I-AhaSlides iLuphumelele uvavanyo lokuNgena kwe-Viettel Cyber ​​​​Security

iZaziso

Iqela le-AhaSlides Nge-30 ka-Agasti, 2024 4 min funda

i-ahaslides iphumelele uvavanyo lokungena

Sichulumancile ukwazisa ukuba i-AhaSlides ikhuphe yonke into equka iGreybox Pentest elawulwa yiViettel Cyber ​​​​Security. Olu vavanyo lunzulu lokhuseleko lujolise kwiiplatifti zethu ezimbini ze-intanethi: i-Presenter app (presenter.ahaslides.com) kunye neapp yabaphulaphuli (abaphulaphuli.ahaslides.com).

Uvavanyo lokhuseleko, olwaqala nge-20 kaDisemba ukuya kwi-27 kaDisemba, 2023, lubandakanya ukuvavanywa ngokucokisekileyo malunga nobuthathaka obahlukeneyo bokhuseleko. Iqela elivela kwiViettel Cyber ​​​​Security lenze uhlalutyo olunzulu kwaye laphawula iindawo ezininzi zokuphucula kwinkqubo yethu.

Amaphuzu aphambili:

  • Ixesha lovavanyo: Disemba 20-27, 2023
  • Ububanzi: Uhlalutyo olunzulu lweendlela ezahlukeneyo zobuthathaka bokhuseleko
  • Isiphumo: I-AhaSlides iphumelele uvavanyo emva kokujongana nobuthathaka obuchongiweyo
  • Impembelelo: Ukhuseleko oluphuculweyo kunye nokuthembeka kubasebenzisi bethu

Yintoni iPentest yeViettel Security?

IPentest, emfutshane yoVavanyo lokuNgena, ngokusisiseko luhlaselo oluhlekisayo lwe-cyberattack kwinkqubo yakho ukufumanisa iibugs ezisebenzisekayo. Kumxholo wosetyenziso lwewebhu, iPentest luvavanyo olupheleleyo lokukhomba, ukuhlalutya, kunye nokuxela malunga neziphene zokhuseleko ngaphakathi kwesicelo. Yicinge njengovavanyo loxinzelelo kukhuseleko lwenkqubo yakho - ibonisa apho ulwaphulo olunokuthi lwenzeke.

Iqhutywa ngabasebenzi abanamava eViettel Cyber ​​​​Security, inja ephezulu kwindawo yokhuseleko lwe-cybersecurity, olu vavanyo luyinxalenye yenkonzo yabo yokhuseleko olubanzi. Indlela yokuvavanya iGreybox esetyenziswa kuvavanyo lwethu ibandakanya imiba yebhokisi emnyama kunye novavanyo lwebhokisi emhlophe. Abavavanyi bane-intel ekusebenzeni kwangaphakathi kweqonga lethu, belinganisa uhlaselo lwehacker enonxibelelwano lwangaphambili kunye nenkqubo.

Ngokuxhaphaza ngokucwangcisiweyo iinkalo ezahlukeneyo zesiseko sethu sewebhu, ukusuka kulungiselelo olugwenxa lweseva kunye noshicilelo lwesayithi ukuya kungqinisiso olwaphukileyo kunye nokuvezwa kwedatha enovakalelo, iPentest ibonelela ngomfanekiso wokwenyani wezoyikiso ezinokubakho. Icokisekile, ibandakanya ii-vectors ezahlukeneyo zohlaselo, kwaye iqhutywa kwindawo elawulwayo ukuqinisekisa ukuba akukho bungozi bokwenyani kwiinkqubo ezibandakanyekayo.

Ingxelo yokugqibela ayichongi kuphela ubuthathaka kodwa iphinda ibeke phambili ngokungqongqo kwaye ibandakanya iingcebiso zokuyilungisa. Ukuphumelela olo vavanyo lubanzi nolungqongqo kugxininisa ukomelela kwe-cybersecurity yombutho kwaye sisisiseko sokwakha ukuthembela kwixesha ledijithali.

Ubuthathaka obuchongiweyo kunye noLungiso

Ngethuba lesigaba sovavanyo, ubuthathaka obuninzi bufunyenwe, ukusuka kwi-Cross-Site Scripting (XSS) ukuya kwi-Broken Access Control (BAC) imiba. Ukuthetha ngokuthe ngqo, uvavanyo lutyhile ubuthathaka obunje ngokuGcina i-XSS kwiimpawu ezininzi, iiReferensi zeNgcaciso engaKhusekanga (IDOR) kumsebenzi wokucinywa kwePresentation, kunye nokuNyuswa kweLungelo kuzo zonke iinkalo zokusebenza.

