Tài liệu bồi dưỡng kiến thức và kỹ năng công nghệ thông tin cho cán bộ công chức xã khu vực trung du, miền núi và vùng dân tộc – Chuyên đề 3

.

. . BONOlVU

CHUYEN DE III .DAM BAo AN TOAN, AN NINH THONG TIN

•

•

eHO

TAp TAl LIEU GIANG DAY • , DANH eHO LOP DOl DUONG KIEN THUe VA KY NANG eONG NGH~ THONG TIN ' DO, eONG eHUe XA KHU vve MIEN NUl, TRUNG DU

A

" "

N Q I

,

_

VA ~UNGDANToe

(Ba

?

·~ ,j Quyet djnh so:4r-/ IQD-BNV ngiJy 30 thang ; nam 2012 B""N""·

" B""

~;-

~~ __ '..; '.;'~ ~1·

) f) (l--Wong Q Ql IT{l

~

i

Hit Noi - 2012 •

"L LI L l l

ella -'

1. DE MVC 1: Virus may tlnh va cach phong chang.

Sau khi hoan thanh nQi dung nay, ngrrOi Stf dl}ng n~m dU'Q'c:

• Khai ni~m v€ virus may tinh.

• Lich sir phat tri~n cua virus may tinh.

• Cach phan IOl;li virus may tiOO.

• Phuong thuc hOl;lt d<)ng eua virus may tinh.

• Cach phong ch6ng virus may tinh.

• M<)t s6 phftn m€m di~t virus thong d\lng.

1.1. Khai ni~m virus may tlnh.

Virus may tinh (thuang gQi t~t la virus) la nhung chuang trinh hay dOl;ln rna duQ'c thi~t k~ d~ tlJ nhan ban va sao chep chinh no van cac d6i tUQ'Ilg lay nhi€rn khae (file, {, rna cung, USB, may tinh, vv... ).

Tru6c day, virus thuang duQ'c vi~t boi nllung nguai am hi~u v€ I~p trinh mu6n chung to kha nang cua minh nen khi do virus thuCmg co cac hanh d<)hg nhu: Lam cho m<)t chuang trinh hOl;lt d<)ng khong dung, lam hong cac files, xoa dfr li~u, lam hong {, cung ho~c gay ra nhung tro dua kho chiu khac, vv ...

Tuy nhien, nhung virus m6i duQ'c vi€t trong thai gian gftn day khong chi con thlJc hi~n cac tro dua hay SlJ pha hOl;li d6i may tinh cua nl;ln nhan bi lay nhi€m nita, rna da phftn I1U6ng d~n vi~c I~y c~p cae thong tin ca nhan nhl;lY cam (cac rna s6 the tind\lng, ngan hang, m~t khfiu, vv ... ), sir dVng may tirlh bi nhi~m virus d~ quang cao b~t hqp phap, gui thu rac, Ina eira sau cho tin t~c d<)t nh~p chi~m quy€n di€u khi~n ho~c cac hanh d<)ng kllaC nh~m co IQ'i cho nguai phat tall virus.

Tren 90% s6 virus da duQ'c phat hi~n la nh~m van h~ th6ng sir dVng h~ di€u hanh Microsoft Windows bai h~ di€u hanh nay duQ'c su dVng nhi€u nh~t tren th~ gi6i. Do tinh thong dVng cua h~ di€u hanh Microsoft Windows nen cac tin t~c thuang t~p trung hu6ng van chung nhi€u han la cac h~ di€u hanh khac.

1

1.2. Lich sir phat tri~n cua virus may tinh.

Co nhi~u quan di~m khac nhau v~ lich Slr virus may tinh. d day chi neu tom t~t va khai quat nhung di~m chung nh&t v~ lich Slr phat tri~n cua virus may tinh va S1,1' ra dai cua nhfrng virus co fmh huang IOn nh&t d~n nguai Slr dl,mg.

Nam 1986: Xu&t hi~n lo~i virus dftu tien t~i Pakistan ten la Brain, no lay nhi~m tren may tinh thong qua rna m~m tren h~ di~u hanh MS-DOS. Tuy nhien, day khong phai la lo~i virus pha ho~i, tac gia la anh em nha Alvi chi chen ten tu6i va thong tin ca

nhan cua mlnh vao trong rna clla virus.

Nam 1987: Xu&t hi~n virus Stoned do m<)t sinh vien a New Zealand t~o ra. Chi trong 2 nam sau do la nam 1988, 1989, virus Stoned da gay anh huang IOn a kh~p New Zealand va Australia.

Nam 1990: Xu&t hi~n virus Form co ngu6n g6c tu Thl,ly SI va t6i nay vfrn chua ra ai la tac gia. Day cling la m<)t trong nhung lo~i virus nguy hi~m nh&t trong lich Slr

may tinh.

Nam 1991: Xu&t hi~n virus Michelangelo ra dai mu<)n hon Form 1 nam, virus

nay co ngu6n g6c tu New Zealand.

Nam 1992: Xu&t hi~n virus VCL co ngu6n g6c tu My . Tren th1,1'c t~, VCL (Virus Creation Laboratory) la m<)t cong Cl,l v6i giao di~n don gian, cho phep nguai Slr dl,lng

t1,1' t~o ra virus.

Nam 1994·: Xu&t hi~n virus Monkey t~i Canada, virus Monkey la chuong trlnh

dftu tien co kha nang t1,1' gi&u mlnh tru6c S1,1' phat hi~n clla nguai dung.

Nam 1995: Xu&t hi~n virus Concept t~i My, Concept la lo~i virus dftu tien chUng to kha nang xam nh~p duqc vao cac files cua chuong trinh so~n thao van ban Microsoft

Word.

Nam 1999: Xu&t hi~n virus Happy99, day la bi~n th~ virus e-mail dftu tien, nhung khong ra ngu6n g6c. M(lc du da lay Ian nhanh chong t6i hang tri~u may tinh, nhung Happy99 v6i thong di~p "Chilc mung nam m6i 1999" khong gay ra thi~t h~i dang k~ nao. Cling trong nam nay, xu&t hi~n virus Melissa co ngu6n g6c t~i My, lo~i virus nay duqc d(lt thea ten m<)t nu vli cong n6i ti~ng.

Nam 2000: Xu&t hi~n virus Love Letter. IHy la m<)t trong nhung lo~i virus co muc d<) lay Ian khllng khi~p nh&t trong lich si'r cong ngh~. Love Letter hay I Love You co ngu6n g6c tu Philippines. Nhfrng may tinh bi lay nhi~m virus nay se t1,1' gi'ri d~n danh sach b~n co trong e-mail nhung e-mail v6i tieu d~ I Love You, dinh kern thea nhung files word co chua rna d<)c. Khong chi co v~y, lo~i virus nay con pha ho~i may tinh cua n~n nhan. Bon 50 tri~u may tinh tren toim cftu da bi anh huang bai virus Love Letter, thi~t h~i len t6i hang ti USD.

2

Nam 2001: Xu~t hi~n virus Code Redcung khong ro ngu6n g6c phat sinh nhu Happy99, day la 10(;1i sau t\1' dQng phat tan rna khong c~n quan tam t6i vi~c co nguai

dung tac dQng hay khong.

Nam 2003: Xu~t hi~n virus Slammer, la mQt trong nhung 10(;1i virus co t6c dQ Ian truy~n ki l\lc, v6i 75 ngan may tinh bi lay nhi€m chi sau 10 philt. Slammer da lam s~p h~ th6ng may ATM cua ngan hang My va m~ng lu6i 911 t(;1i Seatles (My). Cling trong nam nay da xu~t hi~n virus Sobig nhung khong ro ngu6n g6c xu~t xu. MQt di€m tuong d6ng nua la Sobig lay Ian t6i hang tri~u may tinh chi trong vang vai gia sau khi xu~t hi~n. Nam 2003 cling danh d~u S\1' ra dai virus d~u tien duqc t(;10 ra v6i m\lC dich Iqi nhu~n la virus Fizzer, no lay nlli€m thong qua cac files dinh kern tren e-mail. MQt may tinh sau khi bi nhi€m virus Fizzer co th€ bi tin t~c danh c~p quy~n di~u khi€n va dua vao cac m(;1ng lu6i botnet ho~c su d\lng d€ gui di cac e-mail spam. Ngoai ra,

virus Cabir cling duqc t(;10 ra trong nam nay t~i Philippines, Cabir la lo~i sau di~n tho(;1i d~u tien trong lich SUe

Nam 2004: Xu~t hi~n virus MyDoom, 10(;1i virus nay co ngu6n g6c tir Nga da duqc phat tan qua e-mail Vam(;1ng Kazaa P2P. Cling trong nam nay, virus Sasser da xu~t hi~n t~i My, virus Sasser da danh s~p h~ th6ng In~ng tir Australia di H6ng Kong va Anh qu6c. Nam 2004 cling danh d~u sv ra dai cua virus SDBot nhung chua ro ngu6n g6c xUfrt xu, day 1ft lo~i trojan co kha nang chQc thung dm;rc rnQi tuy€n phong

thu thong thua~g tren may tinh.

Nam 2005: Xu~t hi~n virus HaxDoor, thvc ch~t la mQt 10(;1i rootkit co kha nang che gi~u cac chuang trinh gay h(;1i tru6c m~t nguai su d\lng may tinh. Cling trong nam

nay, virus Sony rootkit, mQt 10(;1i rootkit khac co ngu6n g6c xac thvc (y My va Anh. Hang rna nh(;1c Sony BMG da tich hQ'P 1 10(;1i ph~n m~m tren cac rna cua minh, cho

phep tv dQng cai d~t tren cac may tinh dQc rna cua Sony BMG M~c dil day la dQng thai bao v~ ban quy~n cua Sony BMG, nhung ph~n m~m nay l(;1i t(;10 16 h6ng d€ cac ph~n m€m gay h(;1i khac xam nh~p vao h~ th6ng.

Nam 2007: Xu~t hi~n virus Mebroot, virus nay da danh c~p han 500.000 tai

khoan ngan hallg cung cac thong till thanh toan trlJc tuy€n. Cling trong nam nay da xu~t hi~n virus Storm Worm thvc SlJ gay anh huang khi da phat tan di nhung buc e­ mail ki€u "230 nguai da bi thi~t m(;1ng trong mQt can bao aChau Au".

Nam 2008: Xu~t hi~n virus Conficker, virus nay da nhanh chong phat tan ra hang tri~u may tinh tren ph(;1m vi toan cftu. Day cling la mQt trong nhung 10(;1i virus co t6c dQ lay Ian khung khi€p nh~t trong lich su cong ngh~ may tinh toan c~u.

Nam 2010: Xu~t hi~n virus Stuxnet dfi t6n khong it "gi~y mvc" cua cac hang bao m~t. LO(;1i virus nay co ngu6n g6c tir My va Israel, no thuQc vao hang nguy hi€m rlh~t tir tru6c t6i nay. Hang bao m~t F -Secure cho r~ng, mQt nguai phai m~t han 10 nam

3

nghien ClTU lien tlJC m6i co th~ hoim thanh duQ'c Stuxnet. f)i~u do cho thfry muc d(> phuc tl;lP cua IOl;li virus nay. Virus Stuxnet pha hOl;li cac hOl;lt d(>ng hl;lt nhan cua Iran,

no co kha nang tac d(>ng t6i qua trinh v~n hanh cac ca So' hl;lt nhan tl;li Iran, ep cac may li tam quay at6c d(> khong an toan, khi~n cac may nay co th~ bi hong hoc.

