Indlela yokuvikela Windows 10 kanye ne-11 kusuka ku-ransomware. I-Ransomware idlangile, kodwa kunezindlela ezimbalwa abantu nabaphathi abangavikela ngazo Windows 10 namakhompyutha angu-11. Nakhu okumele ukwenze.
I-Cryptolocare. Ngiyakufuna. Uhlangothi olumnyama. Conti. I-Medusa Locker. Usongo lwe-ransomware ngeke luphele cishe ; Lezi zindaba ziletha imibiko eqhubekayo yamagagasi amasha alolu hlobo olunonya lohlelo olungayilungele ikhompuyutha olusabalala emhlabeni wonke. Ithandwa kakhulu ngenxa yenzuzo yezimali esheshayo yabahlaseli: isebenza ngokubhala ngekhodi amafayela ku-hard drive yakho, bese idinga ukuthi ukhokhe isihlengo, ngokuvamile nge-bitcoin noma enye i-cryptocurrency, ukuze uwasuse.
Kodwa akudingekile ukuba ube yisisulu. Kuningi lokho Windows 10 nabasebenzisi be-11 abangakwenza ukuze bazivikele kukho. Kulesi sihloko, ngizokukhombisa ukuthi ungazigcina kanjani uphephile, kufaka phakathi indlela yokusebenzisa ithuluzi le-Windows anti-ransomware eyakhelwe ngaphakathi.
(Baqondisi, bonani “Lokho umnyango wakho we-IT okudingeka ukwazi mayelana ne-ransomware ne-Windows” ekupheleni kwalesi sihloko.)
Lesi sihloko sithatha ngokuthi usuvele uthatha izinyathelo zokuphepha eziyisisekelo ngohlelo olungayilungele ikhompuyutha ngokuvamile, okuhlanganisa ukusebenzisa isofthiwe elwa nohlelo olungayilungele ikhompuyutha futhi ungalokothi ulande okunamathiselwe noma uchofoze izixhumanisi ze-imeyili ezivela kubathumeli abangaziwa kanye ne-imeyili ebukeka isolisa. Futhi qaphela ukuthi le ndatshana ibuyekezelwe i-Windows 10 November 2021 Update (Inguqulo 21H2) kanye ne-Windows 11 October 2021 Update (Inguqulo 21H2). Ukube ubunenguqulo yangaphambili ye Windows 10, ezinye izinto zingase zehluke.
Sebenzisa ukufinyelela kwefolda elawulwayo
I-Microsoft iyikhathalela ngokwanele i-ransomware kangangokuthi bakhe ithuluzi elilwa ne-ransomware okulula ukulilungiselela kulo ngqo Windows 10 kanye ne-Windows 11. Ibizwa ngokuthi Ukufinyelela Kwefolda Elawulwayo, ikuvikela ngokuvumela izinhlelo zokusebenza eziphephile nezihlolwe ngokugcwele ukuthi zifinyelele amafayela akho. Ukudlula kwezinhlelo zokusebenza ezingaziwa noma izinsongo ezaziwayo ze-malware akuvunyelwe.
Ngokuzenzakalelayo, isici asivulwanga, ngakho-ke uma ufuna ukuzivikela ku-ransomware, kuzodingeka usitshele ukuthi iqale ukusebenza. Ungenza ngendlela oyifisayo ngqo ukuthi isebenza kanjani ngokwengeza izinhlelo zokusebenza ezintsha ohlwini olugunyaziwe lwezinhlelo ezikwazi ukufinyelela amafayela, futhi wengeze amafolda amasha ngaphezu kwamafolda owavikelayo ngokuzenzakalelayo.
Ukuze uyiqalise, uzodinga ukufinyelela ku-Windows Security. Kunezindlela ezimbalwa zokuyifinyelela kukho kokubili Windows 10 kanye ne-Windows 11:
- Chofoza umcibisholo obheke phezulu ohlangothini lwesobunxele lwebha yomsebenzi, bese uchofoza isithonjana seWindows Security - isihlangu.
- Chofoza Qala > Izilungiselelo Ukuze uvule uhlelo lokusebenza Lwezilungiselelo, bese ukhetha Buyekeza & Ukuphepha > I-Windows Security Ku-Windows 10 noma Ubumfihlo Nokuphepha > I-Windows Security Ku-Windows 11.
