{"id":74,"date":"2025-12-29T06:48:19","date_gmt":"2025-12-29T06:48:19","guid":{"rendered":"https:\/\/www.nsecsoft.com\/vi\/?p=74"},"modified":"2025-12-29T10:15:11","modified_gmt":"2025-12-29T10:15:11","slug":"ping32-risk-rating-29s","status":"publish","type":"post","link":"https:\/\/www.nsecsoft.com\/vi\/default\/ping32-risk-rating-29s.html","title":{"rendered":"Ping32 | DLP: Ch\u1ea5m \u0111i\u1ec3m r\u1ee7i ro r\u00f2 r\u1ec9 d\u1eef li\u1ec7u (Risk Rating)"},"content":{"rendered":"

Trong b\u1ed1i c\u1ea3nh chuy\u1ec3n \u0111\u1ed5i s\u1ed1 t\u0103ng t\u1ed1c, d\u1eef li\u1ec7u \u0111\u00e3 tr\u1edf th\u00e0nh t\u00e0i s\u1ea3n c\u1ed1t l\u00f5i c\u1ee7a doanh nghi\u1ec7p: m\u00e3 ngu\u1ed3n, t\u00e0i li\u1ec7u thi\u1ebft k\u1ebf s\u1ea3n ph\u1ea9m, d\u1eef li\u1ec7u R&D, th\u00f4ng tin kh\u00e1ch h\u00e0ng, h\u1ee3p \u0111\u1ed3ng \u2013 b\u00e1o gi\u00e1, b\u00e1o c\u00e1o t\u00e0i ch\u00ednh, d\u1eef li\u1ec7u v\u1eadn h\u00e0nh, danh m\u1ee5c nh\u00e0 cung c\u1ea5p\u2026 Ch\u1ec9 m\u1ed9t s\u1ef1 c\u1ed1 r\u00f2 r\u1ec9 d\u1eef li\u1ec7u (Data Leakage) ho\u1eb7c d\u1eef li\u1ec7u b\u1ecb tu\u1ed3n ra ngo\u00e0i (Data Exfiltration) c\u0169ng c\u00f3 th\u1ec3 k\u00e9o theo thi\u1ec7t h\u1ea1i t\u00e0i ch\u00ednh, r\u1ee7i ro tu\u00e2n th\u1ee7, tranh ch\u1ea5p s\u1edf h\u1eefu tr\u00ed tu\u1ec7 v\u00e0 \u1ea3nh h\u01b0\u1edfng nghi\u00eam tr\u1ecdng \u0111\u1ebfn uy t\u00edn th\u01b0\u01a1ng hi\u1ec7u.<\/p>\n

Ping32 cung c\u1ea5p n\u0103ng l\u1ef1c x\u1ebfp h\u1ea1ng r\u1ee7i ro truy v\u1ebft r\u00f2 r\u1ec9 d\u1eef li\u1ec7u<\/strong> d\u00e0nh cho c\u00e1c k\u1ecbch b\u1ea3n Data Loss Prevention (DLP)<\/strong><\/a> v\u00e0 endpoint data security<\/strong>. N\u1ec1n t\u1ea3ng th\u1ef1c hi\u1ec7n ch\u1ea5m \u0111i\u1ec3m r\u1ee7i ro (Risk Scoring)<\/strong> v\u00e0 ph\u00e2n lo\u1ea1i m\u1ee9c \u0111\u1ed9 s\u1ef1 c\u1ed1 (Risk Rating)<\/strong> d\u1ef1a tr\u00ean nhi\u1ec1u y\u1ebfu t\u1ed1 nh\u01b0 lo\u1ea1i t\u1ec7p, m\u1ee9c \u0111\u1ed9 nh\u1ea1y c\u1ea3m c\u1ee7a n\u1ed9i dung, k\u00eanh exfiltration, quy m\u00f4 d\u1eef li\u1ec7u v\u00e0 nguy c\u01a1 lan truy\u1ec1n. K\u1ebft qu\u1ea3 tr\u1ea3 v\u1ec1 g\u1ed3m m\u1ee9c r\u1ee7i ro c\u00f3 th\u1ec3 gi\u1ea3i th\u00edch<\/strong> v\u00e0 chu\u1ed7i b\u1eb1ng ch\u1ee9ng (Audit Trail \/ Evidence Trail)<\/strong>, \u0111\u1ed3ng th\u1eddi c\u00f3 th\u1ec3 li\u00ean k\u1ebft ch\u00ednh s\u00e1ch ki\u1ec3m so\u00e1t g\u1eedi ra ngo\u00e0i (egress control)<\/strong>, audit l\u01b0u v\u1ebft<\/strong>, \u01b0u ti\u00ean c\u1ea3nh b\u00e1o<\/strong> v\u00e0 \u0111i\u1ec1u ph\u1ed1i \u0111i\u1ec1u tra<\/strong> \u0111\u1ec3 t\u1ea1o quy tr\u00ecnh kh\u00e9p k\u00edn t\u1eeb \u201cph\u00e1t hi\u1ec7n \u2192 ph\u00e2n t\u00edch \u2192 x\u1eed l\u00fd \u2192 truy v\u1ebft\u201d.<\/p>\n