Nam 2011: XUfrt hi~n virus W32.Sality.PE, day la IOl;li virus lay Ian nhi~u nhfrt nam 2011. Ly do khi~n W32.Sality.PE co th~ lay Ian t6i hang tri~u may tinh vi virus nay co kha nang su dt,mg cac giai thu~t di truy~n d~ tlJ d(>ng lai tl;lo, sinh ra cac th~ h~ virus "dai sau" Fl, F2 ... Cang lay nhi~m lau tren may tinh, virus nay cang sinh ra nhi~u bi~n th~ v6i d(> phuc tl;lP cang cao khi~n cho kha nang nh~n dl;lng va boc lap cua cac phfrn m~m di~t virus cang tra nen kho khan.

Ngay nay, v6i kha nang, trinh d(> cao cua cac tin t~c (hacker), virus co th~ xam nh~p b~ng cach be gay cac rao can an toan cua h~ di~u hanh hay xam nh~p vao cac 16 h6ng bao m~t cua cac phfrn m~m, nhfrt la cac chuang trinh thu di~n tu, r6i til do Ian toa kh~p nai thea cac k~t n6i ml;lng hay qua thu di~n tu. Do do, vi~c truy tim ra ngu6n g6c phcit tan virus se cang tra nen kho khan han nhi~u.

Trong tuang lai khong xa virus se bao g6m nhfrng di~m ml;lnh s~n co, tfrn cong b~ng nhi~u cach thuc, nhi~u ki~u khac nhau, k~t hqp v6i cac thu dOl;ln khac cua phfrn m~m gian di~p (spyware), d6ng thai no co th~ tfrn cong vao nhi~u h~ di~u hanh khac nhau chu khong nhfrt thi~t nh~m vao m(>t h~ di~u hanh d(>c nhfrt nhu trong truang hqp cua h~ di~u hanh Microsoft Windows.

1.3. Phan lo~i virus may tinh.

1.3.1. Virus file.

La nhfrng virus lay vao nhfrng files chuang trinh, ph6 bi~n nhfrt la tren h~ di~u hanh Windows nhu cac files co duoi rna r(>ng .com, .exe, .bat, .pif, .sys, vv...Khi chl;ly m(>t file chuang trinh da bi nhi~m virus cling la hIc virus duQ'c kich hOl;lt va ti~p tlJC tim cac files chuang trinh khac trong may tinh d~ lay vao. ThtJc t~ cac IOl;li virus lay file ngay nay cling hfru nhu khong con xUfrt hi~n va lay Ian r(>ng nfra. Khi may tinh bi nhi~m virus lay file, t6t nhfrt nguai su dt,mg nen su dt,mg phfrn m~m di~t virus m6i nhfrt d~ quet toan b(> 6 cling cua minh va lien h~ v6i nha cung cfrp phfrn m~m di~t virus d~

duQ'c tu vfrn, h6 trQ'.

1.3.2. Virus boot.

Ngay nay, hfru nhu khong con thfry virus boot tren cac may tinh, vi virus boot co t6c d(> lay Ian rfrt ch~m va khong con phil hqp v6'i thai dl;li cua internet. Tuy nhien, virus boot v~n la m(>t phfrn trong lich su virus may tinh.

Khi may tinh duQ'c khai d(>ng, mN dOl;ln chuang trinh nha trong 6 ilia khai d(>ng 4

se duqc thlJc thi. f)o~n chuang trinh nay c6 nhi~m V\l n~p vao h~ di€u hanh (Windows, Linux hay Unix, vv...). Sau khi n~p xong h~ di8u hanh, nguai sir d\lng m6i co th~ b~t dfru sir d\lng may tinh. DO(J.n rna n6i tren thuOng duqc d~ 6 vling tren cling cua 6 rna kh6i dQng, va duqc gQi la "boot sector".

Virus boot lit ten gQi danh cho nhung virus lay Ian vao boot sector. Cac virus boot se duqc thi hanh m6i khi may tinh bi nhi~m kh6i dQng, tru&c ca thai di~m h~ di8u hanh duqc n(J.p len.

1.3.3. Virus macro.

La lo~i virus lay vao nhung files van ban (Microsoft Word), files bang tirth (Microsoft Excel) hay cac files trinh di~n (Microsoft PowerPoint) trong bQ Microsoft Office. Macro la ten gQi chung cua nhung do~n rna duqc thi€t k€ d~ b6 sung tinh nang cho cac· files cua Microsoft Office. Nguai sir d\lng c6 th~ cai d~t sfin mQt s6 thao tac vao trong macro, va n16i lfin gQi macro Ia cac phfrn cai sfin Ifrn luqt

duqc thlJc hi~n, giup nguai sir dVng giam bOi duqc cong I~p di I~p I~i nhung thao tac

gi6ng nhau.

Ngay nay, tren thlJc t€ cac Io~i virus macro cling g~n OOu khong con xUfrt hi~n.

1.3.4. Sau may tinh (worm).

Sau may t~nh Ia nlQt chuang triOO may tin11 c6 kha nang tlJ OOan ban, tv tim cach Ian truy8n qua h~ th6ng m~ng (thuOng Ia qua h~ th6ng thu di~n tir). Di~m cfrn luu y 0 day Ia ngoai tac dQng tr\fc ti~p len may bi OOi~m, nhi~m V\l chiOO cua worm Ia pha cac m(J.ng (network) thong tin, lam giam kha nang ho~t dQng ho~c huy ho~i cac m~ng nay. Trong khi virus may tiOO bam vao va tra thanh mQt phfin cua rna may tinh d€ c6 th~ thi hanh thi sau may tiOO Ia mQt chuong triOO dQc l~p khong OOfrt thi~t phai Ia mQt ph~n cua mQt chuong trinh may tiOO khac d~ co th~ lay nhi~m. Sau may tiOO thuOng duqc thi€t k€ d~ khai thac kha nang truy~n thong tin c6 tren nhiing may tiOO c6 cac d~c di€m chung OOu cling h~ di8u hanh ho~c cling ch~y mQt ph~n m~m va duqc n6i m~ng v6i OOau.

Sau may tinh thuang luang thea phfin m8m gian di~p d~ rna cira sau tren cac may tillh bi nhi~m. Cac may tinh bi nhi€m duqc sir dVng boi nhfrng nguai giri thu rac ho~c gia danh dia chi trang web. Cac cira sau cling c6 th~ duqc cac sau may tinh khac khai thac nh~m mvc dich c6 lqi cho tin t~c.

1.4. PhU'«ng thfrc ho~t dQng clla virus may tinh.

1.4.1. Qua cac thi~t bi llfu trfr di dQng.

Tru6c day rna m~m va rna CD chua chuang trirth thuang Ia phuong ti~n hi lqi dVng nhi~u nh~t d~ ph::it tan. Ngay nay khi rna m~m rM it duQ'c su dVng thi phuang 5

L

tiT cac 6 USB, cac 6 ilia cung di d(mg ho~c cac thi€t bi giai

1.4.2. Qua th If di~n tiro

thuc lay nhi€m mly chu y€u tri ky thu~t s6.

Khi rna thu di~n tir (e-mail) dugc sir dl,mg r(>ng rai tren th€ gi6i thi virus chuy~n thong qua thu di~n tir thay cho cac cach lay nhi€m truyen th6ng. hu6ng sang lay nhi€m Khi da lay nhi€m vao may tinh nc,tn nhan, virus co th~ tlJ tim ra danh sach cac dia chi thu di~n tir s~n co trong may tinh va tlJ d(>ng giri di hang loc,tt (mass mail) cho nhfrng dia chi tim th~y. N€u cac chu nhan clla cac may nh~n dugc thu bi nhi€m virus rna khong phat hi~n dugc, ti€p wc d~ lay nhi€m vao may tinh, virus lc,ti ti€p tl,lC tim d€n theo. Chinh vi v~y s6 lugng phat tan co th~ tang theo c~p s6 cac dia chi va giri di ti€p nhan khi€n cho trong m(>t thai gian ng~n hang tri~u may tinh bi lay nhi€m.

Khi cac ph~n mem qmln ly thu di~n tU k€t hgp v6i cae ph~n mem di~t virus co th~ kh~c phl,lc dugc hanh d(>ng tlJ giri nhan ban hang loc,tt d~ phat tan d€n cac dia chi khac trong danh bc,t clla may nc,tn nhan thi nguai phat tan virus chuy~n sang hinh thuc tlJ giri thu phat tan virus b~ng ngu6n dia chi suu t~p dugc tru6c do.

Phuang thuc lay nhi€m qua thu di~n tir bao g6m:

- Lay nhi€m vao cac files dinh kern theo thu di~n tir (attached mail). Khi do nguai dung se khong bi nhi€m virus cho t6i khi file dinh kern bi nhi€m virus dugc kich hoc,tt (do d~c di~m nay cac virus thuang dugc "tra hinh" bai cac tieu de h~p d~n nhu quang cao ban hang gia re, ph~n mem mi€n phi, chuang trinh t~ng qua, vv... ).

trong thu di~n tir. Cac lien k€t - Lay nhi€m do rna m(>t lien k€t

trong thu di~n tir co th~ d~n d€n m(>t trang web dugc cM s~n virus, cach nay thuang khai thac cac 16 h6ng Clla trinh duy~t va h~ dieu hanh. M(>t cach khac, lien k€t d~n t6i vi~c thlJC thi m(>t doc,tn rna, va may tinh co th~ da bi lay nhi€m virus.

1.4.3. Qua m~ng internet.

- Lay nhi€m ngay khi rna d~ xem thu di~n tir: Cach nay vo cung nguy hi~m bai chua c~n kich hoc,tt cac files ho~c rna cac lien k€t, may tinh da co th~ bi lay nhi€m virus. Cach nay cling thuang khai thac cac 16 h6ng bao m~t Clla h~ dieu hanh.

V6i SlJ phat tri~n r(>ng rai clla internet, hi~n nay cac hinh thuc lay nhi€m virus qua mc,tng internet da tra thanh cac phuang thuc chinh cua virus ngay nay. Ui~n hinh la cac hinh thuc lay nhi€m virus va ph~n mem d(>c hc,ti thong qua internet nhu sau:

- Lay nhi€rn thong qua cac files tai li~u, ph~n mem: La cach lay nhi€m c6 di~n,

6

nhung thay th€ cac hinh thuc truyen file theo cach cli (ilia mem, USB, thi€t bi luu trfr di d(>ng) b~ng cach tai tir mc,tng internet, trao d6i, thong qua cac ph~n mem, vv...

- Lly nhi~m khi dang truy c~p cac trang web du<;Yc cai d~t virus (theo cach vo tinh ho~c c6 y), cac trang web c6 th~ c6 chua cac rna d<)c gay lay nhi~m virus va phfrn m~m d<)c h(,ti vao may tinh cua nguai su dVng khi truy c~p vao cac trang web d6.

- Lay nhi~m virus ho~c chi€m quy~n di~u khi~n may tinh thong qua cac 16i bao m~t h~ di~u hanh, ung dVng s~n c6 tren h~ di~u hanh ho~c phfrn m~m cua hang thu ba. Tin t~c c6 th~ l<;yi dVng cac 16i bao m~t cua h~ di~u hanh, phfrn m~m s~n c6 tren h~ di~u hanh (vi d\l chuang trinh nghe nh(,tc Windows media player) ho~c 16i bao m~t cua cac phfrn m~m cua hang thu ba (vi dv chuang trinh dQc file Acrobat reader) d~ lay nhi~m virus ho~c chi€m quy~n ki~m soM may tinh n(,tn nhan khi rna cac files lien k€t v6'i cac phfrn m~m nay.

