![\"\"](\"https:\/\/www.hashtag.al\/wp-content\/uploads\/2025\/07\/haker-scaled.jpg\")
<\/p>\n<\/p>\n
Agjencia amerikane p\u00ebr projektimin e arm\u00ebve b\u00ebrthamore \u00ebsht\u00eb nj\u00eb nga organizatat q\u00eb ran\u00eb pre e hakerave kinez\u00eb q\u00eb sulmuan Microsoft Corporation. Microsoft paralajm\u00ebroi se hakerat kinez\u00eb t\u00eb sponsorizuar nga shteti shfryt\u00ebzuan t\u00eb metat n\u00eb softuerin e saj SharePoint p\u00ebr t\u00eb dep\u00ebrtuar n\u00eb institucione n\u00eb nivel global.<\/span><\/p>\n N\u00eb nj\u00eb postim n\u00eb blog, gjiganti i teknologjis\u00eb identifikoi dy grupe t\u00eb mb\u00ebshtetura nga qeveria kineze, Linen Typhoon dhe Violet Typhoon, si shfryt\u00ebzuese t\u00eb t\u00eb metave n\u00eb softuerin e saj t\u00eb ndarjes s\u00eb dokumenteve q\u00eb i b\u00ebnte klient\u00ebt q\u00eb e p\u00ebrdorin at\u00eb n\u00eb rrjetet e tyre, n\u00eb krahasim me ata n\u00eb rrjetet cloud, t\u00eb preksh\u00ebm. Nj\u00eb tjet\u00ebr grup hakerash me baz\u00eb n\u00eb Kin\u00eb, t\u00eb cilin Microsoft e quan Storm-2603, gjithashtu i shfryt\u00ebzoi ato t\u00eb meta, sipas blogut.<\/span><\/p>\n Numri i kompanive dhe agjencive t\u00eb goditura ndaj shkeljeve si rezultat i k\u00ebtyre shfryt\u00ebzimeve \u00ebsht\u00eb nd\u00ebrkoh\u00eb n\u00eb rritje: Haker\u00ebt kan\u00eb p\u00ebrdorur t\u00eb metat e SharePoint p\u00ebr t\u00eb dep\u00ebrtuar n\u00eb Administrat\u00ebn Komb\u00ebtare t\u00eb Siguris\u00eb B\u00ebrthamore t\u00eb SHBA-s\u00eb, sipas nj\u00eb personi me njohuri p\u00ebr \u00e7\u00ebshtjen i cili nuk ishte i autorizuar t\u00eb fliste publikisht. Bloomberg raportoi gjithashtu t\u00eb h\u00ebn\u00ebn se sistemet q\u00eb i p\u00ebrkisnin Departamentit t\u00eb Arsimit t\u00eb SHBA-s\u00eb, Departamentit t\u00eb t\u00eb Ardhurave t\u00eb Florid\u00ebs dhe Asambles\u00eb s\u00eb P\u00ebrgjithshme t\u00eb Rhode Island ishin kompromentuar gjithashtu.<\/span><\/p>\n Nd\u00ebrsa Microsoft ka p\u00ebrdit\u00ebsuar softuerin e tij dit\u00ebt e fundit, studiuesit e siguris\u00eb kibernetike kan\u00eb zbuluar tashm\u00eb shkelje n\u00eb m\u00eb shum\u00eb se 100 servera q\u00eb p\u00ebrfaq\u00ebsojn\u00eb 60 viktima deri m\u00eb tani, duke p\u00ebrfshir\u00eb organizata n\u00eb sektorin e energjis\u00eb, firma k\u00ebshilluese dhe universitete. Haker\u00ebt gjithashtu kan\u00eb shfryt\u00ebzuar softuerin p\u00ebr t\u00eb dep\u00ebrtuar n\u00eb sistemet e qeverive komb\u00ebtare nga Evropa n\u00eb Lindjen e Mesme, sipas nj\u00eb personi t\u00eb njohur me \u00e7\u00ebshtjen.<\/span><\/p>\n T\u00eb metat e SharePoint jan\u00eb p\u00ebrdorur n\u00eb sulme kibernetike q\u00eb t\u00eb pakt\u00ebn nga 7 korriku, tha Adam Meyers, n\u00ebnkryetar i lart\u00eb n\u00eb CrowdStrike Holdings Inc. Shfryt\u00ebzimi i hersh\u00ebm i ngjante veprimtaris\u00eb s\u00eb sponsorizuar nga qeveria dhe m\u00eb pas u p\u00ebrhap m\u00eb gjer\u00ebsisht duke p\u00ebrfshir\u00eb edhe sulmet kibernetike q\u00eb “duken si nga Kina”, tha Meyers. Hetimi i CrowdStrike p\u00ebr fushat\u00ebn \u00ebsht\u00eb duke vijuar, tha ai.