Nhi\u1ec1u doanh nghi\u1ec7p sau khi tri\u1ec3n khai ki\u1ec3m so\u00e1t endpoint, nh\u1eadn di\u1ec7n n\u1ed9i dung nh\u1ea1y c\u1ea3m, watermark, gi\u00e1m s\u00e1t h\u00e0nh vi\u2026 \u0111\u00e3 c\u00f3 th\u1ec3 \u201cph\u00e1t hi\u1ec7n v\u00e0 truy v\u1ebft\u201d: x\u00e1c \u0111\u1ecbnh endpoint ngu\u1ed3n, user thao t\u00e1c, \u0111\u01b0\u1eddng lan truy\u1ec1n v\u00e0 k\u00eanh g\u1eedi ra ngo\u00e0i. Tuy nhi\u00ean, trong v\u1eadn h\u00e0nh th\u1ef1c t\u1ebf c\u1ee7a SOC\/SecOps, \u0111i\u1ec3m ngh\u1ebdn th\u01b0\u1eddng kh\u00f4ng n\u1eb1m \u1edf \u201cc\u00f3 truy v\u1ebft \u0111\u01b0\u1ee3c hay kh\u00f4ng\u201d, m\u00e0 l\u00e0 \u201ctruy v\u1ebft xong \u0111\u00e1nh gi\u00e1 m\u1ee9c \u0111\u1ed9 th\u1ebf n\u00e0o, \u01b0u ti\u00ean x\u1eed l\u00fd ra sao v\u00e0 ch\u1ed1t h\u00e0nh \u0111\u1ed9ng gi\u1ea3m thi\u1ec3u thi\u1ec7t h\u1ea1i (containment) nhanh \u0111\u1ebfn m\u1ee9c n\u00e0o\u201d.<\/p>\n

\"\"<\/p>\n

Kh\u00f4ng hi\u1ebfm tr\u01b0\u1eddng h\u1ee3p trong c\u00f9ng m\u1ed9t ng\u00e0y xu\u1ea5t hi\u1ec7n nhi\u1ec1u c\u1ea3nh b\u00e1o: c\u00f3 ng\u01b0\u1eddi g\u1eedi qua IM, c\u00f3 ng\u01b0\u1eddi upload l\u00ean cloud drive, c\u00f3 ng\u01b0\u1eddi copy ra USB, c\u00f3 ng\u01b0\u1eddi g\u1eedi qua email ho\u1eb7c \u1ee9ng d\u1ee5ng b\u00ean th\u1ee9 ba. N\u1ebfu thi\u1ebfu m\u1ed9t chu\u1ea9n \u0111\u00e1nh gi\u00e1 th\u1ed1ng nh\u1ea5t, \u0111\u1ed9i ng\u0169 d\u1ec5 r\u01a1i v\u00e0o t\u00ecnh tr\u1ea1ng x\u1eed l\u00fd d\u00e0n tr\u1ea3i: s\u1ef1 c\u1ed1 nguy hi\u1ec3m b\u1ecb ch\u1eadm ph\u1ea3n \u1ee9ng, trong khi s\u1ef1 c\u1ed1 \u00edt \u1ea3nh h\u01b0\u1edfng l\u1ea1i ti\u00eau t\u1ed1n nhi\u1ec1u c\u00f4ng s\u1ee9c \u0111i\u1ec1u tra; qu\u1ea3n l\u00fd c\u0169ng kh\u00f3 n\u1eafm \u201cb\u1ee9c tranh r\u1ee7i ro\u201d n\u1ebfu kh\u00f4ng c\u00f3 ch\u1ec9 s\u1ed1 \u0111\u1ecbnh l\u01b0\u1ee3ng r\u00f5 r\u00e0ng.<\/p>\n

V\u00ec sao doanh nghi\u1ec7p c\u1ea7n Risk Rating
\nkh\u00f4ng ch\u1ec9 truy v\u1ebft r\u00f2 r\u1ec9?<\/strong><\/h4>\n