1.4.4. Bi~n th~ clla virus.

M<)t hinh thuc trong co ch€ ho(,tt d<)ng cua virus la t(,to ra cac bi€n th~ cua chung. Bi€n th~ cua virus la SlJ thay d6i rna ngu6n nh~m cac mvc dich tranh SlJ phM hi~n cua phfrn m~m di~t virus ho~c lam thay d6i hanh d<)ng cua n6.

M<)t s6 lo(,ti virus c6 th~ tv t(,to ra cac bi€n th~ khac nhau gay kh6 khan cho qua trinh phat hi~n va tieu di~t chung. M<)t s6 bi€n th~ khac xu~t hi~n do sau khi virus bi nh~n d(,tng bai cac phfrn m~m di~t virus, chinh tac gia cua virus ho~c cac tin t~c khac

(bi€t du<;yc rna cua chung) da vi€t

l(,ti, nang c~p ho~c cM ti€n chung d~ ti€p

t\lC phM tan.

1.4.5. Khi nang vo hi~u hoa ph§n m~m di~t virus.

M<)t s6 virus c6 kha nang vo hi~u hoa ho~c can thi~p vao h~ di~u hanh lam te li~t

phfrn m~m di~t virus. Sau hanh d<)ng nay chung m6'i ti€n hanh lay nhi~m va ti€p t\lC phat tan. M<)t s6 khac lay nhi~m chinh VilO phfrn m~m di~t virus (tuy kh6 khan han) ho~c ngan can SlJ c~p nh~t cua cac phfrn m~m di~t virus. K~ ca cai l(,ti h~ di~u hanh va cai l(,ti phfrn m~m di~t virus.

Cac cach thuc nay khong qua kh6 n€u nhu chung n~m r5 du<;yc co ch€ ho(,tt d<)ng cua cac phfrn m~m di~t virus va du<;yc lay nhi~m ho~c phM tan tru6'c khi h~ th6ng khai dong cac phfrn m~m nay. Chung cling c6 th~ sua d6i file host cua h~ di~u hanh Windows d~ nguai Slr d\lng khong th~ truy c~p vao cac website va phfrn m~m di~t virus khong th~ lien l(,tc v6'i may chu virus cua minh d~ c~p nh~t.

1.5. each phong chang virus.

Khong th~ kh~ng dinh ch~c ch~n la bao v~ du<;yc may tinh an toim 100% tru6'c nhfrng hi~m ho(,t virus va cac rna d<)c, nhung nguai su d\lng c6 th~ h(,tn ch€ d€n muc t6i

da va c6 cac bi~n phap bao v~ dfr li~u cua minh.

7

1.5.1. Cach nh~n bi~t cO' ban.

- May tinh ch?y ch~m hon so v&i trn&c day, troy xUfrt du li~u ch~m, khong cho cai

d~t, gO' b6 ph~n m~m, khong' rna duqc cua s6 task manager (Ctrl + Alt + Delete), vv...

- Cac trang web quang cao ho~c trang web I? tll dQng hi~n ra (pop up), man hinh

desktop bi thay d6i giao di~n (thuang chuy€n sang mau den).

- Duy~t web ch~m, nQi dung cac trang web hi€n thi tren trinh duy~t ch~m. - Cac files I? tv dQng sinh ra khi rna 6 d'ia USB (autorun.inf, new folder.exe ...).

XUfrt hi~n file co ph~n rna r9ng .exe co ten trung v&i ten cac thu m\lc.

- Goc phai man hinh co mQt bi€u

tuqng nh6 cung v&i thong bao: " your computer is infected "hay" virus alert ", g~n gi6ng v&i khuy~n cao b~t firewall ho~c yeu c~u thvc hi~n cai d~t firewall, ...

- Virus co the gia danh mQt ph~n m~m di~t virus nao do, chuang trinh nay co giao di~n g~n tuang tv v&i ph~n m~m di~t virus va yeu c~u giri thong tin d€ dang kY su d\lng ph~n m~m.

- Dua ra khuy~n cao nlay tinh da bi nhi~m virus, dua ra duang lien k~t (link) huang dftn nguai sir d\lng truy c~p d~n trang web do d~ di~t duqc lo?i virus nay (thlJc chfit la trang web gia rn?o chua virus ho~c rna dQc).

- Khi go tim mQt dia chi tren trinh duy~t web va chQn nut "enter" d~ b~t tim ki~m

thi trang tim ki€m thuOng dung bi thay bai mQt trang tim ki€m I?

- Nguai sir. d\lng tim thfry nhung ten dia chi I? trong danh sach "favorites" cua

trinh duy~t web m~c du ngub'i sir d\lng chua h€ d~t van trong m\lc nay.

- MQt cong C\l tim ki~m (search toolbar) hay cong C\l tren trinh duy~t (browser toolbar) xufrt hi~n m~c dli nguai Slr d\lng khong ra I~nh d€ cai d~t no va khong th€ xoa chung ho~c chung xufrt hi~n tra l?i sau khi xoa.

- Go cac dia chi quen bi~t van trinh duy~t Ina chi nh~n duqc trang tr6ng kh6ng

hay bi bao 16i "404 Page cannot be found". d thai diem rna nguai sir d\lng khong lam gi v6i m(;lng Ina vftn thfry den gui/nh~n chOp chOp sang tren modem hay "board band modem" gi6ng nhu la khi dang tai InQt ph~n tUQ'ng "network/nlodem" nh<1p nhay nhanh khi rna nguai n1€m v€ may hay la cac bi€u su d\lng khong h€ n6i may tinh van m~ng.

- Ngoai fa, co nhi€u virus ch~y An cling v6i h~ th6ng rna khong co dfru hi~u d~c bi~t hay bfit thuOng nen nguai sir d\lng rfit kh6 d€ nh~n bi~t may tinh co dang bi nhi~m virus hay khong.

1.5.2. Sir dl}.ng ph§n m~m di~t virus.

D€ dam bao an toan cho may tinh, sau khi cai d~t xong h~ di€u hanh nguai Slr d\lng nen chQn mQt ph~n m€m di~t virus t6t d€ cai d~t ngay tru6c khi k~t n6i van h~

8

til nha san xu~t khi co SlJ c6lien quan t6i virus.

th6ng m(;lng, tru6c khi chia se va su dVng thi€t bi luu trfr ngoai (USB, 6 c(mg c~m ngoai, ... ). Sau do su dVng phfrn m~m di~t virus do thuOng xuyen, lau dai cho may Hnh. Phfrn m~m di~t virus t6t phai dap (rng duqc dfry du cac tieu chi: La phfrn m~m co ban quy~n, c~p nh~t phien ban m6i thuOng xuyen d€ co kha nang nh~n bi€t nhi~u IO(;li virus m6i, co h6 trq kg thu~t trlJc ti€p

. ~

11~11Io·i1 • .

I

I

1 W32.Sality.PE 2 W32.AutoRunUSB. Wonn ... j W32.Vetor.PE 4 W32.StuxnetQKYTrojan 5 W32.StarterYY.Trojan 6 W3 2.Kawln.Tt"ojan 7 W32.FakeUserinitIconF.Fam.Worm 8 X971vLXFSic 9 W32.SecretCNC.Heut 10 W32.SalDropFamA.Woml 11 W32 .InjectAdwaredDwnMainATt"ojan \V32.Tmgrtext.PE 12 13 W32.CmVil11s.Trojan 14 W3 2.SalDropE.Worm 15 W32.SysAntiAWonn

1.5.3. Sir d1}ng tU'irng lira.

Tu

Vi~c st'r dVng tuang lua giup bao v~ may Hnh tru6c virus va cac phfrn m~m dQc h(;li. Khi st'r dVng tUOng It'ra, cac thong tin vao va ra d6i v6i may Hnh duqc ki€m soM mQt cach vo thuc ho~c co chu y. N€u mQt phfrn m~m dQc h(;li da: duqc cai vao may Hnh co hanh dQng k€t n6i ra internet thi tUOng It'ra co th€ canh bao giup nguai st'r dVng IO(;li b6 ho~c vo hi~u hoa chung. TUOng It'ra giup ngan ch~n cac k€t n6i d€n khong mong mu6n d€ giam nguy cO' bi ki€m soM may tinh ngoai y mu6n ho~c cai d~t vao cac chuang trinh dQc h(;li hay virus may Hnh.

St'r dVng tUOng It'ra b~ng phfrn cung n€u nguai su dVng k€t n6i v6i m(;lng internet thong qua mQt modem co ch(rc nang nay. Thong thuang 6 ch€ dQ m~c dinh cua nha truy c~p vao modem d€ san xu~t thi chuc nang tuang lua bi t~t, nguai su dVng co th€

9

Hinh 1: Danh sach virus lay Ian nhiJu nhdt niim 2011 (ngu6n Bkav).

trai phep, do do cfin k€t hgp su d\mg

b~t chuc nang tuemg lua. SU d\mg tucmg lua b~ng phfin Clrng kh6ng phai tuy~t d6i an tofm boi chung thuemg chi ngan ch~n klh n6i d€n tuemg lua phfin cung cung v6i cac phfin m~m tuemg lua.

Su d\mg tuemg lua b~ng phfin m~m: h~ di~u hanh Windows da: dugc tich hgp s~n tinh nang tuemg lua b~ng phfin m~m nh~m bao v~ dfr li~u va may tinh, d~ kich ho~t

tinh nang nay nguai su dVng lam nhu sau:

- Vao Start \ Control Panel \ Windows Firewall

•

Eile

!;dit

:tiew F;l.vorites

Iools

t:!elp

t " l

,.'

/--' Se

IL~.' Folders

Go

~

51

Speech

System

Sounds and Audio Devices

..

j

Taskbar and User Accounts Windows CardSpace Start Menu

Wireless Network SeL"

III

Hinh 2: Tinh nang tuong lim.

- Sau khi chQn xu~t hi~n h<)p tho~i Windows Firewall. Trang the General nguai

su dVng chQn On (recommended) sau do chQn OK.

I I

Your PC IS not protected tum on Windows Firewall

Windows Firewall helps prolecl your computer by prevenling unaulhorized users from gaining access 10 your compuler Ihrough the Internet or a network,

~) Q~Ii~ii~liiiii~~~~~j

This selling blocks all outside sources from connecling 10 Ihis computer. wilh the exception of those selecled on the Exceptions lab,

o Qon'l allow exceplions

Seleellhis when you conneel to public networks in less secure localions, such as airports. You will not be notified when Windows Firewall blocks programs. Selections on Ihe Exceptions tab will be ignored.

o() 011 (nol recommended)

Avoid using this selling. Turning off Windows Firewall may make this computer more vulnerable to viruses and intruders.

What el'e should I know about Windows Firewall?

Hinh 3: B¢t tinh nang Firewall trong Microsoft Windows XP.

10

- -

Ngoai nhfrng cach tren, nguai sil dVng con co th~ sil dVng ph~n m~m tuang lila ngoai d~ cM d~t va bao v~ may tinh truac virus, cac ph~n m~m d('>c h~i, ch6ng spam, w ... Hi~n nay co nhi~u ph§n m~m tuang lila h6 trq cho vi~c nay, g6m ca ban tra phi ho~c mi~n phi.