<\/span><\/p>\n Microsoft tha n\u00eb blogun e saj se hetimet e saj p\u00ebr aktor\u00eb t\u00eb tjer\u00eb k\u00ebrc\u00ebnues q\u00eb p\u00ebrdorin k\u00ebto shfryt\u00ebzime “jan\u00eb ende duke vijuar”. Kompania tha se ka “besim t\u00eb fort\u00eb” se hakerat do “vijojn\u00eb t’i integrojn\u00eb ato n\u00eb sulmet e tyre”.<\/span><\/p>\n N\u00eb nj\u00eb deklarat\u00eb, Ambasada Kineze n\u00eb Uashington tha se Kina kund\u00ebrshton me vendosm\u00ebri t\u00eb gjitha format e sulmeve kibernetike dhe krimit kibernetik.<\/span><\/p>\n \u201cN\u00eb t\u00eb nj\u00ebjt\u00ebn koh\u00eb, ne gjithashtu kund\u00ebrshtojm\u00eb fuqimisht njollosjen e t\u00eb tjer\u00ebve pa prova t\u00eb forta\u201d<\/i><\/em>, tha ajo.<\/span><\/p>\n \u201cShpresojm\u00eb q\u00eb pal\u00ebt p\u00ebrkat\u00ebse t\u00eb miratojn\u00eb nj\u00eb q\u00ebndrim profesional dhe t\u00eb p\u00ebrgjegjsh\u00ebm kur karakterizojn\u00eb incidentet kibernetike, duke i bazuar p\u00ebrfundimet e tyre n\u00eb prova t\u00eb mjaftueshme dhe jo n\u00eb spekulime dhe akuza t\u00eb pabaza.\u201d<\/i><\/em><\/span><\/p>\n Nuk dihet q\u00eb asnj\u00eb informacion i ndjesh\u00ebm ose i klasifikuar t\u00eb jet\u00eb kompromentuar n\u00eb sulmin ndaj Administrat\u00ebs Komb\u00ebtare t\u00eb Siguris\u00eb B\u00ebrthamore, tha personi q\u00eb kishte dijeni p\u00ebr shkeljen. Krahu gjysm\u00ebautonom i Departamentit t\u00eb Energjis\u00eb \u00ebsht\u00eb p\u00ebrgjegj\u00ebs p\u00ebr prodhimin dhe \u00e7montimin e arm\u00ebve b\u00ebrthamore. Pjes\u00eb t\u00eb tjera t\u00eb departamentit u kompromentuan gjithashtu.<\/span><\/p>\n Nj\u00eb z\u00ebdh\u00ebn\u00ebs i Departamentit t\u00eb Energjis\u00eb tha me email se shfryt\u00ebzimi i SharePoint filloi t\u00eb ndikonte n\u00eb agjenci m\u00eb 18 korrik, por ishte i kufizuar nga fakti q\u00eb departamenti p\u00ebrdor cloud-in e Microsoft-it.<\/span><\/p>\n Nd\u00ebrkoh\u00eb, p\u00ebrfaq\u00ebsuesit e Departamentit t\u00eb Arsimit t\u00eb SHBA-s\u00eb dhe legjislatur\u00ebs s\u00eb Rhode Island nuk iu p\u00ebrgjigj\u00ebn telefonatave dhe emaileve q\u00eb k\u00ebrkonin koment. Departamenti i t\u00eb Ardhurave i Florid\u00ebs tha se dob\u00ebsit\u00eb e SharePoint po hetoheshin “n\u00eb nivele t\u00eb shum\u00ebfishta t\u00eb qeverisjes”, por nuk pranoi komente t\u00eb m\u00ebtejshme.<\/span><\/p>\n Hakerat kan\u00eb shkelur gjithashtu sistemet e nj\u00eb ofruesi t\u00eb kujdesit sh\u00ebndet\u00ebsor me baz\u00eb n\u00eb SHBA dhe kan\u00eb synuar nj\u00eb universitet publik n\u00eb Azin\u00eb Juglindore, sipas nj\u00eb raporti nga nj\u00eb firm\u00eb sigurie kibernetike e shqyrtuar nga Bloomberg News. <\/span><\/p>\n Raporti nuk identifikon asnj\u00eb entitet me em\u00ebr, por thot\u00eb se hakerat jan\u00eb p\u00ebrpjekur t\u00eb shkelin serverat e SharePoint n\u00eb vende duke p\u00ebrfshir\u00eb Brazilin, Kanadan\u00eb, Indonezin\u00eb, Spanj\u00ebn, Afrik\u00ebn e Jugut, Zvicr\u00ebn, Mbret\u00ebrin\u00eb e Bashkuar dhe SHBA-n\u00eb. Firma k\u00ebrkoi t\u00eb mos em\u00ebrohej p\u00ebr shkak t\u00eb ndjeshm\u00ebris\u00eb s\u00eb informacionit.