Truy v\u1ebft r\u00f2 r\u1ec9 gi\u00fap tr\u1ea3 l\u1eddi \u201cai \u2013 khi n\u00e0o \u2013 b\u1eb1ng c\u00e1ch n\u00e0o \u2013 \u0111\u00e3 \u0111\u01b0a t\u1ec7p n\u00e0o ra ngo\u00e0i\u201d. Nh\u01b0ng \u0111\u1ec3 ra quy\u1ebft \u0111\u1ecbnh x\u1eed l\u00fd, \u0111\u1ed9i an ninh c\u1ea7n th\u00eam ba c\u00e2u h\u1ecfi quan tr\u1ecdng: (1) t\u00e1c \u0111\u1ed9ng ti\u1ec1m \u1ea9n l\u1edbn \u0111\u1ebfn m\u1ee9c n\u00e0o, c\u00f3 ch\u1ea1m ng\u01b0\u1ee1ng tu\u00e2n th\u1ee7 hay t\u00e0i s\u1ea3n c\u1ed1t l\u00f5i kh\u00f4ng; (2) c\u00f3 c\u1ea7n ph\u1ea3n \u1ee9ng ngay v\u00e0 escalated kh\u00f4ng; (3) c\u1ea7n bao nhi\u00eau ngu\u1ed3n l\u1ef1c \u0111\u1ec3 \u0111i\u1ec1u tra, thu th\u1eadp ch\u1ee9ng c\u1ee9 v\u00e0 ph\u1ee5c h\u1ed3i. Khi thi\u1ebfu m\u1ed9t c\u01a1 ch\u1ebf \u0111\u1ecbnh l\u01b0\u1ee3ng, c\u00e1c quy\u1ebft \u0111\u1ecbnh th\u01b0\u1eddng d\u1ef1a v\u00e0o kinh nghi\u1ec7m c\u00e1 nh\u00e2n, khi\u1ebfn triage v\u00e0 \u01b0u ti\u00ean c\u1ea3nh b\u00e1o thi\u1ebfu nh\u1ea5t qu\u00e1n, kh\u00f3 t\u1ed1i \u01b0u theo th\u1eddi gian.<\/p>\n

Risk Rating trong Ping32 h\u01b0\u1edbng \u0111\u1ebfn vi\u1ec7c chu\u1ea9n h\u00f3a quy tr\u00ecnh v\u1eadn h\u00e0nh: bi\u1ebfn s\u1ef1 c\u1ed1 r\u00f2 r\u1ec9 th\u00e0nh \u0111\u1ed1i t\u01b0\u1ee3ng c\u00f3 th\u1ec3 \u0111o l\u01b0\u1eddng, x\u1ebfp h\u00e0ng \u01b0u ti\u00ean, gi\u1ea3i th\u00edch nguy\u00ean nh\u00e2n v\u00e0 k\u00edch ho\u1ea1t h\u00e0nh \u0111\u1ed9ng ki\u1ec3m so\u00e1t ph\u00f9 h\u1ee3p.<\/p>\n

Risk Rating cho truy v\u1ebft r\u00f2 r\u1ec9 d\u1eef
\nli\u1ec7u c\u1ee7a Ping32 l\u00e0 g\u00ec?<\/strong><\/h4>\n

Risk Rating l\u00e0 c\u01a1 ch\u1ebf \u0111\u00e1nh gi\u00e1 r\u1ee7i ro \u0111\u01b0\u1ee3c x\u00e2y d\u1ef1ng tr\u00ean n\u1ec1n t\u1ea3ng gi\u00e1m s\u00e1t & truy v\u1ebft r\u00f2 r\u1ec9 c\u1ee7a Ping32. H\u1ec7 th\u1ed1ng t\u1ed5ng h\u1ee3p c\u00e1c y\u1ebfu t\u1ed1 then ch\u1ed1t \u0111\u1ec3 t\u1ea1o \u0111i\u1ec3m r\u1ee7i ro (Risk Score)<\/strong>, m\u1ee9c ph\u00e2n lo\u1ea1i (Risk Level\/Rating)<\/strong> v\u00e0 c\u0103n c\u1ee9 gi\u1ea3i th\u00edch k\u00e8m chu\u1ed7i b\u1eb1ng ch\u1ee9ng (audit trail)<\/strong>. M\u1ee5c ti\u00eau l\u00e0 gi\u00fap \u0111\u1ed9i SOC\/SecOps ph\u00e2n lu\u1ed3ng nhanh, t\u1eadp trung v\u00e0o s\u1ef1 c\u1ed1 high-risk, \u0111\u1ed3ng th\u1eddi \u0111\u1ea3m b\u1ea3o m\u1ecdi k\u1ebft lu\u1eadn \u0111\u1ec1u c\u00f3 th\u1ec3 ki\u1ec3m tra v\u00e0 truy v\u1ebft khi c\u1ea7n audit ho\u1eb7c \u0111i\u1ec1u tra.<\/p>\n

Ch\u1ea5m \u0111i\u1ec3m \u0111a chi\u1ec1u: khoa h\u1ecdc v\u00e0 gi\u1ea3i th\u00edch \u0111\u01b0\u1ee3c<\/strong><\/h4>\n

1) Lo\u1ea1i t\u1ec7p & gi\u00e1 tr\u1ecb t\u00e0i s\u1ea3n: r\u00f2 r\u1ec9 \u201cc\u00e1i g\u00ec\u201d?<\/strong><\/p>\n

C\u00e1c nh\u00f3m d\u1eef li\u1ec7u th\u01b0\u1eddng c\u00f3 m\u1ee9c r\u1ee7i ro r\u1ea5t kh\u00e1c nhau:<\/p>\n