-~-

.....,...- ~

-

System Status

-

... Stan,jard Mode

.'"

. Statll~,.,

Computer Proteftion

Firewall

., Firewall - 011

Domains

./ Web Shield - on

..I Pl'Ogram Guard .. 011

..I Anli·Keyloggel' - on

Autoruns

t

'.*. Homep.aQe~

Updates

i2 t:J ~ Programs '""" ~ :..~ Anti-Keylogger

Support center Discussion fOfum u ::.r:!:CU1 It....· ~Itjdes • .. :"Jbmit .a SUSRtlct file

Hosts file

~

'Version:

5.0.0,1097

:ct History <$ Options

license:

Emsisoft I\ews

E[~..!i!.QiljQn

IU13311

Hinh 4: Ph6n mJm Online Armor Free Firewall.

z:'ZoneAlann

,:

"

~~-!2.~ .

(') You are protected. No action is required•

lore4.IJ'"rr IS '".on.1ng "31"'.1 10 protect you.

~ Overview .. MdM. ,-.

Additional Services

Firewa.ll gooo hdd

_

ID F-1'e~:!1 G:1 PfcgraM CcrJl< f) An:1 ~h"h O~$&;"'''''i'

Idt)n tty Pr(tt~ttion f<\on> ways 10 poolect y«r iderUy

Anu-v,rus/Anti-spY1"'are

.s.ccu rc On.ioe: B.5c bUD P",11'o:I yt>.r d",c..tnfft. pfw.o. and "","".

lesrn~n9 Centef illl Lelm el><>.t 1~'$lotesi

ttrool.

Browser lock

e Help

Hinh 5: Ph6n mJm ZoneAlarm Free Firewall.

11

­

Applicalion$

Manage the applications that are allowed to access the network.

Status

- ­

Applications

,

1. P_r_of_ile_s__...)J _

Application .. !::l Generic Host Process for Win32 Services T

!::l LSA Shell (Export Version)

C: \Windows\System32\Lsass. exe

History

ver.5.1.2600.5512

Activity

Advanced settings

,'PC Tools Smart Update

.. !::l Microsoft: Feeds Synchronization T

Upgrade Now

C:\Program Files\Pc Tools Firewall Plus\Update.exe

ver.7.0

v

Arlv;mc"rl <,,~~inn<

~J

o o Hide uninstalled application rules

pctt\Qls

Hinh 6: Phfm m~m PC Tools Firewall Plus.

5J

SUMMARV

View f,ctive Coonections

................... 'rtB View Firewall Events

IfmI ~ Common Tasks

events and alerts triggered by possible attacks on your computer.

View whim applications are currently connecting to the Internet along with the IP, Port, Protocol and Traffic levei of the connection.

I'" i. I

!--~----- ~-

! ' This section allows you to view a record of the ! 1i, ~->-4 i I ···········::1

My Port Sets

Define a New Tru,ted Applic.ltion

~

Advanced

Allows you to group individual ports into named 'sets' whid) can be used when managing Network Security Policy.

This shortcut represents a convenient way to create an automatic 'Allow' rule for applications that you trust.

Define" New Blocked Applkat ion

My Network Zon~~

This shortcut represents a convenient way to create an automatic 'Deny' rule for applications ti,at you do not trust.

A network can be represented as a zone to whim an access can be granted or denied by speaf'{ing it in filtering rules.

My Blocked Network Zones

Stealth Port~ Wizard

This 'Nizard allows you to create a set of global firewall rules, whim will affect your computer's visibility ITom other computers.

Aliows you to define which addresses or network zones your computer should not communicate "'iith. For example" spyware sites.

and running.

Hinh 7: Phdn m~m Comodo Firewall Personal

12

. . Outpost Security Suite Pro (service Model - my sellings.dg

[J@rg)

- -

.t.. ~: Network ActiYity (J)

, AlI.......d

My Shorlculs

} lrn~r(JYcnt"t live ~... l<.lts

"III..lco.... 10 O""pod S.." ..r~.l' Suit.. P,O!

Thank .\

f'lllducl (iocullf¢nl"l\('h ;:, l'C.tt my Scc~Jlity ~< P~t;lec( ~jlY f U~~f'!d :;, ~p.cUfity

r ir::­

~Ia fenghy ""nlig(ltlltiOg "~r'iSl all kinds 01 .attach

A~rlltl.:u! N~Wi's

A!Jfll1ltrn UII)fl

", Blocked Piug-lns ~ Active Content tJ Ad. ~ AnlhM"I..",e ~Aoli-Spam " Mlad< Detection 'i'- Content ~ DMS(,ache

>.> 'nlen'iew wilh an anonymous ......ker Agnilum h.. be." doing a "tie '.,,,,,00 "to the activiti« of the web'o oe.cal..d "bl""k hal<" 1h1lCkert and the ike). and have 'P~.'" ",ah a J... c!, 'hern hOf" in Sl P"tertblllg on condition of .anorl}lrril.y. Thi~ ~ticle and inte.rvi~.1 tz 43 compo~~e ba!td 00 inpo( hem ttvet'af indJvidu~~.

.c Unregistered "

Regi'll"tioh O'"ll" Regislered 10: hia' period days lell; ~J

---'--~ ---_.~~--.----. .

Rules'A'iz"'d

Hinh 8: Ph{m mJm Outpost Pro Security Suite.

1.5.4. C~p nb~t cac ban sfra lai clla b~ di~u bimb.

H~ di€u himh Windows (chi~m da s6 ngmJi sir dl,mg) thuOng bi phc h~i. NgmJi sir dl,mg luon cfin c~p nh~t cac ban va l6i cua h~ di€u hanh Windows thong qua trang web Microsoft update (cho vi~c nang dp t~t ca cac phfin m€m cua hang Microsoft) ho~c Windows update (chi c~p nh~t rieng cho h~ di€u hanh Windows). Cach t6t nh~t hay d~t ch~ d(> nang c~p (sua chua) tlJ d(>ng (Automatic updates) cua h~ di€u hanh Windows. Tinh nang nay chi h6 trQ' d6i v6i cac h~ di€u hanh Windows co ban quy€n hqp phap.

1.5.5. V~n dl}ng kinb ngbi~m sfr dl}ng may Hnb.

Cho dli su dl,mg phfin m€m di~t virus va cac phuong thuc neu tren thi may tinh vfrn co kha nang bi lay nhi~m virus va cac phfin m€m d(>c h~i boi mfru virus m6i n~u chua duQ'c c~p nh~t kip thai phfin m€m di~t virus. Nguai su dl,mg may tinh cfin sir dl,mg tri~t d~ cac chfrc nang, ung dl,mg s~n co trong h~ di€u hanh va cac kinh nghi~m khac d~ bao v~ cho h~ di€u hanh va du li~u cua minh nhu sau:

- Phat hi~n SlJ ho~t d(>ng khac thuang cua may tinh: Da phfin nguai su dl,mg may tinh khong co thoi quen cai d~t, gO' b6 phfin rn€m ho~c thuang xuyen lam h~ di€u hanh thay d6i, co nghla la sir dl,mg may tinh 6n dinh. Nguai sir dl,mg co th~ nh~n bi~t duQ'c

13

slJ thay d6i khae thu<'mg eua may tinh. MQi ho~t d(>ng khae thu<'mg mlY n€u khong phai do ph§n eung gay ra thi dn nghi nga SlJ xuftt hi~n eua virus. Ngay khi co nghi nga, e§n ki~m tra b~ng each e~p nh~t dfr li~u m6i nhftt eho ph§n m~m di~t virus ho~e thu su d\mg m(>t ph§n m~m di~t virus khae d~ quet toan b(> h~ th6ng.

- Ki~m soM cae ung dVng dang ho~t d(>ng: Nguai su dVng ki~m soM SlJ ho~t d(>ng eua cae ph§n m~m trong h~ th6ng thong qua task manager b~ng eaeh ftn t6 hqp phim Ctrl + Alt + Delete ho~e cae ph§n m~m eua hang thu ba d~ bi€t m(>t phien lam vi~e binh thu<'mg h~ th6ng thu<'mg n~p cae ung dVng nao, chung chi€m dung IUQllg b(> nh6 bao nhieu, ehi€m CPU bao nhieu, ten file ho~t d(>ng Ia gi, vv...ngay khi co di~u bftt thuang eua h~ th6ng (du chua co bi~u hi~n eua SlJ nhi€m virus) cling co th~ co SlJ nghi nga va co hanh d(>ng phong ngira hqp IY. Tuy nhien each nay doi hoi m(>t SlJ am hi~u

nhftt dinh eua nguai su dVng.

- Lo~i bo m(>t s6 tinh nang cua h~ di~u hanh co th~ tl;lo di~u ki~n eho SlJ lay nhi€m virus. Theo m~e dinh eua h~ di~u hanh Windows thu<'mg cho phep cae tinh nang autorun giup nguai su dVng thu~n ti~n eho vi~e tlJ d(>ng cai d~t ph§n m~m khi dua rna CD ho~e 6 USB vao h~ th6ng. Chinh cae tinh nang nay dUQ'e· m(>t s6 lo~i virus IQ'i dVng d~ lay nhi€m ngay khi vira eim 6 USB ho~e dua rna CD ph§n m~m vao h~ th6ng (m(>t vai lo~i virus Ian truy~n rftt nhanh trong thai gian g§n day thong qua cae 6 USB b~ng each t~o cae file autorun.ini tren 6 USB d~ tlJ eh~y cae virus ngay khi eim 6 USB vao may ~inh). C§n Io~i bo tinh nang nay b~ng cae ph§n m~m eua hang thu ba ho~e sua d6i trong h~ th6ng.

Ph§n m~m di~t virus Ia ph§n m~m co tinh nang phM hi~n, lo~i bo cae virus, khie phve (m(>t ph§n ho~e hoan toan) h~u qua do virus gay ra va co kha nang e~p nh~t d~ nh~n bi€t cae Io~i virus trong tuong lai. Ph§n m~m di~t virus thuang ho~t d(>ng tren cae nguyen Iy ea ban nhu sau:

- Ki~m tra, quet cae t~p tin d~ phat hi~n cae virus da bi€t

trong ea So' dfr li~u,

.­

nh~n d~ng mfru virus eua chung.

- PhM hi~n cae hanh d(>ng eua ph§n m~m gi6ng nhu cae hanh d(>ng eua virus

ho~e cae ph§n m~m d(>e h~i.

- Sau khi phM hi~n thfty virus se dua ra cae thong bao, khuy€n eao hanh d(>ng

thve hi~n nhu: Khoa virus, each ly virus, xoa bo virus, sao luu files dV phong, ...

Tren thi tru<'mg hi~n co rftt nhi~u ph§n m~m di~t virus bao g6m ban thuong m~i

(co thu phi) va ban mi€n phi ho~e di~t virus trlJe tuy€n (khi k€t n6i internet).

14

1.6. GiOi thi~u mQt sa ph§n m~m di~t virus.

- Ph~n m~m trong nu6c: Bkav, CMC.