Iqela letekhnoloji ye-AhaSlides, esebenzisana neViettel Cyber ​​​​Security, ilungise yonke imiba echongiweyo.. Imilinganiselo efana nokuhluzwa kwedatha yegalelo, ukufakwa kwekhowudi yokuphuma kwedatha, ukusetyenziswa kweentloko zeempendulo ezifanelekileyo, kunye nokwamkelwa koMgaqo-nkqubo oqinileyo woKhuseleko loMxholo (CSP) uphunyeziwe ukuqinisa ukhuseleko lwethu.

I-AhaSlides iLuphumelele ngempumelelo uvavanyo lokuNgena ngoKhuseleko lweViettel

Zomibini izicelo ze-Presenter kunye nabaphulaphuli ziye zaphumelela ngempumelelo uvavanyo olubanzi lokungena olwenziwa nguViettel Security. Olu vavanyo lungqongqo lugxininisa ukuzinikela kwethu kwizenzo zokhuseleko oluluqilima kunye nokukhuselwa kwedatha yabasebenzisi.

Uvavanyo, olwaqhutywa ngoDisemba ka-2023, lwasebenzisa indlela yokusebenza yeGreybox, ilinganisa imeko yohlaselo lwehlabathi lokwenyani. Iingcali zokhuseleko zaseViettel zivavanye ngobuchule iqonga lethu lobuthathaka, ukuchonga iindawo ekufuneka ziphuculwe.

Ubuthathaka obuchongiweyo busonjululwe liqela lobunjineli be-AhaSlides ngentsebenziswano noKhuseleko lweViettel. Amanyathelo aphunyeziweyo abandakanya ukuhluzwa kwedatha yegalelo, ukufakwa kwekhowudi yedatha, uMgaqo-nkqubo woKhuseleko woMxholo oqinileyo (CSP), kunye neentloko ezifanelekileyo zokuphendula ukuqinisa ngakumbi iqonga.

I-AhaSlides ityale imali kwizixhobo zokubeka iliso ezikwinqanaba lokwenyani lokufunyanwa kunye nokuphendula. Ukongeza, iiprothokholi zethu zokuphendula kwisehlo ziye zalungiswa ukuze kuqinisekiswe isenzo esikhawulezileyo nesisebenzayo kwimeko yokwaphulwa kokhuseleko.

Iqonga eliKhuselekileyo nelikhuselweyo

Abasebenzisi banokuqiniseka ukuba idatha yabo ikhuselwe kwaye amava abo okunxibelelana ahlala ekhuselekile. Ngovavanyo oluqhubekayo lokhuseleko kunye nokuphuculwa okuqhubekayo, sizibophelele ekwakheni iqonga elithembekileyo nelikhuselekileyo kubasebenzisi bethu.

tags:
Iqela le-AhaSlides

AhaSlides Team

Sithandwa ngabasebenzisi abazizigidi ezi-2 kwihlabathi liphela, siliqela labafundisi-ntsapho, oosomashishini, kunye nabathanda itekhnoloji abazinikele ekwenzeni iinkcazo-ntetho zakho zinganeli nje ukufundisa, kodwa zikhumbuleke ngokwenene.

Iingcebiso zokuZibandakanya neePolls & Trivia

inkwenkwezi yeleta yeendaba
👏 Enkosi ngokubhalisa!

Okungakumbi kwiAhaSlides

I-AhaSlides ngo-2022-Khumbula kwakhona amanqaku ethu amatsha!

iZaziso

I-AhaSlides ngo-2022-Khumbula kwakhona amanqaku ethu amatsha!
IAhaSlides yaseUkraine

iZaziso

IAhaSlides yaseUkraine
Hopin x AhaSlides: iNtsebenziswano eNtsha yeMisitho eSebenzayo

iZaziso

Hopin x AhaSlides: iNtsebenziswano eNtsha yeMisitho eSebenzayo
Abantu baseAhaSlides | Ukwazi uLawrence Haywood

iZaziso

Abantu baseAhaSlides | Ukwazi uLawrence Haywood
I-AhaSlides 'Yonke iNqaku elitsha

iZaziso

I-AhaSlides 'Yonke iNqaku elitsha
I-NTU Alumni Qhagamshela kwaye iZibandakanye kwiNkomfa yeNgingqi kunye ne-AhaSlides

iZaziso

I-NTU Alumni Qhagamshela kwaye iZibandakanye kwiNkomfa yeNgingqi kunye ne-AhaSlides
I-AhaSlides kuMnyhadala we-HR Tech eAsia ngo-2024

iZaziso

I-AhaSlides kuMnyhadala we-HR Tech eAsia ngo-2024
I-AhaSlides x Udibaniso loSondeza: iDuo eDynamic oyidingayo kuNxibelelwano olonwabisayo

iZaziso

I-AhaSlides x Udibaniso loSondeza: iDuo eDynamic oyidingayo kuNxibelelwano olonwabisayo