    \n
  • \n

    T\u00e0i s\u1ea3n R&D \/ IP<\/strong>: m\u00e3 ngu\u1ed3n (source code), t\u00e0i li\u1ec7u thu\u1eadt to\u00e1n, roadmap R&D, thi\u1ebft k\u1ebf s\u1ea3n ph\u1ea9m, h\u1ed3 s\u01a1 s\u00e1ng ch\u1ebf.<\/p>\n<\/li>\n

  • \n

    S\u1ea3n xu\u1ea5t\/Engineering<\/strong>: b\u1ea3n v\u1ebd CAD, BOM, th\u00f4ng s\u1ed1 c\u00f4ng ngh\u1ec7, d\u1eef li\u1ec7u test, c\u00f4ng th\u1ee9c\/recipe thi\u1ebft b\u1ecb.<\/p>\n<\/li>\n

  • \n

    Kh\u00e1ch h\u00e0ng\/B\u00e1n h\u00e0ng<\/strong>: danh s\u00e1ch kh\u00e1ch h\u00e0ng, b\u00e1o gi\u00e1, h\u1ee3p \u0111\u1ed3ng, ch\u00ednh s\u00e1ch k\u00eanh, chi\u1ebfn l\u01b0\u1ee3c b\u00e1n h\u00e0ng.<\/p>\n<\/li>\n

  • \n

    T\u00e0i ch\u00ednh\/V\u1eadn h\u00e0nh<\/strong>: b\u00e1o c\u00e1o t\u00e0i ch\u00ednh, c\u01a1 c\u1ea5u chi ph\u00ed, ng\u00e2n s\u00e1ch, t\u00e0i li\u1ec7u g\u1ecdi v\u1ed1n.<\/p>\n<\/li>\n

  • \n

    Nh\u00e2n s\u1ef1\/N\u1ed9i b\u1ed9<\/strong>: b\u1ea3ng l\u01b0\u01a1ng, h\u1ed3 s\u01a1 nh\u00e2n s\u1ef1, d\u1eef li\u1ec7u \u0111\u00e1nh gi\u00e1 hi\u1ec7u su\u1ea5t.<\/p>\n<\/li>\n<\/ul>\n

    Vi\u1ec7c nh\u1eadn di\u1ec7n lo\u1ea1i t\u1ec7p v\u00e0 g\u1eafn nh\u00e3n t\u00e0i s\u1ea3n gi\u00fap thi\u1ebft l\u1eadp n\u1ec1n r\u1ee7i ro ban \u0111\u1ea7u, tr\u00e1nh x\u1ebfp t\u00e0i s\u1ea3n c\u1ed1t l\u00f5i chung h\u00e0ng v\u1edbi t\u00e0i li\u1ec7u th\u00f4ng th\u01b0\u1eddng.<\/p>\n

    2) N\u1ed9i dung nh\u1ea1y c\u1ea3m: r\u00f2 r\u1ec9 \u201cnh\u1ea1y \u0111\u1ebfn m\u1ee9c n\u00e0o\u201d?<\/strong><\/p>\n

    N\u1ed9i dung nh\u1ea1y c\u1ea3m l\u00e0 y\u1ebfu t\u1ed1 quy\u1ebft \u0111\u1ecbnh \u201cc\u00f3 ch\u1ea1m ng\u01b0\u1ee1ng tu\u00e2n th\u1ee7\u201d hay kh\u00f4ng, bao g\u1ed3m:<\/p>\n

      \n
    • \n

      PII (Personal Identifiable Information)<\/strong>: s\u1ed1 gi\u1ea5y t\u1edd, s\u1ed1 \u0111i\u1ec7n tho\u1ea1i, email, t\u00e0i kho\u1ea3n ng\u00e2n h\u00e0ng, \u0111\u1ecba ch\u1ec9\u2026<\/p>\n<\/li>\n

    • \n

      B\u00ed m\u1eadt kinh doanh<\/strong>: \u0111\u1ecbnh gi\u00e1, \u0111i\u1ec1u kho\u1ea3n h\u1ee3p t\u00e1c, chi\u1ebfn l\u01b0\u1ee3c th\u1ecb tr\u01b0\u1eddng, d\u1eef li\u1ec7u nh\u00e0 cung c\u1ea5p\u2026<\/p>\n<\/li>\n

    • \n

      IP\/R&D chuy\u00ean s\u00e2u<\/strong>: blueprint, t\u00e0i li\u1ec7u k\u1ef9 thu\u1eadt, tham s\u1ed1 m\u00f4 h\u00ecnh\/thu\u1eadt to\u00e1n\u2026<\/p>\n<\/li>\n<\/ul>\n