-

Hinh 9: Phdn mJm di¢f virus BKAV

au - \Ifm~

rolin bomiylinl, r~ do a, ok'lj c6 ho~ m!y wn

Cile thlr rnut ell'!'" t.ili lie-u Q.uit 'r':.;,i, the( ff( I: """11 :i,leu 61.' ~~,

66 nil". ~J6t fi::{&C\:('''i,:rr-Qtlrhd~'I~ aUy "{1 n'o)1' ,'r,r,

enc thu'rnlJe oJ,mr'llv,;,'tC b,111 clli,} ti:C c6:> tnt m!v d:n'l ~lJ~C c~b ~

I~

TiN m:!il VLtIiG. QI1lT T1IW tulU cAu

Chan m&t (",Tuell 11111' mue de qlli!t' (I olJ":cll'8( "">;'J tl,J' !IIJJ;.u~· ~'J,~I, VhJj

-,..

(,ltl Hlnll

LJ

,

;'1

:.

HIE.., x6.~ TAC 'ILl' I}!\r UCH OtrET Ii Wothlmillnl ./ l'. i_ ht e4 elle 0 db

mOGfCiP

? •

Hinh 10: Phdn mJm di¢f virus CMC

- Ph~n m~m nu6c ngmli: Kaspersky, AVO, Norton, Avira, McAfee, Avast,

Microsoft Security Essentials, Bitdefender, ...

15

Internet Security;:;:;

'N~ w~rk ~'¥d. Veil ;"l{,ly T:

,~..........

__ v

~./

\

Internet Security ==-­ (4~·."')

.~ . '

~=

~

""_"-f~'

__

•

' ' - '_ ' " . . . .""

. . . .A_~./'·

__

McAfee Internet Security 2(U2

SECU RlTY 2012

'­

frJl TOlAl t. f· Bit~der

2 ~ :; ~ r.

Hinh 11: Ph6n mJm di¢f virus nuac ngoai.

- Trang web quet VIruS

tqrc

tuy€n: Kaspersky.com, Virustota1.com,

Bitdefender.com, Cmcinfosec.com

16

2. DE MVC 2: Bao v~ dfr li~u may tlnh.

-

• Cach bao v~ dfr li~u h~ th6ng.

• Cach bao v~ dfr li~u dff t~o ra.

Sau khi hoim thanh nQi dung nay, nguOi siT dl}.ng n~m duQ'c:

2.1. Bao v~ dfr li~u h~ th8ng.

Ten dang nh~p va m~t khAu thuOng la m<)t xau, chu6i, lo~t cac ki tl! rna h~ th6ng may tinh yeu d.u nguai su d\mg nh~p vao b~ng ban phim tru6c khi c6 th~ ti~p tl,lC truy c~p cac tai nguyen tren may tinh. M<)t m~t khAu m~nh la m~t khAu c6 til 8 kY tl! tra len, bao g6m ca chii' cai, chfr s6 va kY tl! d~c bi~t (@,#,$,%, vv...).

Vi~c d~t m~t khAu se tranh duqc vi~c truy c~p cac tai nguyen, dfr li~u trai phep,

nhfit la khi phan quy~n d~ su dl,lng chung cung m<)t may tinh.

2.1.1. Ten dang nh~p va m~t kh§u (userID va password).

Thong thuOng, h~ di~u hanh duqc cM d~t tren 6 ilia C, n~u d~ dfr li~u tren 6 cM d~t

h~ di~u hanh thi.khi cai d~t l£;li h~ di~u hanh m6i, dfrli~u tren phan viIng d6 se bj mfit.

Sau khi cai d~t h~ di~u hanh, dfr li~u h~ th6ng se n~m trong phan vung cai d~t, Cl,l th~ la thu ml,lc WINDOWS, nguai su dl,lng khong nen x6a, d6i ten thu ml,lc, di chuy~n dfr li~u tren thu ml,lC nay vi c6 th~ lam anh huang khong t6t d~n h~ di~u hanh.

Ap dl,lng cac bi~n phap sao luu dfr li~u quan tn,mg tren 6 ilia h~ th6ng sang m<)t

phan vung 6 ilia khac ho~c thi~t bj luu trfr ngoai d~ khoi phl,lc khi c6 Sl! c6 xay ra.

~dit

Eile

:1iew

F;;vorites

lools

tlelp

,

,

,."

Back •

l : ; ' , se",ch ~:; Folders

Go

,__ .. '·.A.·A_A~._._._.·.. _._

... __ ,_~. "_

x

I~

Desktop

'0 PDFToWordConverter

1_. e My Documents

l~ Program Files

My Computer • ~ 3'1'> Floppy (A:) ,'';' XPSP2 (C:)

ffi iC) Documents and Settings fP f,5 eOffice (:;i dIntel

ICJ PDFToWordConverter

Program Files

'~ UniKey '0 WINDOWS

it.: ± U UniKey I±) I.::::J WINDOWS

~.

)

( I

'"

Hinh 12: Thu m1:lC WINDOWS chua files h~ th6ng.

2.1.2. Quan ly dfr li~u 8 h~ th8ng.

17

2.2. Bao v~ dfr li~u t~o rae

D€ dam bao an toan truac sv lay nhi€rn virus may tinh va cac ph~n rn~m dQc h~i khac thi nguai sir dVng nen tv bao v~ sv toan vc:n du li~u cua rninh truac khi du li~u bi hu hong do virus (ho~c ngay ca cac nguy cO' ti~m tang khac nhu SlJ hu hong cua cac thi€t bi luu trft dfr li~u may tinh) theo mQt s6 cach sau:

2.2.1. Sao IIfU dfr li~u tbeo djnb ky.

La bi~n phap dllng d~n nhftt hi~n nay d€ bao v~ du li~u, vi~c sao lUll dfr li~u se lam

giam t6n thftt khi h~ th6ng may tinh g~p trvc tr~c nhu 16i h~ di~u hanh, hong 6rna c(mg, . ..

Nhung dfr li~u c~n sao luu thong thuang la tai li~u noi chung, cac ling dVng t~o va duy tri nhfrng t~p tin dfr li~u nhu e-mail, dia chi ua thich cua trinh duy~t, lich, s6 dia chi lien l~c, hinh anh, files video, files nh~c, ...

Nguai sir dVng co th€

thuOng xuyen sao lUll dfr li~u d€n

ffiQt nO'i an toan nhu: Cac thi€t bi nha rna r9ng (6 USB, 6 cung di d9ng, ghi ra rna quang, VV...), hinh thuc th\fc hi~n theo chu ky nguai sir dVng d~t ra tuy theo muc dQ c~p nh~t, thay nay co th€ d6i cua dfr li~u. Ngoai ra nguai sir dVng co th€ sir dVng ti~n ich s~n co cua H~ di€u hanh (system restore) ho~c sir dVng cac ph~n rn~ffi cua hang khac nhu Norton ghost d€ t~o ra cac ban sao luu h~ th6ng, cac ph~n m€m t~o anh 6 rna ho~c phan vung khac.

Truac khi sao luu nguai sir dVng nen d~t ten du li~u theo ngay, theo nQi dung

cong vi~c d€ vi~c sao lUll va khoi phvc sau nay dugc thu~n IQ'i.

2.2.2. Bao v~ dfr li~u da sao IIfU.

Sau khi da sao luu dfr li~u thanh cong, nguai sir dVng cfin bao v~ du li~u da sao luu do. N€u sao luu dfr li~u ra thi€t bi luu trfr ngoai nhu USB va 6 cung di dOng thi c~n sir dVng phfin m€m di~t virus quet thi€t bi luu trfr truac va sau khi sao lUll.

Thi€t hi lUll trfr, rna chuang trinh da dugc sao luu c~n duQ'c cftt gifr a nO'i an toan,

tranh vi~c sao chep, truy c~p dfr li~ll ngoai mong mu6n.

2.2.3. Ph\lc hBi dfr li~u da sao IIfu.

Tuy tung bi~n phap nguai sir dVng da sir d\lng d€ sao luu, nguai sir d\lng co th€

phvc h6i l~i dfr li~u d€n thai di€m da sao lUll.

D6i v6'i dfr li~u da sao chep ra thi€t bi luu trfr ngoai, nguai sir dVng sao chep

(copy) tra l~i vao 6 rna cung.

Ngoai ra, nguai sir d\lng co th€

sir dVng tinh nang phvc h6i du li~u (system restore) cua h~ di€u hanh ho~c sir dVng ph~n m€m cua hang khac d€ kh6i phvc l~i dfr li~u da sao luu.

18

3. DE Ml)C 3: An ninh m~ng.

-

Sau khi hoim thanh nQi dung nay, ngum sir d\lng nim dm!c:

• Cac khai ni~m ve an ninh m~mg.

• Cac m6i nguy hi~m t~n cong may tinh.

• Cac hinh thuc t~n cong tren ml;lng may tinh.

3.1. Khai ni~m v~ An ninh m~ng.

Trong lInh vgc an ninh ml;lng, khu VlJC an ninh ml;lng bao g6m cac quy dinh va chinh sach duqc thong qua b6'i nguai quim tri ml;lng d~ ngan ch~n va thea d5i truy c~p trai phep, su d\mg sai, sua d6i, ho~c tu ch6i cac ml;lng may tinh va truy c~p tai nguyen ml;lng. An ninh ml;lng lien quan d~n vi~c uy quyen truy c~p dO' li~u trong mQt ml;lng, duqc ki~m soat b6'i nguai quim tri ml;lng. Nguai su d\mg chQn ho~c duqc chi dinh mQt tai khoim va m~t khfru ho~c thong tin xac thgc khac cho phep truy c~p vao thong tin va

cac chuong trinh thuQc thfrm quyen cua minh.

An ninh ml;lng la bao v~ ml;lng tru6c vi~c bi danh c~p va su d\mg sai m\lC dich thong tin tren ml;lng internet. N~u khong co an ninh ml;lng duqc tri~n khai, h~ th6ng ml;lng se g~p nhieu rui ro tru6c sg xam nh~p trai phep, sg ngung tr~ hOl;lt dQng cua

ml;lng, SlJ ghin dOl;ln dich V\l, sg khong tuan thu quy dinh va th~m chi la cac hanh dQng

-

phl;lm phap. An ninh ml;lng khong chi dlJa vao mQt phucmg phap rna su d\lng mQt t~p hqp cac rao can d~ bao v~ h~ th6ng ml;lng thea nhO'ng cach khac nhau. Ngay ca khi mQt giai phap g~p sg c6 thi giai phap khac v~n bao v~ duqc h~ th6ng va dO' li~u tru6c SlJ da dl;lng cua cac IOl;li t~n cong ml;lng.

Trong cac h~ th6ng thong tin, nguai su d\lng phai quan tam nhieu hon ve tinh an ninh, an toan, kha nang bao m~t va tinh s£n sang cua h~ th6ng. SlJ ngung tr~ cua h~ th6ng thong tin co thS gay ra nhO'ng thi~t hl;li vo cling nghiem trQng khi sg ph\l thuQc

vao cac ung d\lng ngay cang tang.

Dang, Nha nu6c va cac BQ, ban, nganh diI co cac van ban th~ hi~n SlJ chu trQng

d6i v6i v~n de an toan thong tin, C\l th~ nhu sau:

- Lu~t Giao dich di~n tu s6 51/2005/QH11 ngay 29/11/2005 cua Qu6c hQi Nu6c

CQng hoa Xii hQi Chu nghla Vi~t Nam.

- Nghi dinh s6 57/2006/ND-CP ngay 09/6/2006 cua Chinh phu ve Thuang ml;li

di~n tu.