<\/span><\/p>\n Kush jan\u00eb haker\u00ebt e identifikuar<\/b><\/strong><\/span><\/p>\n Microsoft ka identifikuar grupet e m\u00ebposhtme kineze t\u00eb hakerimit gjat\u00eb viteve<\/span><\/p>\n Violet Typhoon:<\/strong><\/span> Nj\u00eb nj\u00ebsi spiunazhi e p\u00ebrqendruar prej koh\u00ebsh te zyrtar\u00eb t\u00eb shquar qeveritar\u00eb dhe personel ushtarak<\/span><\/p>\n Linen Typhoon:<\/strong><\/span> Nj\u00eb grup i fsheht\u00eb q\u00eb ka kaluar m\u00eb shum\u00eb se nj\u00eb dekad\u00eb duke vjedhur pron\u00eb intelektuale<\/span><\/p>\n Volt Typhoon<\/strong>:<\/span> I njohur p\u00ebr synimin e sistemeve t\u00eb energjis\u00eb dhe ujit t\u00eb SHBA-s\u00eb, potencialisht p\u00ebr t\u00eb nd\u00ebrprer\u00eb sh\u00ebrbimet gjat\u00eb nj\u00eb lufte t\u00eb mundshme<\/span><\/p>\n Salt Typhoon:<\/strong><\/span> I p\u00ebrfshir\u00eb n\u00eb nj\u00eb sulm global hakerimi ndaj firmave t\u00eb telekomunikacionit, p\u00ebrfshir\u00eb n\u00ebnt\u00eb n\u00eb SHBA.<\/span><\/p>\n Silk Typhoon:<\/strong><\/span> Nj\u00eb nj\u00ebsi e dyshuar kineze e inteligjenc\u00ebs q\u00eb ka mbledhur inteligjenc\u00eb mbi k\u00ebrkimin p\u00ebr vaksin\u00ebn Covid-19<\/span><\/p>\n Sh\u00ebnim<\/span>:<\/b><\/strong>\u00a0Firmat e siguris\u00eb kibernetike shpesh em\u00ebrtojn\u00eb grupe hakerimi si pjes\u00eb e p\u00ebrpjekjeve t\u00eb tyre p\u00ebr t’i gjurmuar ato. Microsoft p\u00ebrdor nj\u00eb taksonomi em\u00ebrtimi p\u00ebr aktor\u00ebt k\u00ebrc\u00ebnues t\u00eb lidhur me tem\u00ebn e motit.<\/span><\/p>\n Haker\u00ebt kan\u00eb vjedhur kredencialet e hyrjes, duke p\u00ebrfshir\u00eb emrat e p\u00ebrdoruesit, fjal\u00ebkalimet, kodet dhe token\u00ebt, nga disa sisteme, sipas nj\u00eb personi t\u00eb njohur me \u00e7\u00ebshtjen, i cili k\u00ebrkoi t\u00eb mos identifikohej duke qen\u00eb se po diskutohet p\u00ebr informacione t\u00eb ndjeshme.<\/span><\/p>\n \u201cKy \u00ebsht\u00eb nj\u00eb k\u00ebrc\u00ebnim me urgjenc\u00eb t\u00eb madhe\u201d<\/i><\/em>, tha Michael Sikorski, drejtor i teknologjis\u00eb dhe kreu i inteligjenc\u00ebs s\u00eb k\u00ebrc\u00ebnimeve p\u00ebr Nj\u00ebsin\u00eb 42 n\u00eb Palo Alto Networks Inc.<\/span><\/p>\n \u201cAjo q\u00eb e b\u00ebn k\u00ebt\u00eb ve\u00e7an\u00ebrisht shqet\u00ebsuese \u00ebsht\u00eb integrimi i thell\u00eb i SharePoint me platform\u00ebn e Microsoft, duke p\u00ebrfshir\u00eb sh\u00ebrbimet e tyre si Office, Teams, OneDrive dhe Outlook, t\u00eb cilat kan\u00eb t\u00eb gjith\u00eb informacionin e vlefsh\u00ebm p\u00ebr nj\u00eb hakerues\u201d<\/i><\/em>, tha ai.