- Sebenzisa usesho lwe-Windows. Ku-Windows 10, ibhokisi lokusesha litholakala kubha yomsebenzi eduze kwenkinobho ethi Qala. Ku-Windows 11, chofoza isithonjana sokusesha kubha yomsebenzi ukuze uvule ifasitelana lokusesha. Uhlobo windows security ebhokisini lokusesha elilandelayo bese ukhetha Ukuphepha kweWindows kwemiphumela.
Ku-Windows Security, khetha Ukuvikelwa kumagciwane kanye nezingozi . Skrolela phansi engxenyeni ye-Ransomware Protection bese uchofoza Umnyango Wokuvikela I-Ransomware . Kusuka esikrinini esivelayo, ngaphansi kwe-Control Folder Access, guqula ukushintshela kuye ukuqashwa . Uzothola isaziso esibuza ukuthi uyafuna yini ukwenza ushintsho. Chofoza "Yebo" .
Akufanele ukushiye kanjalo futhi uzizwe uphephile okwamanje, ngoba kungenzeka ukuthi unamafolda ofuna ukuwavikela futhi isici siyawashaya indiva. Ngokuzenzakalelayo, ivikela amafolda esistimu ye-Windows (kanye namafolda angezansi kwawo) njenge-C:\Users\ I-UserName \ Imibhalo , ikuphi I-UserName Igama lakho lomsebenzisi le-Windows. Ngaphezu kwemibhalo, amafolda esistimu yeWindows afaka iDesktop, Umculo, Izithombe, namavidiyo.
Kodwa wonke amanye amafolda akho awumdlalo olungile wanoma iyiphi i-ransomware eya kukhompyutha yakho. Ngakho-ke uma usebenzisa isitoreji samafu se-OneDrive ye-Microsoft, isibonelo, noma imaphi amafolda namafayela e-OneDrive akukhompyutha yakho akuvikelekile. Uma kubhekwa ukuthi iMicrosoft izama ukuhambisa wonke umuntu ku-OneDrive, lokho kuyinto eyeqiwe ngendlela emangalisayo.
Ukuze wengeze amafolda ofuna ukuwavikela, chofoza isixhumanisi Amafolda avikelwe okuvela ngemva kokuvula Ukufinyelela Kwefolda Elilawulwayo. Kuvela umyalo obuza ukuthi uyafuna yini ukwenza ushintsho. Chofoza "Yebo" . Chofoza inkinobho engeza ifolda evikelekile” phezulu ohlwini lwamafolda avikelwe avelayo, bese kusuka esikrinini esivela kufolda ofuna ukuyivikela bese ucindezela "khetha ifolda" .
Qhubeka wengeza amafolda ngale ndlela. Khumbula ukuthi uma wengeza ifolda, wonke amafolda angaphansi kwawo avikelekile. Ngakho-ke uma wengeza i-OneDrive, ngokwesibonelo, asikho isidingo sokwengeza wonke amafolda angaphansi kwayo.
(Qaphela: Kuye ngenguqulo yakho ye-OneDrive, ungase ukwazi ukubuyisela amafayela e-OneDrive, ngisho noma ungawalawuli ngokufinyelela Ifolda Elilawulwayo. Ukuze uthole imininingwane, bheka imibhalo ye-Microsoft" Buyisa amafayela noma amafolda asusiwe ku-OneDrive . ")
Uma noma ngasiphi isikhathi unquma ukukhipha ifolda, buyela esikrinini esithi Amafolda Avikelwe, thepha ifolda ofuna ukuyisusa, bese ucindezela. Ukususwa . Qaphela ukuthi ngeke ukwazi ukususa noma yimaphi amafolda esistimu ye-Windows lapho isici sivuliwe. Ungasusa kuphela labo obangezile.
I-Microsoft inquma ukuthi yiziphi izinhlelo zokusebenza okufanele zivunyelwe ukufinyelela amafolda avikelwe, futhi akumangalisi phakathi kwawo kukhona i-Microsoft Office. I-Microsoft ayikashicileli uhlu lwezinhlelo zokusebenza ezivunyelwe, ngakho cabanga ukuthatha isinyathelo ukuze uvumele izinhlelo zokusebenza ozethembayo ukuthi zifinyelele amafayela akho.