      Khi ph\u00e1t hi\u1ec7n m\u1ee9c nh\u1ea1y c\u1ea3m cao, h\u1ec7 th\u1ed1ng t\u0103ng tr\u1ecdng s\u1ed1 r\u1ee7i ro v\u00e0 ghi r\u00f5 y\u1ebfu t\u1ed1 k\u00edch ho\u1ea1t \u0111\u1ec3 \u0111\u1ed9i ng\u0169 d\u1ec5 x\u00e1c minh.<\/p>\n

      3) Quy m\u00f4 d\u1eef li\u1ec7u & ph\u1ea1m vi \u1ea3nh h\u01b0\u1edfng: tu\u1ed3n ra \u201cbao nhi\u00eau\u201d?<\/strong><\/p>\n

      K\u00edch th\u01b0\u1edbc t\u1ec7p, s\u1ed1 l\u01b0\u1ee3ng t\u1ec7p, g\u1eedi theo l\u00f4 ho\u1eb7c g\u1eedi c\u1ea3 th\u01b0 m\u1ee5c th\u01b0\u1eddng ph\u1ea3n \u00e1nh m\u1ee9c \u1ea3nh h\u01b0\u1edfng v\u00e0 chi ph\u00ed kh\u1eafc ph\u1ee5c:<\/p>\n

        \n
      • \n

        T\u1ec7p nh\u1ecf c\u00f3 th\u1ec3 l\u00e0 l\u1ed7i thao t\u00e1c c\u1ee5c b\u1ed9.<\/p>\n<\/li>\n

      • \n

        T\u1ec7p l\u1edbn\/batch exfiltration (th\u01b0 m\u1ee5c d\u1ef1 \u00e1n, backup database, export danh s\u00e1ch kh\u00e1ch h\u00e0ng\u2026) th\u01b0\u1eddng c\u00f3 r\u1ee7i ro cao v\u00ec ph\u1ea1m vi \u1ea3nh h\u01b0\u1edfng r\u1ed9ng v\u00e0 kh\u00f3 thu h\u1ed3i.<\/p>\n<\/li>\n<\/ul>\n

        4) K\u00eanh exfiltration & nguy c\u01a1 lan truy\u1ec1n: \u0111i ra \u201cb\u1eb1ng \u0111\u01b0\u1eddng n\u00e0o\u201d?<\/strong><\/p>\n

        K\u00eanh g\u1eedi ra ngo\u00e0i quy\u1ebft \u0111\u1ecbnh t\u1ed1c \u0111\u1ed9 lan truy\u1ec1n v\u00e0 kh\u1ea3 n\u0103ng ki\u1ec3m so\u00e1t:<\/p>\n

          \n
        • \n

          Web\/URL\/Cloud drive<\/strong> (public link, upload l\u00ean n\u1ec1n t\u1ea3ng ngo\u00e0i): lan nhanh, kh\u00f3 thu h\u1ed3i.<\/p>\n<\/li>\n

        • \n

          \u1ee8ng d\u1ee5ng\/IM\/File-sharing\/Email<\/strong>: d\u1ec5 ph\u00e1t t\u00e1n th\u1ee9 c\u1ea5p, kh\u00f3 ki\u1ec3m so\u00e1t ng\u01b0\u1eddi nh\u1eadn ti\u1ebfp theo.<\/p>\n<\/li>\n

        • \n

          Thi\u1ebft b\u1ecb l\u01b0u tr\u1eef di \u0111\u1ed9ng (USB\/\u1ed5 c\u1ee9ng r\u1eddi)<\/strong>: lan truy\u1ec1n offline, truy v\u1ebft ph\u1ee9c t\u1ea1p.<\/p>\n<\/li>\n

        • \n

          C\u00f3 th\u1ec3 m\u1edf r\u1ed9ng theo doanh nghi\u1ec7p: in \u1ea5n, ch\u1ee5p m\u00e0n h\u00ecnh, copy\/paste qua phi\u00ean remote\u2026<\/p>\n<\/li>\n<\/ul>\n

          Hi\u1ec3n th\u1ecb m\u1ee9c r\u1ee7i ro v\u00e0 chu\u1ed7i b\u1eb1ng ch\u1ee9ng:
          \nh\u1ed7 tr\u1ee3 x\u1eed l\u00fd nhanh, ph\u1ee5c v\u1ee5 audit<\/strong><\/h4>\n

