{"id":5607,"date":"2020-08-21T08:00:00","date_gmt":"2020-08-21T06:00:00","guid":{"rendered":"http:\/\/deltanet.hu\/?p=5607"},"modified":"2020-08-17T13:14:34","modified_gmt":"2020-08-17T11:14:34","slug":"a-ketfaktoros-azonositas-sem-biztonsagos","status":"publish","type":"post","link":"https:\/\/deltanet.hu\/index.php\/a-ketfaktoros-azonositas-sem-biztonsagos\/","title":{"rendered":"A k\u00e9tfaktoros azonos\u00edt\u00e1s sem  biztons\u00e1gos"},"content":{"rendered":"\n<p>A t\u00e1mad\u00f3k cseles m\u00f3dszerekkel j\u00e1tssz\u00e1k ki a fejlett ellen\u0151rz\u00e9si technik\u00e1kat.<\/p>\n\n\n\n<p>Egy friss kutat\u00e1s szerint a t\u00f6bbfaktoros ellen\u0151rz\u00e9s \u00e9s a felt\u00e9teles hozz\u00e1f\u00e9r\u00e9s terjed\u00e9se ellen\u00e9re is n\u0151 a v\u00e1llalati e-mail fi\u00f3kok elleni sikeres t\u00e1mad\u00e1sok sz\u00e1ma.<\/p>\n\n\n\n<p>Ez\u00e9rt els\u0151sorban az \u00f6r\u00f6kl\u00f6tt e-mail protokollok a ludasak, amelyek nem t\u00e1mogatj\u00e1k a k\u00e9tfaktoros azonos\u00edt\u00e1st.<\/p>\n\n\n\n<p>Ezen k\u00edv\u00fcl persze azok a c\u00e9gek is hib\u00e1sak, amelyek nem haszn\u00e1lj\u00e1k a korszer\u0171 ellen\u0151rz\u00e9si technik\u00e1kat.<\/p>\n\n\n\n<p>A hekkerek bev\u00e1lt technik\u00e1ja a fi\u00f3kok felt\u00f6r\u00e9s\u00e9re az, hogy miut\u00e1n blokkolt\u00e1k a k\u00e9tfaktoros azonos\u00edt\u00e1st, \u00e1tkapcsolnak egy \u00f6r\u00f6kl\u00f6tt alkalmaz\u00e1sra.<\/p>\n\n\n\n<p>Ez a folyamat az\u00e9rt tud megval\u00f3sulni, mert a legt\u00f6bb helyen ilyen alkalmaz\u00e1sokat is tartal\u00e9kolnak arra az esetre, ha a k\u00e9tfaktoros azonos\u00edt\u00e1s haszn\u00e1lata akad\u00e1lyokba \u00fctk\u00f6zne.<\/p>\n\n\n\n<p>A kutat\u00e1st v\u00e9gz\u0151 c\u00e9g olyan sikeres t\u00e1mad\u00e1sokat is dokument\u00e1lt, amelyekben a hekker az \u00e1ltala haszn\u00e1lt alkalmaz\u00e1s nev\u00e9nek elrejt\u00e9s\u00e9vel j\u00e1tszotta ki a biztons\u00e1gi szab\u00e1lyokat.<\/p>\n\n\n\n<p>Az egyik esetben a t\u00e1mad\u00f3 el\u0151sz\u00f6r egy \u00f6r\u00f6kl\u00f6tt alkalmaz\u00e1ssal pr\u00f3b\u00e1lt bejelentkezni, de ez blokkol\u00e1sra ker\u00fclt.<\/p>\n\n\n\n<p>Ezut\u00e1n a kiberb\u0171n\u00f6z\u0151 v\u00e1rt n\u00e9h\u00e1ny napot, majd \u00fajra pr\u00f3b\u00e1lkozott, de ez\u00fattal az applik\u00e1ci\u00f3s inform\u00e1ci\u00f3kat elrejtve, \u00e9s \u00edgy sikeresen hozz\u00e1f\u00e9rt a fi\u00f3khoz.<\/p>\n\n\n\n<p>Ez az eset j\u00f3l p\u00e9ld\u00e1zza, hogy noha a felhaszn\u00e1l\u00f3i fi\u00f3kok elleni t\u00e1mad\u00e1sok z\u00f6me brute force jelleg\u0171, vagyis a teljes kipr\u00f3b\u00e1l\u00e1son alapul, egyes t\u00e1mad\u00f3k kifinomultabb \u00e9s ravaszabb technik\u00e1kat is alkalmaznak, \u00e9rdemes felk\u00e9sz\u00fclni.<\/p>\n\n\n\n<p>Forr\u00e1s: https:\/\/computerworld.hu\/biztonsag\/a-ketfaktoros-azonositas-se m-allitja-meg-a-kiberbunozoket-282785.html<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A t\u00e1mad\u00f3k cseles m\u00f3dszerekkel j\u00e1tssz\u00e1k ki a fejlett ellen\u0151rz\u00e9si technik\u00e1kat. Egy friss kutat\u00e1s szerint a t\u00f6bbfaktoros ellen\u0151rz\u00e9s \u00e9s a felt\u00e9teles hozz\u00e1f\u00e9r\u00e9s terjed\u00e9se ellen\u00e9re is n\u0151<\/p>\n","protected":false},"author":4,"featured_media":5608,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_mi_skip_tracking":false},"categories":[36,35,4,30,37,1,34,33],"tags":[172,50,40,185,186],"_links":{"self":[{"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/posts\/5607"}],"collection":[{"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/comments?post=5607"}],"version-history":[{"count":1,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/posts\/5607\/revisions"}],"predecessor-version":[{"id":5609,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/posts\/5607\/revisions\/5609"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/media\/5608"}],"wp:attachment":[{"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/media?parent=5607"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/categories?post=5607"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/deltanet.hu\/index.php\/wp-json\/wp\/v2\/tags?post=5607"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}