Ukuze wenze lokhu, buyela esikrinini lapho uvule Ukufinyelela Kwefolda Elawulwayo bese ucindezela Vumela uhlelo lokusebenza ukuthi libe nokufinyelela okulawulwayo kufolda . Kuvela umyalo obuza ukuthi uyafuna yini ukwenza ushintsho. Chofoza "Yebo" . Kusukela esikrinini esivelayo, cindezela Ukwengeza uhlelo lokusebenza kuvunyelwe , zulazulela efayeleni elisebenzisekayo lohlelo ofuna ukulengeza, bese uchofoza ukuvula , bese uqinisekisa ukuthi ufuna ukwengeza ifayela. Njengokwengeza amafolda ohlwini lwamafolda avikelwe, ungasusa uhlelo lokusebenza ngokubuyela kulesi sikrini, uchofoze kuhlelo ofuna ukulususa, bese uchofoza. Ukususwa .
Ithiphu: Uma ungaqiniseki ukuthi akuphi amafayela asebenzisekayo ezinhlelo ofuna ukuzengeza ohlwini olugunyaziwe, bheka igama lefolda enegama lohlelo kumafolda e-Windows\Program Files noma Windows\Program Files (x86) , bese usesha okusebenzisekayo kulowo mqulu.
Yenza ikhophi yasenqolobaneni...kodwa kwenze kahle
Iphuzu eliphelele le-ransomware iwukuba ubambe amafayela akho uze ukhokhe ukuze uwavule. Ngakho enye yezindlela ezingcono kakhulu zokuvikela i-ransomware ukwenza isipele amafayela akho. Ngale ndlela, asikho isidingo sokukhokha isihlengo, ngoba ungakwazi ukubuyisela kalula amafayela akho kusuka kusipele.
Kepha uma kukhulunywa nge-ransomware, akuwona wonke ama-backups adalwe alingana. Kufanele uqaphele mayelana nokukhetha ubuchwepheshe bokulondoloza obufanele kanye nesevisi. Kungumqondo omuhle ukusebenzisa isitoreji samafu nesevisi yokusekelayo kunokumane wenze isipele kudrayivu exhunywe kukhompuyutha yakho. Uma wenza ikhophi yasenqolobaneni kudrayivu exhunywe kukhompyutha yakho, uma ikhompuyutha yakho itheleleke nge-ransomware, idrayivu eyisipele cishe izobethelwa kanye nanoma imaphi amanye amadiski ngaphakathi noma axhunywe kukhompuyutha yakho.
Qiniseka ukuthi isitoreji sakho esisekelwe emafini nesipele sisebenzisa inguqulo — okungukuthi, ayigcini nje kuphela inguqulo yamanje yefayela lakho ngalinye, kodwa nenguqulo yangaphambilini. Ngale ndlela, uma inguqulo yakamuva yamafayela akho itheleleka, ungakwazi ukubuyisela kusukela kuzinguqulo zangaphambilini.
Izinsiza eziningi zokulondoloza nokugcina, ezihlanganisa i-Microsoft OneDrive, i-Google Drayivu, i-Carbonite, i-Dropbox, nezinye eziningi, zisebenzisa le nguqulo. Kungumqondo omuhle ukujwayelana nesici senguqulo sanoma iyiphi isevisi oyisebenzisayo njengamanje, ukuze ukwazi ukubuyisela amafayela kalula nje.
Thola ukuvikelwa kwamahhala kwe-ransomware
Noma yiluphi uhlelo olulwa nohlelo olungayilungele ikhompuyutha luhlanganisa ukuvikela okwakhelwe ngaphakathi kwe-anti-ransomware, kodwa kunezinhlelo eziningi ezithembisa ukukhomba ngokuqondile i-ransomware. Eziningi zazo ziyakhokhelwa, kodwa futhi kukhona ezinye izinketho zamahhala, njengalezi engizibala lapha.
I-Bitdefender inikeza Amathuluzi wamahhala okususa ukubethela angavula idatha yakho Uma uhlaselwa yi-ransomware futhi isihlengo siyagcinwa. Bangakwazi kuphela ukususa ukubethela idatha ebethelwe kusetshenziswa izingxenye ezithile noma imindeni ye-ransomware, okuhlanganisa i-REvil/Sodinokibi, i-DarkSide, i-MaMoCrypt, i-WannaRen, nezinye eziningi. I-Kaspersky inikeza uhlelo I-Anti-ransomware mahhala Kubasebenzisi basekhaya nabebhizinisi, nakuba kunemikhawulo enanini lamadivayisi ongawasebenzisa kuwo.
hlala ulungile
I-Microsoft ivame ukukhulula iziqephu zokuphepha ze Windows 10 futhi Windows 11, futhi zisetshenziswa ngokuzenzakalelayo nge-Windows Update. Kepha uma uzwa ngokuqubuka kwe-ransomware, ungalindi ukuthi i-Windows Update isebenze - kufanele uthole isibuyekezo ngokwakho ngokushesha ukuze uvikeleke NGOKUSHESHA. Futhi akuzona nje izibuyekezo ze-Windows ofuna ukuzithola. Futhi ufuna ukwenza isiqiniseko sokuthi I-Windows Security, ithuluzi le-Microsoft elakhelwe ngaphakathi lokulwa ne-malware, inezincazelo zakamuva zokulwa ne-malware.
