E-Brazil, lapho amakhadi esikweletu engenye yezindlela eziyinhloko zokukhokha kanye nedatha yedijithali inenani eliqhathaniswa nemali, ubungozi bokukhwabanisa ku-inthanethi buya ngokuya budlanga, obudinga ukuqapha okukhulu okuvela kokubili abathengi namabhizinisi.
Ukunikeza umbono wezinga lenkinga, abantu baseBrazil abane kwabayishumi sebevele beyizisulu zokukhwabanisa nokukhwabanisa kwezezimali ezweni, abamele ama-42% abantu baseBrazil. Le datha ivela ku-"Digital Identity and Fraud Report 2024," inhlolovo eyenziwe nguSerasa Experian.
Olunye ucwaningo, kulokhu olwenziwa yiNational Confederation of Retail Leaders (CNDL) kanye neCredit Protection Service (SPC Brasil), ngokubambisana neSebrae, lukhombisa ukuthi babalelwa ku-8.4 million abathengi ababike umkhonyovu ezikhungweni zezimali ezinyangeni ezingu-12 ezedlule. Phakathi kwemikhonyovu, ukuhlanganisa amakhadi esikweletu nedebhithi wuhlobo oluyinhloko lokukhwabanisa.
Nakuba cishe u-70% wabantu baseBrazil banamakhadi esikweletu amathathu noma ngaphezulu, ngokusho kukaSerasa, umbono wobungozi usephansi. Cishe u-69% wabantu base-Brazil bayaqhubeka nokubukela phansi ubungozi bokubhalisa idatha yezezimali kumawebhusayithi nezinhlelo zokusebenza, okushiya ingxenye enkulu yabantu ichayeke emiqondweni yedijithali nokuhlasela kwe-inthanethi.
Phakathi kokukhathazeka okukhulayo mayelana nokuphepha kwedijithali, izindaba ezinhle ziyavela: imizamo emisha nentuthuko yezobuchwepheshe yenza indawo eku-inthanethi iphephe nsuku zonke.
Muva nje, i-PCI Security Standards Council (PCI SSC) iphakamise imihlahlandlela emisha yokuthuthukiswa okuqhubekayo nokuthuthukiswa kwamazinga okuphepha, asebenza ezinkampanini ezigcina, ezicubungula, noma ezidlulisa idatha yokukhokha, kanye nabathuthukisi nabakhiqizi besofthiwe namadivayisi asetshenziswa ekuthengiseni. I-PCI yinhlangano yomhlaba wonke ehlanganisa ndawonye ababambiqhaza ababalulekile embonini yokukhokha ukuze iqhubekisele phambili ukusetshenziswa kwezinsiza zokuthengiselana okuphephile.
"Njengoba izinsongo nobuchwepheshe bushintsha, izindinganiso ze-PCI DSS nazo ziyathuthukiswa. Ngakho-ke, kuyadingeka ukunaka izidingo ezintsha futhi wenze izinguquko ezidingekayo," kuxwayisa u-Wagner Elias, i-CEO ye-Conviso, umthuthukisi wezixazululo zokuphepha zohlelo lokusebenza.
Phakathi kwezibuyekezo kukhona lezo ze-Payment Card Industry Data Security Standard (PCI DSS), ezakhelwe ukuvikela lonke uchungechunge lwenani lezinkokhelo zekhadi. Izimfuneko zayo zokuthobela zimboza yonke into kusukela ekugcinweni kwedatha yomnikazi wekhadi ukuze kuvikelwe ukufinyelela olwazini lokukhokha olubucayi.
"Ngamafuphi, kuyadingeka ukuqinisa ukuvikelwa kwedatha yamakhasimende ngokusebenzisa izinyathelo ezengeziwe zokuvimbela ukufinyelela okungagunyaziwe," kusho uchwepheshe.
Ngakho-ke, izinkampani zizodinga ukuzivumelanisa nokutshala izimali kubuchwepheshe obusha. Ukukunikeza umbono, ezinye zalezi zixazululo ziyakwazi ukunikeza umbono ophelele wezingozi ezihlobene nohlelo lokusebenza ngalunye. "Lawa mathuluzi ahlanganisa amasistimu ahlukene, afaka phakathi ulwazi kanye nokusiza ekubekeni phambili izenzo, konke ngendlela eqhubekayo," kuchaza i-CEO ye-Conviso, mayelana nesiteji sayo se-Conviso Platform Application Security Posture Management (ASPM), eyethulwe ngo-2010.
Kodwa-ke, uchwepheshe uveza ukuthi izinkampani eziningi zisathatha isimo sokusebenza mayelana nokuphepha kwezinhlelo zazo, kuphela ezibeka phambili inkinga ngemva kokuhlaselwa. Lokhu kuziphatha, ngokusho kwakhe, kuyakhathaza, njengoba ukwephulwa kwezokuphepha kungaholela ekulahlekelweni okukhulu kwezimali kanye nokulimala okungenakulungiseka kwesithunzi senhlangano, okungagwenywa ngezinyathelo zokuvimbela.