          Ping32 hi\u1ec3n th\u1ecb m\u1ee9c r\u1ee7i ro r\u00f5 r\u00e0ng \u0111\u1ec3 \u0111\u1ed9i SOC\/SecOps triage nhanh, \u0111\u1ed3ng th\u1eddi l\u01b0u Audit Trail \/ Evidence Trail<\/strong> ph\u1ee5c v\u1ee5 \u0111i\u1ec1u tra, \u0111\u1ed1i so\u00e1t, h\u1eadu ki\u1ec3m v\u00e0 tu\u00e2n th\u1ee7. Chu\u1ed7i th\u00f4ng tin th\u01b0\u1eddng bao g\u1ed3m endpoint\/user, timeline s\u1ef1 ki\u1ec7n, t\u00ean t\u1ec7p \u2013 \u0111\u01b0\u1eddng d\u1eabn \u2013 lo\u1ea1i t\u1ec7p \u2013 k\u00edch th\u01b0\u1edbc, k\u00eanh g\u1eedi ra ngo\u00e0i, ng\u1eef c\u1ea3nh h\u00e0nh vi v\u00e0 c\u00e1c y\u1ebfu t\u1ed1 ch\u00ednh l\u00e0m t\u0103ng \u0111i\u1ec3m r\u1ee7i ro (v\u00ed d\u1ee5: \u201cPII + upload cloud drive + g\u1eedi theo l\u00f4\u201d).<\/p>\n

          Li\u00ean k\u1ebft ki\u1ec3m so\u00e1t \u0111\u1ec3 t\u1ea1o v\u00f2ng l\u1eb7p kh\u00e9p k\u00edn:
          \nt\u1eeb \u0111\u00e1nh gi\u00e1 \u0111\u1ebfn h\u00e0nh \u0111\u1ed9ng<\/strong><\/h4>\n

          Risk Rating \u0111\u1ea1t hi\u1ec7u qu\u1ea3 cao nh\u1ea5t khi c\u00f3 th\u1ec3 \u201c\u0111\u1ea9y quy\u1ebft \u0111\u1ecbnh sang h\u00e0nh \u0111\u1ed9ng\u201d. Theo m\u1ee9c r\u1ee7i ro, Ping32 c\u00f3 th\u1ec3 li\u00ean k\u1ebft:<\/p>\n

            \n
          • \n

            Egress Control \/ ki\u1ec3m so\u00e1t g\u1eedi ra ngo\u00e0i<\/strong>: si\u1ebft quy\u1ec1n, y\u00eau c\u1ea7u \u0111i\u1ec1u ki\u1ec7n\/duy\u1ec7t, ho\u1eb7c ch\u1eb7n h\u00e0nh vi b\u1ea5t th\u01b0\u1eddng v\u1edbi s\u1ef1 c\u1ed1 high-risk.<\/p>\n<\/li>\n

          • \n

            Audit & l\u01b0u b\u1ea3n sao<\/strong>: ghi log chi ti\u1ebft, l\u01b0u b\u1ea3n sao t\u1ec7p\/\u0111\u1ed1i t\u01b0\u1ee3ng li\u00ean quan \u0111\u1ec3 ph\u1ee5c v\u1ee5 \u0111i\u1ec1u tra v\u00e0 ph\u00e1p l\u00fd.<\/p>\n<\/li>\n

          • \n

            \u01afu ti\u00ean c\u1ea3nh b\u00e1o & \u0111i\u1ec1u ph\u1ed1i \u0111i\u1ec1u tra<\/strong>: n\u00e2ng m\u1ee9c c\u1ea3nh b\u00e1o, t\u1ea1o nhi\u1ec7m v\u1ee5 \u0111i\u1ec1u tra d\u1ef1a tr\u00ean s\u1ed1 l\u01b0\u1ee3ng\/th\u1eddi l\u01b0\u1ee3ng\/t\u1ea7n su\u1ea5t g\u1eedi ra ngo\u00e0i v\u00e0 y\u1ebfu t\u1ed1 nh\u1ea1y c\u1ea3m.<\/p>\n<\/li>\n<\/ul>\n

            Nh\u1edd \u0111\u00f3 h\u00ecnh th\u00e0nh v\u00f2ng l\u1eb7p \u0111\u00e1nh gi\u00e1 \u2192 th\u1ef1c thi \u2192 truy v\u1ebft \u2192 t\u1ed1i \u01b0u ch\u00ednh s\u00e1ch<\/strong>, gi\u00fap gi\u1ea3m thi\u1ec3u thi\u1ec7t h\u1ea1i v\u00e0 n\u00e2ng hi\u1ec7u qu\u1ea3 v\u1eadn h\u00e0nh DLP\/endpoint data security.<\/p>\n

            \u1ee8ng d\u1ee5ng theo ng\u00e0nh v\u00e0 k\u1ecbch b\u1ea3n ph\u1ed5 bi\u1ebfn<\/strong><\/h4>\n

            \u0110\u1ec3 b\u00e1m s\u00e1t th\u1ef1c t\u1ebf v\u1eadn h\u00e0nh v\u00e0 nhu c\u1ea7u t\u00ecm ki\u1ebfm theo \u201cng\u00e0nh + d\u1eef li\u1ec7u + k\u00eanh\u201d, c\u00e1c k\u1ecbch b\u1ea3n th\u01b0\u1eddng g\u1eb7p g\u1ed3m:<\/p>\n

              \n
            • \n

              Ph\u1ea7n m\u1ec1m\/Internet<\/strong>: r\u00f2 r\u1ec9 m\u00e3 ngu\u1ed3n, l\u1ed9 API key\/config, t\u00e0i li\u1ec7u k\u1ef9 thu\u1eadt; k\u00eanh ph\u1ed5 bi\u1ebfn: IM, cloud drive, upload web.<\/p>\n<\/li>\n

