{"id":203257,"date":"2022-05-17T17:37:00","date_gmt":"2022-05-17T14:37:00","guid":{"rendered":"https:\/\/howto.com.de\/?p=203257"},"modified":"2022-05-18T01:08:57","modified_gmt":"2022-05-17T22:08:57","slug":"vaerskendatud-x2-psa-kui-olete-kunagi-slickwrapsist-midagi-ostnud-on-kogu-teie-isiklik-teave-ohustatud","status":"publish","type":"post","link":"https:\/\/howto.com.de\/et\/vaerskendatud-x2-psa-kui-olete-kunagi-slickwrapsist-midagi-ostnud-on-kogu-teie-isiklik-teave-ohustatud\/","title":{"rendered":"[V\u00e4rskendatud x2] PSA: kui olete kunagi SlickWrapsist midagi ostnud, on kogu teie isiklik teave ohustatud"},"content":{"rendered":"\n<p>SlickWraps<\/p>\n<p>SlickWrapsil, \u00fchel tuntumal seadmenahatootjal, n\u00e4ib olevat suur turvaprobleem. Twitteri k\u00e4epidet <a href=\"https:\/\/twitter.com\/Lynx0x00\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Lynx0x00 uurinud turvateadlasel<\/a> \u00f5nnestus p\u00e4\u00e4seda SlickWrapsi s\u00fcsteemidesse ja teha kompromisse n\u00e4iliselt k\u00f5iges. Kui olete SlickWrapsi klient, on aeg <a href=\"https:\/\/www.howtogeek.com\/209396\/how-to-prevent-identity-thieves-from-opening-accounts-in-your-name\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">oma krediit lukustada<\/a> ja paroole muuta.<\/p>\n<hr \/>\n<p><strong>V\u00e4rskendus, 21.02.:<\/strong> Vahetult p\u00e4rast selle postituse avaldamist avaldas SlickWraps oma Twitteri konto kaudu ametliku avalduse:<\/p>\n<p><a href=\"https:\/\/twitter.com\/SlickWraps\/status\/1230929725192839170?s=20\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">https:\/\/twitter.com\/SlickWraps\/status\/1230929725192839170?s=20<\/a><\/p>\n<p><strong>V\u00e4rskendus x2, 21.02.: <\/strong> algne Medium-postitus, milles kirjeldatakse seda rikkumist, pole enam saadaval. Arhiveeritud versiooni <a href=\"https:\/\/archive.fo\/yEIJT\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">leiate siit<\/a>.<\/p>\n<p>Algne aruanne j\u00e4etakse allpool puutumata.<\/p>\n<hr \/>\n<p>Nagu ta <a href=\"https:\/\/medium.com\/@lynx0x00\/i-hacked-slickwraps-this-is-how-8b0806358fbb\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">keskmises postituses selgitas<\/a>, hakkas Lynx0x00 esmalt SlickWrapsi uurima Twitteri klienditeeninduse kaebuste t\u00f5ttu. Kuid t\u00f5eline lugu algab sellest, kui ta n\u00e4gi v\u00e4idet, et h\u00e4kker rikkus SlickWrapsi ZenDeski kontosid. Ja nii hakkas katsetama.<\/p>\n<p>Ei l\u00e4inud kaua, kui tal oli t\u00e4ielik juurdep\u00e4\u00e4s klientide andmebaasidele. Ettev\u00f5tte veebisaidi telefoni\u00fcmbriste kohandamise ala sisaldas haavatavust, mis v\u00f5imaldas k\u00f5igil, kellel on \u00f5iged t\u00f6\u00f6riistad, laadida mis tahes faili mis tahes asukohta oma serveri k\u00f5rgeimas kataloogis. Sealt edasi kukkus k\u00f5ik muu nagu doominokivi.<\/p>\n<p>Lynx \u00fctleb, et sai juurdep\u00e4\u00e4su ettev\u00f5tte andmebaasidele, Slackile, nende maksel\u00fc\u00fcside tehingulogidele ja isegi t\u00e4ieliku kontrolli ettev\u00f5tte sisuhalduss\u00fcsteemi \u00fcle.<\/p>\n<p>L\u00f5puks p\u00fc\u00fcdis ta SlickWrapsi haavatavust avalikustada nii tavap\u00e4raste vahenditega (nagu h\u00e4sti s\u00f5nastatud e-kiri) kui ka ebatavaliste vahenditega (nagu <a href=\"https:\/\/twitter.com\/Lynx0x00\/status\/1228847617884479489?s=20\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">ebam\u00e4\u00e4rane<\/a> s\u00e4uts v\u00e4hem ebam\u00e4\u00e4raste j\u00e4relmeetmetega). Esialgu j\u00e4id tema kontaktikatsed vastuseta ja ettev\u00f5te blokeeris ta isegi Twitteris.