19

- Lu~t Cong ngh~ Thong tin s6 67/2006/QHll ngay 29/6/2006 eua Qu6e hQi

Nu6e CQng hoa Xa hQi Chu nghla Vi~t Nam.

- Chi thi s6 03/2007/CT-BBCVT ngay 23/02/2007 eua BQ Buu ehinh Vi~n thong

v~ vi~e tang euOng dam hao an ninh thong tin tren mgng internet.

- Nghi dinh s6 64/2007/NU-CP ngay 10/4/2007 eua Chinh phu v€

(rng d\lng

Cong ngh~ Thong tin trong hogt dQng eua co quan nha nu6e.

- Nghi dinh s6 90/2008/NU-CP ngay 13/8/2008 eua Chinh phil v€ eh6ng thu rae.

- Nghi dinh s6 97/2008/ND-CP ngay 28/8/2008 eua Chinh phu v€ quan ly, eung

efrp, sir d\lng dieh V\l Internet va thong tin di~n tir tren Internet.

- Thong tu s6 07/2008/TT-BTTTT ngay 18/12/2008 eua BQ Thong tin va Truy€n thong huOng d~n mQt s6 nQi dung v~ hogt dQng eung e~p thong tin tren trang thong tin di~n tir ea nhan trong Nghi dinh s6 97/2008/ND-CP ngay 28 thang 08 nam 2008 eua Chinh phil v~ quan ly, eung e~p, sir d\lng dieh V\l Internet va thong tin di~n tir tren Internet.

- Lu~t sira d6i, h6 sung mQt s6 di€u eua Lu~t Hinh S\f, s6 37/2009/QH12 (ATTT s6: cae di€u 224-226h) ngay 19/6/2009 eua Qu6e hQi Nu6e CQng hoa Xa hQi Chu

nghla Vi~t Nam.

- Lu~t Vi~n thong s6 41/2009/QHI2 ngay 23/11/2009 eua Qu6e hQi Nu6e CQng

hoa Xa hQi Chu nghla Vi~t Nam.

- Quy~t dinh s6 63/QU-TTg ngay 13/01/2010 eua Thu tuOng Chinh phu phe

duy~t Quy hogeh phat tri€n an toan thong tin s6 qu6e gia d~n nam 2020.

- Thong tu s6 14/2010/TT-BTTTT ngay 29/06/2010 eua BQ Thong tin va Truy€n thong quy dinh chi ti~t mQt s6 di€u eua Nghi dil1h s6 97/2008/NU-CP ngay 28 thang 08 nam 2008 eua Chinh phu d6i v6i hogt dQng quan ly trang thong tin di~n tir va dieh V\l mgng xa hQi tr\fe tuy~n.

- Thong tu s6 25/201 O/TT-BTrrTT ngay 15/11/2010 eua BQ Thong tin va Truy€n

thong quy dinh vi~e thu th~p, su d\lng, ehia sc, dam haoan toan va bao v~ thong tin ea nhan tren trang thong tin di~n tir ho~e e6ng thong tin di~n tir eua co quan nha nu6e.

- Nghi dinh s6 25/20 11/NU-CP ngay 06/4/2011 eua Chinh phu quy dinh chi ti~t

va huOng d~n thi hanh lTIQt s6 di€u eila Lu~t Vi~n thong.

- Chi thi s6 897/CT-TTg ngay 10/6/2011 eua Thu tu6ng Chinh phu v€ vi~e tang

euOng tri€n khai cae hogt dQng danl bao an toan thong tin s6.

- Cong van s6 2132/BTTTT-VNCERT ngay 18/7/2011 eua BQ Thong tin va

20

thong hu6ng dfrn tri€n khai ap d\mg tai li~u "Hu6ng dfrn mQt s6 bi~n phap ky

Truy€n thu~t cO' ban dam bao an toim thong tin cho c6ng/trang thong tin di~n tU".

-

- Thong tu s6 23/2011/TT-BTTTT ngay 11/8/2011 cua BQ Thong tin va Truy€n thong quy dinh v€ vi~c quan Iy, v~n himh, su d\mg va bao dam an toan thong tin tren M~ng truy€n s6 li~u chuyen dung cua cac cO' quan Dang, Nha nu6c.

- Nghi dinh s6 83/20 I1/ND-CP ngay 20/9/2011 cua Chinh phu quy dinh xu ph~t

vi ph~m hanh chinh trong lInh VlJC vi~n thong.

- Thong tu s6 27/2011/TT-BTTTT ngay 04110/2011 cua BQ Thong tin va Truy€n

thong quy dinh v€ di€u ph6i cae hOc;lt dQng ung cuu SlJ c6 m~ng internet Vi~t Nam.

Ben c~nh cac van ban an toan thong tin dff duqc ban hanh con co cac cO' quan, t6

chuc ho~t dQng trong lInh VlJC dam bao an toan, an ninh thong tin, cv th€ nhu sau:

- Trung tam Ung CtfU khAn cip May tinh Vi~t Nam (Vietnam Computer

+ Duqc thanh I~p thea Quy€t dinh s6 339/2005/QD-TTg ngay 20112/2005 cua Thu tu6ng Chinh phu, Trung tam Ung cuu khAn cclp May tinh Vi~t Nam (Vietnam Computer Emergency Response Team - VNCERT) la dan vi trlJC thuQc BQ Thong thong thlJc hi~n chuc nang di€u ph6i va t6 chuc cac ho~t dQng phan ung

Emergency Response Team - VNCERT)

+ Lien h~: Email: office@vncert.vn; Website: www.vncert.gov.vn

tin va Truy€n nhanh cac SlJ c6 may tinh cho m~ng Internet Vi~t Nam.

- Hi~p hQi An toan thong tin Vi~t Nam (Vietnam Information Security

+ La t6 chuc xff hQi ngh€ nghi~p phi Iqi nhu~n dfru tien ho~t dQng trong lInh VlJC bao m~tthong tin duqc nha nu6c Vi~t Nam cong nh~n. VNISA t~p hqp cac ca nhan, t6 chuc lam cong tac nghien cuu giang d~y, ung dVng va ph

+ Lien h~: Email: infor@vnisa.org.vn; Website: www.vnisa.org.vn

Association - VNISA)

- C\lC Cunh sat phong, chAng tQi ph~m sir d\lng cong ngh~ cao (C50) - BQ

+ Ti€n hanh cac bi~n phap phong ngira, ph

Cong an

tra xu Iy tQi ph~m su dVng cong ngh~ cao, trlJc ti~p ti€n hanh cac bi~n phap phong ngua, ph

+ Lien h~: Di~n thoC;li (tr\Ic han): 069.43160; 06937126; 06937424

- Cong ty an ninh m~ng BKAV - Website: www.hkav.com.vn

3.2. Cac m6i nguy hi~m tin congO may tinh.

3.2.1. Tin t~c (hacker).

Tin t~c (hacker) la nhfrng nguai co triOO dQ Cong ngh~ Thong tin cao dung ki€n thuc, ky nang cua minh de xam nh~p van cac h~ th6ng may tinh, cac may chu trong m<:1ng internet v&i m\lc dich pha hO<:1i, l~y c~p dfr li~u, chi€m quy~n di~u khi~n, vv...

3.2.2. M~ng may tinh rna (botnet).

M<:1ng may tinh rna (botnet) la nhfrng may tinh hi h~t coc va di~u khi~n hai nguai khac thong qua trojan, virus. Nhfrng may tinh nay se chb' chi thi tir mQt nai rlh~t dinh th\Ic hi~n d6ng 10<:1t mQt hanh vi nao do. Bot la cong C\l d~ th\Ic hi~n cac cUQc t~n d€ cong tir ch6i dich v\l (DOSIDDOS). T~n cong tir ch6i dich v\lla hanh dQng rna cac tin t~c lqi d\lng d~c di€m ho~c l6i an toan thong tin cua mQt h~ th6ng dich V\l nhfim lam ngung tr~ ho~c ngan can nguai dung truy nh~p dich V\l do. ThuOng thi t~n cong tir ch6i dich V\l gay cho chuang trinh ho~c h~ th6ng hi d6 va ho~c hi treo, te li~t tirng phftn ho~c toan bQ, bUQC nguai quan tri dich V\l do phai tC;lm ngirng cung c~p dich V\l.

3.2.3. Trojan horse.

Trojan horse la lo~i chuang trinh may tinh thuOng fin rninh du6i dC;lng mQt chuang trinh huu ich va co nhfrng chuc nang rna nguai dung mong mu6n, hay it nh~t chung trong nhu co cac tinh nang nay. MQt cach bi rn~t, no l<:1i ti€n hanh cac thao tac khac nhfim co lqi cho nguai phat tan. Nhung chuc nang rna trojan horse t<:10 ra chi la phftn h€ ngoai nhfim che d~u cho cac thao tac, m\lc dich xftu. Trojan horse cling co tac hC;li tuang t\I nhu virus chi khac la no khong t\I sao chep, nhan han rae Nhu th€, cach Ian truy€n duy nh~t la thong qua cac thu day chuy~n. Chinh nhfrng ke tC;lo ra cac phftn mem nay se sir dVng ky nang l~p trinh cua minh d€ sao luu th~t nhi~u trojan tru&c khi phat tan len mC;lng. Trong th\Ic t€, nhi~u trojan horse chua d\Ing cac phftn m€m gian di~p nh~ln cho phep di€u khi€n may tinh tir xa qua h~ th6ng rnC;lng.

Cach huu hi~u nh~t d€ phong ch6ng trojan horse la dirng hao gia n1a cac t~p tin dinh keln duqc giri d€n mQt cach h~t ngb', khi rna nguai sir dl)ng chua xac minh duqc dQ an toan, ngu6n g6c cua file dinh kern. Khi cac file dinh kern khong duqc rna ra thi trojan horse cling khong th~ hO<:1t dQng.

3.2.4. PhAn m~m ac tinh (malware).

Phftn m€m ac tiOO (malware) la chu ghep cua maliciuos va software chi chung

22

cac ph~n m€m co tinh nang gay h~i nhu virus, worm, trojan horse, spyware, adware,

- --

keyloger, backdoor, rootkit, vv...Tuy thea cach th(rc ma tin t~c su d\lng. SlJ nguy h~i clla cac Io~i ph~n m€m ac tinh co khac nhau ill ch6 chi hi~n thi cac cua s6 kho chiu cho· d~n vi~c t~n cong chi~m quy€n di€u khi~n may tinh va lay Ian sang cac may tinh khac.