            • \n

              S\u1ea3n xu\u1ea5t<\/strong>: CAD\/BOM\/th\u00f4ng s\u1ed1 c\u00f4ng ngh\u1ec7 b\u1ecb g\u1eedi ra ngo\u00e0i; k\u00eanh: USB, email, portal nh\u00e0 cung c\u1ea5p.<\/p>\n<\/li>\n

            • \n

              B\u00e1n d\u1eabn\/Hardware<\/strong>: d\u1eef li\u1ec7u thi\u1ebft k\u1ebf, test data, b\u00e1o gi\u00e1 chu\u1ed7i cung \u1ee9ng; k\u00eanh: batch\/folder sharing, chia s\u1ebb cross-org.<\/p>\n<\/li>\n

            • \n

              T\u00e0i ch\u00ednh\/B\u1ea3o hi\u1ec3m<\/strong>: d\u1eef li\u1ec7u kh\u00e1ch h\u00e0ng, b\u00e1o c\u00e1o giao d\u1ecbch, t\u00e0i li\u1ec7u m\u00f4 h\u00ecnh; k\u00eanh: email, export, upload web.<\/p>\n<\/li>\n

            • \n

              Y t\u1ebf\/Gi\u00e1o d\u1ee5c\/Khu v\u1ef1c c\u00f4ng<\/strong>: d\u1eef li\u1ec7u h\u1ed3 s\u01a1, th\u00f4ng tin \u0111\u1ecbnh danh, b\u00e1o c\u00e1o th\u1ed1ng k\u00ea; k\u00eanh: IM, cloud, in \u1ea5n\/screenshot.<\/p>\n<\/li>\n

            • \n

              Doanh nghi\u1ec7p sales\/channel<\/strong>: danh s\u00e1ch kh\u00e1ch h\u00e0ng, b\u00e1o gi\u00e1, h\u1ee3p \u0111\u1ed3ng; k\u00eanh: IM group, email, cloud c\u00e1 nh\u00e2n.<\/p>\n<\/li>\n<\/ul>\n

              K\u1ebft lu\u1eadn<\/strong><\/h4>\n

              Qu\u1ea3n tr\u1ecb r\u00f2 r\u1ec9 d\u1eef li\u1ec7u kh\u00f4ng ch\u1ec9 l\u00e0 \u201cng\u0103n r\u00f2 r\u1ec9 b\u1eb1ng m\u1ecdi gi\u00e1\u201d, m\u00e0 c\u00f2n l\u00e0 kh\u1ea3 n\u0103ng \u0111\u00e1nh gi\u00e1 r\u1ee7i ro nhanh, \u01b0u ti\u00ean \u0111\u00fang v\u00e0 x\u1eed l\u00fd kh\u00e9p k\u00edn<\/strong> khi c\u00f3 d\u1ea5u hi\u1ec7u r\u00f2 r\u1ec9. V\u1edbi c\u01a1 ch\u1ebf Risk Scoring + Risk Rating<\/strong>, Ping32 gi\u00fap chuy\u1ec3n s\u1ef1 c\u1ed1 r\u00f2 r\u1ec9 t\u1eeb \u201cc\u1ea3nh b\u00e1o r\u1eddi r\u1ea1c\u201d th\u00e0nh m\u1ed9t h\u1ec7 th\u1ed1ng c\u00f3 th\u1ec3 v\u1eadn h\u00e0nh: \u0111o l\u01b0\u1eddng \u0111\u01b0\u1ee3c, x\u1ebfp \u01b0u ti\u00ean \u0111\u01b0\u1ee3c, li\u00ean k\u1ebft h\u00e0nh \u0111\u1ed9ng \u0111\u01b0\u1ee3c v\u00e0 t\u1ed1i \u01b0u li\u00ean t\u1ee5c theo th\u1ef1c t\u1ebf doanh nghi\u1ec7p.<\/p>\n

              FAQ \u2013 C\u00e2u h\u1ecfi th\u01b0\u1eddng g\u1eb7p<\/strong><\/h4>\n

              1) Risk Rating kh\u00e1c g\u00ec DLP (Data Loss Prevention)?<\/strong>
              DLP t\u1eadp trung nh\u1eadn di\u1ec7n v\u00e0 ki\u1ec3m so\u00e1t d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m khi b\u1ecb g\u1eedi ra ngo\u00e0i; Risk Rating \u0111\u1ecbnh l\u01b0\u1ee3ng m\u1ee9c \u0111\u1ed9 s\u1ef1 c\u1ed1 sau khi ph\u00e1t hi\u1ec7n \u0111\u1ec3 \u01b0u ti\u00ean x\u1eed l\u00fd, \u0111i\u1ec1u ph\u1ed1i ph\u1ea3n \u1ee9ng v\u00e0 t\u1ea1o v\u00f2ng l\u1eb7p kh\u00e9p k\u00edn.<\/p>\n