<\/span><\/p>\n Firma kibernetike Eye Security tha se t\u00eb metat u lejojn\u00eb haker\u00ebve t\u00eb hyjn\u00eb n\u00eb serverat e SharePoint dhe t\u00eb vjedhin \u00e7el\u00ebsa q\u00eb mund t’i lejojn\u00eb ata t\u00eb imitojn\u00eb p\u00ebrdoruesit ose sh\u00ebrbimet edhe pasi serveri t\u00eb jet\u00eb riparuar. Ajo tha se haker\u00ebt mund t\u00eb ruajn\u00eb qasjen \u00a0p\u00ebrmes dyerve t\u00eb pasme ose p\u00ebrb\u00ebr\u00ebsve t\u00eb modifikuar q\u00eb mund t’i mbijetojn\u00eb p\u00ebrdit\u00ebsimeve dhe rinisjeve t\u00eb sistemeve.<\/span><\/p>\n Shkeljet kan\u00eb t\u00ebrhequr v\u00ebmendje t\u00eb re ndaj p\u00ebrpjekjeve t\u00eb Microsoft p\u00ebr t\u00eb forcuar sigurin\u00eb e saj pas nj\u00eb s\u00ebr\u00eb d\u00ebshtimesh t\u00eb profilit t\u00eb lart\u00eb. Firma ka pun\u00ebsuar drejtues nga vende si qeveria amerikane dhe mban takime javore me drejtues t\u00eb lart\u00eb p\u00ebr ta b\u00ebr\u00eb softuerin e saj m\u00eb elastik. <\/span><\/p>\n Teknologjia e kompanis\u00eb i \u00ebsht\u00eb n\u00ebnshtruar disa sulmeve kibernetike t\u00eb p\u00ebrhapura dhe d\u00ebmtuese n\u00eb vitet e fundit, dhe nj\u00eb raport i qeveris\u00eb amerikane i vitit 2024 e p\u00ebrshkroi kultur\u00ebn e siguris\u00eb s\u00eb kompanis\u00eb si nevoj\u00eb urgjente p\u00ebr reforma.<\/span><\/p>\n Eye Security ka zbuluar komprometime n\u00eb m\u00eb shum\u00eb se 100 servera q\u00eb p\u00ebrfaq\u00ebsojn\u00eb 60 viktima, duke p\u00ebrfshir\u00eb organizata n\u00eb sektorin e energjis\u00eb, firma konsulence dhe universitete. Viktimat ishin gjithashtu t\u00eb vendosura n\u00eb Arabin\u00eb Saudite, Vietnam, Oman dhe Emiratet e Bashkuara Arabe, sipas kompanis\u00eb.<\/span><\/p>\n N\u00eb fillim t\u00eb korrikut, Microsoft l\u00ebshoi p\u00ebrdit\u00ebsime p\u00ebr t\u00eb rregulluar boshll\u00ebqet e siguris\u00eb, por hakerat gjet\u00ebn nj\u00eb m\u00ebnyr\u00eb tjet\u00ebr p\u00ebr t\u00eb hyr\u00eb.<\/span><\/p>\n “Kishte m\u00ebnyra p\u00ebr t\u00eb anashkaluar p\u00ebrdit\u00ebsimet q\u00eb u mund\u00ebsonin hakerave t\u00eb hynin n\u00eb serverat e SharePoint duke p\u00ebrdorur dob\u00ebsi t\u00eb ngjashme\u201d<\/i><\/em>, tha Vaisha Bernard, ekspert kryesor dhe bashk\u00ebpronar i Eye Security.<\/span><\/p>\n “Kjo lejoi q\u00eb k\u00ebto sulme t\u00eb ndodhnin.”<\/i><\/em><\/span><\/p>\n Nd\u00ebrhyrjet, tha ai, nuk ishin t\u00eb synuara dhe n\u00eb vend t\u00eb k\u00ebsaj kishin p\u00ebr q\u00ebllim kompromentimin e sa m\u00eb shum\u00eb viktimave t\u00eb ishte e mundur.<\/span><\/p>\n Ai nuk pranoi t\u00eb identifikonte identitetin e organizatave q\u00eb ishin synuar, por tha se ato p\u00ebrfshinin agjenci qeveritare dhe kompani private, duke p\u00ebrfshir\u00eb “kompani shum\u00ebkomb\u00ebshe m\u00eb t\u00eb m\u00ebdha”. Viktimat ndodheshin n\u00eb vende n\u00eb Amerik\u00ebn e Veriut dhe t\u00eb Jugut, Bashkimin Evropian, Afrik\u00ebn e Jugut dhe Australi, tha ai.<\/span><\/p>\n![\"\"](\"https:\/\/www.hashtag.al\/wp-content\/uploads\/2025\/07\/250702-microsoft-se-229p-edaacd.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.hashtag.al\/wp-content\/uploads\/2022\/11\/hakera-1.jpg\")
<\/p>\n