Ukwenza kokubili ku-Windows 10, iya ku Amasethingi > Ukuvuselela Nokuphepha > I-Windows Update bese uchofoza inkinobho . Bheka izibuyekezo . Ku-Windows 11, iya ku Izilungiselelo > I-Windows Update bese uchofoza inkinobho . Bheka izibuyekezo . (Uma izibuyekezo sezivele zikulindile, uzozibona zifakwe ohlwini esikhundleni senkinobho Bheka izibuyekezo .) Uma iWindows ithola izibuyekezo, iyazifaka. Uma idinga ukuqalisa kabusha, izokutshela.
Akudingeki ukhathazeke kuphela ngokuthi iWindows ihlala izimagqabhagqabha, kodwa nezinye izinhlelo. Uma usebenzisa isofthiwe elwa ne-malware ngaphandle kwe-Windows Security, qiniseka ukuthi kanye nezincazelo zayo ze-malware zisesikhathini samanje.
Enye isofthiwe kukhompyutha yakho kufanele ibuyekezwe. Ngakho hlola ukuthi isofthiwe ngayinye ibuyekezwa kanjani futhi uqiniseke ukuthi ingxenye ngayinye ibuyekezwa njalo.
Khubaza ama-Macros ku-Microsoft Office
I-Ransomware ingasabalala Nge-Macros ku-Office Files , ngakho-ke kufanele uyicime ukuze iphephe. I-Microsoft manje isiyikhubaza ngokuzenzakalelayo, kodwa lokho akusho ukuthi icishiwe enguqulweni yakho ye-Office, kuye ngokuthi uyifake nini nokuthi uyibuyekeze yini. Ukuze uyivale, uma ukuhlelo lokusebenza lwe-Office, khetha Ifayela > Izinketho > Isikhungo Sokuthemba > Izilungiselelo Zesikhungo Sokuthemba bese ukhetha noma yikuphi Khubaza wonke amamakhro wezaziso أو Khubaza wonke amamakhro ngaphandle kwesaziso . Uma uwakhubaza ngesaziso, lapho uvula ifayela, uzothola isexwayiso somlayezo sokuthi ama-macros akhutshaziwe futhi akuvumela ukuthi uwasebenzise. Yisebenzise kuphela uma uqinisekile ukuthi iphuma emthonjeni ophephile nothembekile.
Lokho umnyango wakho we-IT okudingeka ukwazi mayelana ne-ransomware ne-Windows
Kuningi i-IT engakwenza ukugcina izinkampani zingenayo i-ransomware. Okusobala kakhulu: sebenzisa iziqephu zokuphepha zakamuva hhayi kuphela kuwo wonke amakhompyutha ebhizinisi, kodwa kuwo wonke amaseva nanoma imaphi amanye amadivaysi ezingeni lebhizinisi.
Lesi yisiqalo nje. Umnyango wakho we-IT udinga ukukhubaza i-SMB1 Windows networking protocol eyaziwa ngokuthi ayivikelekile. Ukuhlaselwa kwe-ransomware okuningi kwasakazwa phezu kwephrothokholi eneminyaka engu-30 ubudala; Ngisho neMicrosoft ithi akekho umuntu okufanele ayisebenzise.
Izindaba ezinhle ukuthi Windows 1709 inguqulo engu-10, ekhishwe ngo-Okthoba 2017, ekugcineni yaqeda i-SMB1. (Ayikho ku-Windows 11 noma.) Kodwa lokho kuphela kumakhompuyutha anokufakwa okuhlanzekile kwenguqulo engu-1709 noma eyakamuva, kuhlanganise namasha asanda kuphuma. Amakhompyutha amadala abuyekeziwe kusukela ezinguqulweni zangaphambilini ze-Windows asenayo iphrothokholi eyakhelwe ngaphakathi.
