in ay diyaariyaan qaab looga hortago inuu weerar noocaan oo kale ah mar kale dhaco.
Bashiir Dhoorre waa injineer ka falceliya weerarrada. Wuxuu shahaadada heerka labaad ee jaamacadda ka haystaa culuumta Cybersecurity Operations – CISSP certified.
Sidoo kale, waa madaxa shirkadda bixisa adeegyada amniga internetka ee lagu magacaabo Blackowlcyber.
Qoraalkan waa aragtida gaarka ah ee qoraaga, kamana tarjumayo aragtida BBC-da.