3.2.5. Ph~n m~m gian di~p (spyware).

-.

tat clla

gian di~p

Ph~n m€m

(spyware): La chfr vi~t

spy (gian di~p) va software (ph~n m€m may tinh). La ph~n m€m co kha nang tham nh~p trvc ti~p, thea doi nhfrng ho~t dQng tren may tinh ma khong co SlJ nh~n bi~t va cho phep clla nguai su d\lng may tinh. MQt cach di~n hinh, spyware dugc cai d~t mQt cach bi m~t nhu Ia mQt bQ ph~n kem thea clla cac ph~n m€m mi~n phi (freewares) va ph~n m€m chia se (shareware) ma nguai su d\lng co th~ tai v€ tu internet. MQt khi da: cai d~t, spyware di€u ph6i cac ho~t dQng clla may chll tren internet va I~ng Ie chuy~n cac dfr li~u thong tin d~n mQt may khac, chung thu th~p t~t ca cac thong tin ca nhan, thoi quen ca nhan, thoi quen truy c~p web clla nguai su d\lng va gui v€ cho tac gia. Ngoai ra, spyware con su d\lng cac tai nguyen clla bQ nh6 (memory resource) d~ an citp bang tac gia clla cac spyware qua cac lien k~t internet. Vi thong khi no gui thong tin tr6 v€ spyware dung tai nguyen clla bQ nh6 va clla h~ th6ng, cac (rng d\lng ch~y trong n€n (background) co th~ d~n t6i h~ di€u hanh bi 16i ho~c may tinh ch~y khong em dinh. D~ phong ngua spyware thi nguai su d\lng co th~ dung ph~n m€m ch6ng spyware. Quet thuang xuyen d~ lo~i b6 spyware. Kh6i dQng I~i may tinh va ki~m tra I~i l~n nfra sau m6i l~n bi nhi~m spyware m6i d~ ch6ng SlJ tai nhi~m (tickler). Ph~n m€m ch6ng spyware n6i ti~ng tren thi truang Ia ph~n m€m spy sweeper.

3.2.6. Ph~n m~m quang cao (adware).

Ph~n m€m quan cao (adware): La chfr vi~t titt clla advertisement (quang cao) thu th~p thong tin duy~t web clla

va software (ph~n m€m may tinh). La ph~n m€m

nguai dung, dugc len Iut cai d~t VaG may tinh nguai dung ho~c cai d~t thong qua mQt ph~n m€m mi~n phi, hay ph~n m€m dung thu dugc nguai dung cho phep (nhung khong y thuc dugc mvc dich clla chung). MQt s6 ph~n m€m vo h~i, nhung mQt s6 co

kha nang hi€n thi thong tin tren man hinh gay kho chiu cho nguai su dVng. Tuy nhien chung khong dung I~i 6 tinh dan gian Ia quang cao ma se k~t hgp v6i nhfrng Io~i virus khac nh~m tang hi~u qua pha ho~i.

3.2.7. Bit ky t\f go tren bim phim (keylogger).

Bitt ky tl,f go tren ban phim, hay con gQi Ia "trinh thea doi thao tac ban phim" la ph~n m€m ghi l~i mQi thao tac thlJc hi~n tren ban phim VaG mQt t~p tin nh~t kY (log) d€ cho nguai cM d~t no khai thac, su dVng thong tin trai phep.

23

3.2.8. Lira

Lua dao tqrc tuy€n (phishing) la mQt hO<;lt dQng ph<;lm tQi dung cac ky thu~t lira dao thUOng duQ'c thlJc hi~n qua thu di~n tu ho~c tin nh~n nhanh hay yeu cftu nguai dung nh?p thong tin vao mQt website gia m<;lO gftn nhu gi6ng h~t vai website th~t. Ke lua dao c6 g~ng lua lfry cac thong tin nh<;ly cam, ching h<;ln nhu m?t khAu va thong tin the tin dVng, b~ng cach gia la mQt nguai ho~c mQt doanh nghi~p dang tin c~y trong v€ mQt giao dich di~n tu. phishing thuang duQ'c thlJc hi~n b~ng cach su dVng thu di~n tu ho~c tin nh~n, doi khi con su dVng ca di~n tho<;li.

Tfrn cong gia m<;lO la mQt don cu cua nhfrng kI thu~t lua dao tnJc tuy€n (social engineering) nh~m danh lua nguai dung va khai thac nhfrng 16 h6ng hi~n nay cua cong ngh~ bao m?t web. D~ ch6ng l<;li nhfrng hinh thuc tfrn cong, lua dao ngay cang tang thi cftn hoan chinh hanh lang phap ly, hUfrn luy~n cho nguai dung, canh bao va

tang cUOng an ninh kI thu~t.

3.2.9. Cifa h~u (backdoor).

Trong mQt h~ th6ng may tinh, cua h~u la mQt phuong phap vuQ't qua thu tvc chUng thlJc nguai dung thong thuOng ho~c d~ gifr dUOng truy nh~p tu xa tai mQt may tinh trong khi c6 g~ng khong bi phat hi~n bai vi~c giam sat thong thuOng. Day cling la mQt 10<;li trojan nhung nhi~m Vl,l chinh la rna thong mQt s6 c6ng nao do tren may tinh d~ lay lan, truy c~p va di€u khi~n may tinh tu xa. Cua h~u co th~ co hinh thuc la mQt chuong trinh duQ'c cai d~t ho~c co th~ la mQt sua d6i d6i vai mQt chuong trinh hQ'P phap.

3.2.10. Rootkit.

Rootkit la mQt bQ cong cv phftn m€m do ke xam nh?p dua vao may tinh nh~m

mvc dich cho phep tin t~c quay l<;li xam nh~p may tinh do va dung no cho cac mvc dich xfru rna khong bi phat hi~n nhu thu th~p dfr li~u v€ may tinh (k~ ca cac may tinh khac trong cung m<;lng) va nhfrng nguai su dVng chung (ch~ng h<;ln m~t khAu va thong tin tai khoan) ho~c gay ra 16i sai trong hO<;lt dQng may tinh. Day cling la mQt 10<;li trojan nhung tlJ gifru minh, hO<;lt dQng atftng thfrp cua h~ th6ng nen co th~ ngan can mQt s6 dich vv. Rootkit dii hi Slr dVng ngay cang nhi€u hai cac ph~n m€m ac tinh, giup ke xam nh~p h~ th6ng gifr duQ'c duang truy nh~p vao h~ th6ng. Cac rootkit thuOng sua d6i mQt s6 ph~n cua h~ di€u hanh ho~c tlJ cai d~t chung thanh cae trinh di€u khi~n (driver) hay cac module trong nhan h~ di€u hanh (kernel module).

May tinh co th~ bi lay nhi€m rootkit b~ng nhi€u con duOng, trong do co vi~c lay nhi€m qua cac chuang trinh duQ'c tai xu6ng tu internet, qua t~p g~n kern t<;li e-mail, ho~c khi truy c~p vao mQt s6 trang web nhfrt dinh. Rootkit con co th~ duQ'c dua vao may tinh qua 6 rna dm ngoai ho~c 6 USB. Rootkit khong tlJ nhan han va khong co ca 24

ch€ ho~t dQng dQc l~p t\1' chu. Rootkit n~m hoan toan du&i quy€n kiSm soat cua mQt ke t~n cong.

3.2.11. Spam (thO' rac).

Spam (thu rae) la thu duqe gui t&i nhi€u nguai rna nhfrng nguai do khong yeu

la nhftng t11u khong phil hQ'P, khong co

cftu duQ'c nh~n. N oi cach khac, thu rac chu y€u y nghla v&i nguai sir d\lng may tinh, vv ...Nguy hiSm han la virus va cac hanh vi lira dao co thS ~n minh du&i d~ng thu rac. Nguai giri thu rac thuCmg gui rnQt lo~t t&i danh

sach cac dia chi thu va duQ'c gui tir nhi€u dia chi khac nhau. Cac thu nay thuang duQ'c glii du&i d~ng "n?c danh" dS gi~u thong tin v€ nguai giri th~t.

3.3. Cac binh thifc tAn cong tren m~ng may tinh.

TQi ph~m m?ng dang di€n ra v&i t6c dQ nhanh han, quy mo han, tinh chuyen nghi~p, trinh dQ ky t11u~t ngay cang cao han va kha nang d~ l~i d~u v€t, chung cu tren

khong gian ao ngay cang it han. Tinh rna cua cac dich V\l ti~n ich, cac m?ng xa hQi

(facebook, twitter, yahoo chat, yahoo mail, vv ... ), cac thi€t bi di dQng thong minh (smartphone, may tinh bang, vv ... ) da duQ'c gi&i tQi ph~m rn~ng lqi dVng dS lira dao. Vi~c n~m b~t duQ'c tam ly, S\1' nh~ d? cua nguai sir dVng, thong qua cac 16 h6ng dich V\l, tQi ph~m rngng co the nghe len cac cUQc dam tho?i, truy c~p, l~y dfr li~u quan trQng (thong tin the tin d\lng, thong tin ca nhan, vv ...), n1~O danh nguai sir d\lng d€ lira dao (Nha mna the di~n thogi, mUQTI dia chi e-mail d€ giri thu, vv ... ). Nguai sir d\lng cftn tren mgng. D?c bi~t, cftn cftn trQng khi ti€p nh~n cac thong tin qua cac kenh giao ti€p t&i website ho?c cac files nh~n duqc, th~n1 chi nen canh giac tru&c cac duang lien k€t gQi di~n hoi l~i n€u th~y tai khoan chat, e-mail, vv ... cua hQ dang yeu cftu cung c~p ti€11 ho?c cac thong tin nhgy cam khac, vv ...

Co r~t nhi€u hinh thuc tfrn cong da bi~t cling nhu chua bi€t,

tuy nhien hi~n nay co

thS chia ra lam 4 lOgi chinh:

3.3.1. TAn cong trlfc ti~p.

Phftn I&n SlJ t~n cong la trlJc ti~p, tuc Ia dung lTIQt may tinh tfrn cong trlJc tiep

may tinh khac.

Do tim user name va password, b~ng cach thir v&i mQt s6 tit khoa thong dVng nhu "xinchao", ""hello", "123456", dung ten nguai than, ngay sinh, s6 di~n tho~i, vv...Vi v~y nguai sir dVng nen tranh vi~c d~t m~t khAu qua don gian ho?c thuQc nhUng kiSu k€ tren.

Dung chuang trinh dS giai ma cac files chua m~t khAu tren may tinh dS tim ra m~t khftu, thuang nhfrng m~t khftu d?t qua ng~n se bi phat hi~n b~ng cach nay. Nguai sir dVng nen d?t m~t kh~u cua minh t6i thiSu la 8 ky tlJ, cang dai cang t6t, nen co ca s6,

chu cai, ky tlJ d?c bi~t, vv...

25

Dung 16i cua chuang trinh ung dl,lng hay h~ di~u himh de lam cho cac Ung dl,lng

hay h~ di~u hanh d6 bi te li~t.

3.3.2. Nghe trQrn.

Khong c~n can thi~p tIVc ti~p VaG may tinh rna thong qua cac dich Vl,l m~g, b~ng

cach nay tin ti.ic c6 the nghe tr<)m dugc nhUng thong tin dugc truy~n qua I~i tren m~ng.

Nghe tr<)m password: CGng v6'i cach nhu tren, tin ti.ic c6 the Ifry dugc m~t kh~u

cua nguai su dl,lng, sau d6 chung truy c~p m<)t cach chinh quy VaG h~ th6ng.

3.3.3. Gia rn~o dja chi.

Thuang thi cac m~ng may tinh n6i m~ng internet d~u dugc bao v~ bai buc tuang lua. Buc tuang lua c6 the coi nhu canh cua duy nhfrt rna nguai di VaG nha hay di ra cGng d~u b~t bu<)c phai qua d6.

Gia m~o dia chi la nguai ben ngoai (may tinh cua tin ti.ic) se gia m~o minh la m<)t nguai atrong nha (t\l' di.it dia chi IP clla minh trung v6'i m<)t dia chi nao d6 am~ng ben trong). N~u lam dugc di~u d6 thi tin ti.ic se dugc d6i xu nhu m<)t nguai (may) ben trong, tuc la dugc lam mQi thu de til d6 tfrn cong, Ifry tr<)m, pha huy thong tin, vv...