Kunezindawo ezimbalwa umnyango wakho we-IT ongaya kuzo ukuze uthole usizo lokuyivala. Indawo enhle yokuqala Umbhalo Wemikhuba Engcono Kakhulu Yokuphepha Yamabhizinisi Amancane Namaphakathi Kusukela ku-US-CERT, esetshenziswa uMnyango Wezokuphepha Kwasekhaya wase-US. Incoma ukukhubaza i-SMB1, bese "uvimba zonke izinguqulo ze-SMB emingceleni yenethiwekhi ngokuvimbela imbobo ye-TCP 445 enezivumelwano ezihlobene kumachweba we-UDP 137-138 kanye nembobo ye-TCP 139, kuwo wonke amadivayisi asemngceleni."
Isihloko se-Advance Microsoft Support” Uyithola kanjani, uvule futhi ukhubaze i-SMBv1, i-SMBv2, ne-SMBv3 ku-Windows Imininingwane yokuthi ungayivala kanjani iphrothokholi. Incoma ukubulala i-SMB1 ngenkathi igcina i-SMB2 ne-SMB3 isebenza, futhi ivalwe kuphela ukuze ixazulule inkinga yesikhashana. Ukuze uthole ukwaziswa kwamuva, okuningiliziwe mayelana nokuvala i-SMB1, iya esihlokweni se-Microsoft TechNet” Khubaza i-SMB v1 ezindaweni eziphethwe kusetshenziswa Inqubomgomo Yeqembu . "
Abalawuli bangasebenzisa Ukufinyelela Kwefolda Elilawulwayo (okuxoxwe ngakho ekuqaleni kwalesi sihloko) ukumisa i-ransomware ekubetheleni amafayela namafolda kumakhompyutha Windows 11 noma Windows 10 inguqulo 1709 noma eyakamuva. Bangasebenzisa i-Group Policy Management Console, Windows Security Center, noma i-PowerShell ukuze bavule ukufinyelela kwefolda elawulwayo kubasebenzisi abakunethiwekhi, benze ngendlela oyifisayo ukuthi imaphi amafolda azowavikela, futhi bavumele izinhlelo zokusebenza ezengeziwe ukufinyelela amafolda ngaphandle kwezilungiselelo ezizenzakalelayo ze-Microsoft. Ukuze uthole imiyalelo, yiya esihlokweni se-Microsoft” Nika amandla ukufinyelela okulawulwayo kufolda "ukuyivula, futhi" Enza ngendlela oyifisayo Ukufinyelela Okulawulwayo Kufolda Enza ngendlela oyifisayo ukuthi imaphi amafolda ozowavikela nokuthi yiziphi izinhlelo zokusebenza ozovumela ithrafikhi.
Inkinga eyodwa engaba khona ngokulawula ukufinyelela kwefolda ukuthi ingase ivimbe izinhlelo zokusebenza abasebenzisi abavame ukuzisebenzisa ekufinyeleleni amafolda. Ngakho iMicrosoft incoma ukusebenzisa imodi yokuhlola kuqala, ukuze ubone ukuthi kuzokwenzekani uma uvula Ukulawulwa Kokufinyelela Kwefolda. Ukuze uthole imininingwane yokuthi ungakwenza kanjani lokhu, vakashela kokuthi Amadokhumenti. Sebenzisa Ukuhlola Ukuvikela Kusuka ku-Microsoft.
Njengoba kushiwo ngenhla, ama-Office macros angasakaza i-ransomware. I-Microsoft manje ivimba amamakhro alandwe ku-inthanethi ngokuzenzakalelayo, kodwa ukuze iphephe, i-IT kufanele isebenzise Inqubomgomo Yeqembu ukuze iwavimbe. Ukuze uthole amathiphu okuthi ungakwenza kanjani lokhu, vakashela ku-“ Vimba ukusebenzisa amamakhro kumafayela e-Office kusuka ku-inthanethi Kumadokhumenti e-Microsoft Amamakhro azovinjwa ku-inthanethi ngokuzenzakalelayo ku-Office "futhi" Ukusiza abasebenzisi ukuthi bahlale bephephile: Vimba amamakhro e-inthanethi ngokuzenzakalela kokuthunyelwe Office Blog".
izwi lokugcina
Izindaba ezinhle kukho konke lokhu: Windows 10 futhi Windows 11 inezici ezithile zokulwa ne-ransomware eyakhelwe ngaphakathi. Landela amathiphu esiwachaze lapha ukuze uvimbele usongo lwe-ransomware.