Ngokusho kwakhe, uma kucutshungulwa ukudalwa kwesofthiwe entsha, kubalulekile ukuthi inkampani ihlanganise ukuphepha kuso sonke izigaba zomjikelezo wokudala, kusukela ekuqoqweni kwezimfuneko (isigaba sokuqala esihlaziya lokho uhlelo lokusebenza oluzokwenza) kuya ekusetshenzisweni (ukukhiqiza nokulethwa kokugcina).
"Ukuze ugweme lezi zingozi, umehluko obalulekile wukusebenzisa izinqubo Zokuphepha Kohlelo lokusebenza kusukela ekuqaleni kokuthuthukiswa kohlelo olusha. Lokhu kuqinisekisa ukufakwa kwezinyathelo zokuvikela kuzo zonke izigaba zomjikelezo wokuphila wesofthiwe. Ngaphandle kokuba ukonga kakhulu kunokulungisa umonakalo ngemva kwesigameko, ukutshala imali ekuvikelekeni kokuvimbela kusebenza kakhulu. Lokhu kukuvumela ukuthi uvimbele ukuhlaselwa, uvikele idatha ebucayi, uqinisekise ukuthobelana nemithetho kanye nesiqinisekiso sokuthi ukuqaliswa kwezinhlelo zokusebenza kuphephile," kusho uchwepheshe kanye nezinkombandlela zohlelo lokusebenza.
U-Wagner uchaza ukuthi inkampani ithuthukisa izixazululo ezihlanganisa ukuphepha ne-DevOps, okuvumela umugqa ngamunye wekhodi ukuthi uthuthukiswe ngezinqubo zokuvikela, ngaphezu kwezinsizakalo ezifana nokuhlolwa kokungena kanye nokunciphisa ubungozi. "Ukuhlaziya ukuphepha okuqhubekayo kanye nokuhlola okuzenzakalelayo kuvumela izinkampani ukuthi zihlangabezane namazinga ngaphandle kokuphazamisa ukusebenza kahle," kugcizelela uWagner.
Ngokungeziwe ekusebenziseni ubuchwepheshe obuqinile, i-CEO ye-Conviso igcizelela ukubaluleka kwezinkampani zokubonisana ezikhethekile, ezisiza izinkampani ukuthi zizivumelanise nezimfuneko ze-PCI DSS 4.0 neminye imithetho. Amasevisi ahlaselayo afana nokuhlolwa kokungena, iThimba Elibomvu, nokuhlola ukuphepha kwenkampani yangaphandle ikhuthaza indlela yokuphepha esheshayo nephelele, ehlonza futhi ilungise ubungozi ngaphambi kokuthi busetshenziswe.
Ukutshalwa kwezimali kufanele kusheshiswe.
Lokhu kuguqulwa kwezokuphepha kwedijithali akugcini nje ngokuqinisa ukuzethemba kwabathengi endaweni evikelekile ye-inthanethi, kodwa futhi kuhambisana nokukhula okusheshayo kwemakethe yezokuphepha yezicelo, okulindeleke ukuthi ikhule isuka ku-US$11.62 billion ngo-2024 iye ku-US$25.92 billion ngo-2029, ngokusho kukaMordor Intelligence. "Ukusebenzisa ubuchwepheshe obusezingeni eliphezulu kuphawula inguquko ekuvikelweni kwedijithali futhi kuqinisa ukuzethemba emakethe encike, kunanini ngaphambili, ekuvikelekeni ukuze iphumelele," kuphetha u-Wagner.
Bheka uhlu lwezimfuneko eziyi-12 ze-PCI DSS okufanele ukuqinisekiswa kokuthobela 4.0 kuhlangabezane nazo:
- Ukufaka nokugcina i-firewall
- Susa ukucushwa komthengisi okuzenzakalelayo.
- Vikela idatha yomnikazi wekhadi egciniwe.
- Ibethela ukudluliswa kwedatha yokukhokha
- Buyekeza isofthiwe yakho ye-antivirus njalo.
- Ukusebenzisa amasistimu nezinhlelo zokusebenza ezivikelekile
- Khawulela ukufinyelela kudatha yomnikazi wekhadi njengoba kudingeka.
- Yabela ukuhlonza ukufinyelela komsebenzisi
- Ikhawulela ukufinyelela okubonakalayo kudatha
- Landelela futhi uqaphe ukufinyelela kwenethiwekhi.
- Ukuhlola ngokuqhubekayo izinqubo namasistimu ukuze uthole ubungozi.
- Dala futhi ugcine inqubomgomo ye-infosec.
Ukuqaliswa kwemihlahlandlela ye-PCI DSS 4.0 kwenziwa ngezigaba ezimbili:
- Isigaba sokuqala, esinezidingo ezintsha eziyi-13, sasinomnqamulajuqu kaMashi 31, 2024.
- Isigaba sesibili, esinezidingo ezengeziwe ezingu-51, kufanele sisetshenziswe ngoMashi 31, 2025.