3.3.4. VO hi~u hoa cac djch vl].

Lam te li~t m<)t s6 dich Vl,l nao d6. Thuang cach tfrn cong nay dugc gQi la DoS

(Denial of Service) hay "til ch6i dich Vl,l". Cach tfrn cong nay Igi dl,lng m<)t s6 16i clla ph~n m~m. Tin ti.ic cho may tinh clla chung dua ra nhfrng yeu c~u "I~" t6'i nhfrng may. chll tren m~ng. V6'i yeu c~u "I~" nhu v~y cac may chu tiep nh~n yeu c~u se khong xu Iy dugc d~n d~n bi te li~t.

Tfrn cong til ch6i dich Vl,l cGng c6 the hoan toan la nhfrng yeu c~u hgp I~. Vi dl,l nhu virus may tinh dugc cM di.it chfrc nang tfrn cong nhu dil n6i t6'i trong phfin v~ virus (botnet). T~i m<)t thai diem, hang tri~u may tinh tren m~ng tfrt ca d6ng thai gui yeu c~u t6'i may chu phl,lc Vl,l. Nhfrng yeu c~u nay la hoan toan hgp I~, nhung t~i cung m<)t thai diem c6 qua nhi~u yeu du nhu v~y, thi may chll khong the phl,lC Vl,l dugc nfra d~n den khong the ti~p nh~n cac yeu du tiep thea d~n den bi tfrn cong til ch6i dich Vl,l.

3.3.5. Y~u tB con ngum.

Ke tfrn cong gia va lien I~c v6'i nguai quan tri m~ng yeu c~u d6i m~t kh~u cua nguai su dl,lng (user) nao d6, n~u nguai quan tri m~ng lam thea thi vo tinh dil ti~p tay

cho tin ti.ic.

TuO'ng t\l' ke tfrn cong c6 the yeu c~u quan tri m~ng thay d6i cfru hinh h~ th6ng de

26

tiep d6 chung c6 the ti~n hanh dugc cac cu<)c tfrn congo

-

-.

I

,

't

1

IhJ

~

r, 1

~

~}

1

r ..,-' n, n , .1 ,~

Hinh 13: s6 IU9'ng cac website hi ttin c6ng nam 2011 (ngu6n Bkav)

27

4. DE Ml)C 4: Bao m~t thong tin tren m~ng.

Sau khi hoan thanh nQi dung nay, ngum sir dl}ng nim oUQ'c:

• Khai ni~m v~ bao m~t thong tin.

• Mvc dich cua bao m~t thong tin.

• Cac phuong phap bao m~t thong tin.

4.1. Khai ni~m v~ bao m~t thong tin.

Bao m~t thong tin la hinh thuc bao v~ may tinh, thong tin ca nhan dugc an toim. Giup nguai su dVng ki~m soat va bao v~ thong tin tranh kh6i vi~c vo tinh hoi;ic c6 y sua d6i, xoa dIng nhu ti€t

lQ thong tin trai phep.

4.2. Ml}c oich clla bao m~t thong tin.

Tinh bi m~t: Chi co nguai nh~n da xac thlJc mai co th~ lity ra dugc nQi dung cua thong tin chua d\Ing trong d~ng da rna hoa cua no. Noi khac di, no khong th~ cho phep thu lugm dugc bitt ky thong tin dang k~ nao v~ nQi dung cua thong di~p.

Tinh nguyen v(fn: Nguai nh~n d.n co kha nang xac dinh dugc thong tin co bi thay d6i trong qua trinh truy~n thong hay khong, tranh kh6i vi~c bi thay d6i, chinh sua trai phep.

Tinh xac th\Ic: Nguai nh~n c~n co kha nang xac dinh nguai gui va ki~m tra xem

nguai gui do co thvc sv gui thong tin di hay khong.

Tinh khong th~ tu ch6i: Nguai gui khong th~ tu ch6i hay phu nh~n vi~c minh da

gui thong tin di.

Tinh ch6ng li;ip l~i: Khong cho phep ben thfr ba sao chep l~i van ban va gui nhi~u

l~n d€n nguai nh~n rna nguai gui khong h~ hay bi€t.

4.3. Cac phU'

- Khong nen dua cac thong tin ca nhan len m~ng.

- Khong nen dung cac thong tin ca nhan d~ lam m~t kh~u (password), nen di;it m~t kh~u m~nh bao g6m cac y€u t6: Co tu 8 ky tv tra len, bao g6m ca chfr cai, chfr s6 va kY tv di;ic bi~t ($,%,@,&,*, vv ... ) va d6i m~t kh~u t6i thi~u 3 thang 1 l~n.

- Khong nen su dVng chung mQt m~t kh~u cho nhfrng dich vv quan tn;mg tren

m~ng nhu thu di~n tu, tai khoan, vv ...

28

- Khong nen sir d\lng chilc nang nh& m~t khftu, hay nh~p m~t khftu cho m6i lftn

dang nh~p, nh~t la nhfrng may tinh duqc sir d\lng chung.

- Ghi nh& m~t khftu cua minh, khong nen luu trfr m~t khftu tren may tinh va cac

thi~t bi khac.

- Ki~m tra v~ thong tin trang web s~p truy c~p.

- Khong nen kich chuQt tIVc ti~p len cac files dinh kern, cac duCmg lien k~t (links) duqc giri d~n nguai sir d\lng qua thu di~n tir, phftn m~nl chat, vv...khi nguai sir d\lng chua bi~t ro ngu6n g6c, dQ an toan cua duCmg lien k~t do. Nhfrng duCmg lien k~t do co th~ vo h~i nhung cling co th~ da duqc cai d~t s~n virus, rna dQc, chuang trinh an cAp thong tin ca nhan, vv ...

) b~

(

t

.JS,

lenl ra scan

- Khong tai v~, cai d~t cacchuang trinh 1(;1 chua ro ngu6n g6c vi no co th~ chua virus, trojan, rna dQc, vv ... (d~c bi~t chu y cac t~p tin co duoi *.exe, *.com, *.bat, "t h * ang mQ c uang .scr, trinh di~t virus va mQt chuang trinh di~t spyware, vi nhi~u chuang trinh di~t virus chi co th~ tim th~y virus chu khong th~ nh~n bi~t ra spyware.

- Khi cai d~t mQt phftn m~m b~t ky tren may tinh ho~c truy c~p vao website, co truy c~p website th~ se co yeu cftu, di~u khoan kern thea d~ duqc cai d~t phftn m€m, do. Khi do cftn dQc ky cac di€u khoan dua ra tru&c khi next (chuy~n), ho~c accept, OK (ch~p nh~n), vv... Tranh truCmg hqp bi rang bUQc di~u ki~n trong'di€u khoan rna nguai sir d\lng khong d~ y t&i.

- Khong nen luu gifr cac files t~m (cache) tren trinh duy~t, cac thong. tin v€

nhfrng trang web da ghe tham.

- Nen sir d\lng ho~c c~p nh~t phien ban m&i nh~t cho trinh duy~t web (internet

* *. *·f f *. * .Zlp, .sw, .rar, .gl, vv.... ) C~ k·~ an

- B~t tinh nang tuang lira (firewall) co tren h~ di€u hanh, co th~ cai d~t them

phcln m€nl tuang lira tir mQt hang khac.

- Bao In~t cac thong tin quan trQng tren h~ di~u hanh nhu: Dia chi IP, ten may

tlnh, vv...

- T~t ch~ dQ di~u khi~n may tlnh tir xa (remote desktop) tren h~ di~u hanh. - '·Cai d~t va sir d\lng phcln m€m di~t virus, c~p nh~t cac mftu virus m&i, quet virus

thuang xuyen tren toan bQ h~ th6ng va khi sir d\lng cac thi€t bi luu trfr ngoai.

- Nen sir d\lng phftn m~m chung thu di~n tic, rna hoa, d~t m~t khftu dfr li~u tru&c

khi chia se tai nguyen tren m~ng.

29

browser).

- Khi kh6ng co nhu c~u k~t n6i internet, nguai sir dVng co th~ t~t tinh nang network connection tren h~ di€u himh ho~c t~t thi~t bi m~ng nh~m dam bao an toim, bao m~t cho may tinh.

30

MlJC LlJC

-

1. DE M1)C 1: Virus may tinh va cach phong ch6ng

1.1. Khai ni~m virus may tinh 1.2. Lich su ph

1.3 .1. Virus file 1.3.2. Virus boot. 1.3.3. Virus macro 1.3 .4. Sau may tinh (worm)

1.4. Phuong thuc ho~t dong clla virus may tinh

1.4.1. Qua cac thi€t bi Iuu trfr di dong 1.4.2. Qua thu di~n tu 1.4.3. Qua m~ng internet. 1.4.4. Bi€n th~ clla virus 1.4.5. Kha nang vo hi~u h6a phan mem di~t virus

1.5. Cach phong ch6ng virus

1.5.1. Cach nh~n bi€t cO' ban 1.5.2. SU d\mg phh m~m di~t virus 1.5.3. SU d\1ng tuo'ng Ilra 1.5.4. C~p nMt cac ban sua 16i clla M di~u hanh 1.5.5. V~n d\1ng kinh nghi~m su d\1ng may tinh

1.6. Gi6i thi~u mot s6 phAn m~m di~t virus

2. DE M1)C 2: Bao v~ dfr li~u may tinh

2.1. Bao v~ dfr li~u h~ th6ng

2.1.1. Ten dang nh~p va m~t khfrU (userID va password) 2.1.2. Quan Iy dfr li~u 6Mth6ng

2.2. Bao v~ dfr li~u t~o ra

2.2.1. Sao Iuu dfr li~u thea dinh kYo 2.2.2. Bao v~ dfr li~u dii sao Iuu 2.2.3. Ph\1c h6i dfr li~u dii sao Iuu

3. DE M1)C 3: An ninh m~ng

3.1. Khai ni~ln v~ An ninh me;tng 3.2. Cac m6i nguy hi~m tfrn cong may tinh

3.2.1. Tin t~c (hacker) 3.2.2. Me;tng may tinh rna (botnet) 3.2.3. Trojan horse 3.2.4. PhAn m~m ac tinh (malware) 3.2.5. PhAn m~m gian di~p (spyware) 3.2.6. PhAn m~m quang cao (adware) 3.2.7. B~t ky t\1' go tren ban phim (key logger) 3.2.8. Ura dao tr\1'c tuySn (phishing) 3.2.9. ClI'a h~lI (backdoor) 3.2.JO. Rootkit. 3.2.11. Spam (thu rlic)

3.3. Cac hinh thlrc tfrn cong tren m~ng may tinh

3.3 .J. Tfrn cong tqJ'c ti€p 3.3.2. Nghe trOln 3.3.3. Gia Ine;to dja chi. 3.3.4. VO hi~u hoa cac dich V\1 3.3.5. Y€u

•

A h A

h " 'A

1 1 2 4 4 4 5 5 5 5 6 6 7 7 7 8 8 9 13 13 14 17 17 17 17 18 18 18 18 19 19 22 22 22 22 22 23 23 23 24 24 24 25 25 25 26 26 26 26 28 28 . 28 28

t<3 con nguoi 4. DE MVC 4: Bao m~t thong tin tren me;tng ~ b' 4.1. K al nH;ln ve ao Ine;tt tong tIn 4.2. M\1c dich clla bao m~t thOng tin 4.3. Cac phuong phap bao m~t thong tin

31