<\/p>\n<p>L\u00f5puks \u00f5nnestus tal SlickWrapsi sotsiaalmeedia meeskonnaga \u00fchendust saada, kuid see arutelu l\u00e4ks halvasti ja ettev\u00f5te blokeeris ta uuesti. See viis selleni, et Lynx avaldas oma leiud saidil Medium. SlickWrap ei ole omalt poolt Lynxi v\u00e4iteid tunnistanud ja tema Twitteri konto vaikib raadiost. V\u00e4rskendame seda postitust, kui ettev\u00f5te avaldab avalduse. (<strong>Redigeeri: <\/strong> saate lugeda \u00fclaltoodud SlickWrapi avaldust.)<\/p>\n<p>Kahjuks on meil p\u00f5hjust arvata, et kellelgi on juurdep\u00e4\u00e4s SlickWrapsi kontodele ja teenustele. Kliendid hakkavad postitama e-kirju ametlikult SlickWrapsi meilikontolt, kuid mille on kirjutanud keegi teine. Lynx on teatanud, et ta ei kirjutanud meili.<\/p>\n<div class=\"sds-iframe-wrapper fitvidsignore\" style=\"position:relative;padding-top:56.25%;max-width:100%;\"><iframe allowfullscreen style=\"position:absolute;top:0;left:0;width:100%;height:100%;\" src=\"\/\/platform.twitter.com\/embed\/Tweet.html\" frameborder=\"0\"><\/iframe><\/div>\n<p>Kui olete kunagi SlickWrapsilt midagi ostnud, v\u00f5ite soovida <a href=\"https:\/\/www.howtogeek.com\/209396\/how-to-prevent-identity-thieves-from-opening-accounts-in-your-name\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">oma krediit lukustada<\/a> ja v\u00f5tta \u00fchendust oma krediitkaardifirmadega.<\/p>\n<p>V\u00f5ib-olla soovite ka paroolid l\u00e4htestada ja kui kasutate sama parooli paljudel saitidel, peaksite l\u00f5petama. Iga veebisaidi jaoks ainulaadsete paroolide loomiseks soovitame kasutada <a href=\"https:\/\/www.howtogeek.com\/141500\/why-you-should-use-a-password-manager-and-how-to-get-started\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">paroolihaldurit .<\/a><\/p>\n<p>Lynx0x00 kaudu <a href=\"https:\/\/medium.com\/@lynx0x00\/i-hacked-slickwraps-this-is-how-8b0806358fbb\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Mediumis<\/a><\/p>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/www.reviewgeek.com\" class=\"external external_icon\">www.reviewgeek.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>SlickWrapsil, \u00fchel tuntumal seadmete nahatootjal, n\u00e4ib olevat suur turvaprobleem. Twitteri k\u00e4epideme Lynx0x00 juures tegutsenud turvauurijal \u00f5nnestus p\u00e4\u00e4seda SlickWrapsi s\u00fcsteemidesse ja teha kompromisse n\u00e4iliselt k\u00f5iges. Kui olete SlickWrapsi klient, on aeg oma krediit lukustada ja paroole muuta.<\/p>\n","protected":false},"author":1,"featured_media":190594,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[],"tags":[],"class_list":["post-203257","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/posts\/203257","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/comments?post=203257"}],"version-history":[{"count":0,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/posts\/203257\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/media\/190594"}],"wp:attachment":[{"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/media?parent=203257"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/categories?post=203257"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/howto.com.de\/et\/wp-json\/wp\/v2\/tags?post=203257"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}