              2) Ping32 ch\u1ea5m \u0111i\u1ec3m r\u1ee7i ro d\u1ef1a tr\u00ean nh\u1eefng y\u1ebfu t\u1ed1 n\u00e0o?<\/strong>
              Ch\u1ee7 y\u1ebfu d\u1ef1a tr\u00ean lo\u1ea1i t\u1ec7p\/gi\u00e1 tr\u1ecb t\u00e0i s\u1ea3n, n\u1ed9i dung nh\u1ea1y c\u1ea3m (PII\/b\u00ed m\u1eadt kinh doanh\/IP), quy m\u00f4 d\u1eef li\u1ec7u (k\u00edch th\u01b0\u1edbc\/s\u1ed1 l\u01b0\u1ee3ng\/batch) v\u00e0 k\u00eanh exfiltration (web\/cloud, IM, email, USB\u2026).<\/p>\n

              3) K\u1ebft qu\u1ea3 c\u00f3 gi\u1ea3i th\u00edch \u0111\u01b0\u1ee3c kh\u00f4ng?<\/strong>
              C\u00f3. H\u1ec7 th\u1ed1ng cung c\u1ea5p c\u00e1c y\u1ebfu t\u1ed1 ch\u00ednh l\u00e0m t\u0103ng \u0111i\u1ec3m r\u1ee7i ro v\u00e0 chu\u1ed7i b\u1eb1ng ch\u1ee9ng (Audit Trail\/Evidence Trail) \u0111\u1ec3 ki\u1ec3m tra, x\u00e1c minh v\u00e0 b\u00e1o c\u00e1o.<\/p>\n

              4) S\u1ef1 c\u1ed1 m\u1ee9c cao c\u00f3 th\u1ec3 t\u1ef1 \u0111\u1ed9ng k\u00edch ho\u1ea1t h\u00e0nh \u0111\u1ed9ng kh\u00f4ng?<\/strong>
              C\u00f3. C\u00f3 th\u1ec3 li\u00ean k\u1ebft egress control (si\u1ebft\/ch\u1eb7n), audit l\u01b0u v\u1ebft v\u00e0 l\u01b0u b\u1ea3n sao, n\u00e2ng m\u1ee9c c\u1ea3nh b\u00e1o v\u00e0 t\u1ea1o nhi\u1ec7m v\u1ee5 \u0111i\u1ec1u tra \u0111\u1ec3 containment nhanh.<\/p>\n

              5) L\u00e0m th\u1ebf n\u00e0o \u0111\u1ec3 gi\u1ea3m \u0111\u00e1nh gi\u00e1 sai\/nh\u1ea7m l\u1eabn?<\/strong>
              B\u1eb1ng c\u00e1ch c\u1ea5u h\u00ecnh theo doanh nghi\u1ec7p: \u0111i\u1ec1u ch\u1ec9nh tr\u1ecdng s\u1ed1\/threshold, \u0111\u1ecbnh ngh\u0129a d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m v\u00e0 t\u1ed1i \u01b0u theo ph\u1ea3n h\u1ed3i t\u1eeb k\u1ebft qu\u1ea3 x\u1eed l\u00fd th\u1ef1c t\u1ebf.<\/p>\n

              6) Ping32 c\u00f3 ph\u00f9 h\u1ee3p v\u1edbi c\u00e1c k\u1ecbch b\u1ea3n nh\u01b0 r\u00f2 r\u1ec9 m\u00e3 ngu\u1ed3n, CAD\/BOM, danh s\u00e1ch kh\u00e1ch h\u00e0ng kh\u00f4ng?<\/strong>
              Ph\u00f9 h\u1ee3p. \u0110\u00e2y l\u00e0 c\u00e1c k\u1ecbch b\u1ea3n c\u00f3 gi\u00e1 tr\u1ecb t\u00e0i s\u1ea3n r\u00f5 r\u00e0ng, n\u1ed9i dung nh\u1ea1y c\u1ea3m cao v\u00e0 k\u00eanh exfiltration \u0111i\u1ec3n h\u00ecnh\u2014r\u1ea5t ph\u00f9 h\u1ee3p \u0111\u1ec3 ch\u1ea5m \u0111i\u1ec3m v\u00e0 \u01b0u ti\u00ean x\u1eed l\u00fd.<\/p>\n","protected":false},"excerpt":{"rendered":"

              Trong b\u1ed1i c\u1ea3nh chuy\u1ec3n \u0111\u1ed5i s\u1ed1 t\u0103ng t\u1ed1c, d\u1eef li\u1ec7u \u0111\u00e3 tr\u1edf th\u00e0nh t\u00e0i s\u1ea3n c\u1ed1t l\u00f5i c\u1ee7a doanh nghi\u1ec7p: m\u00e3 ngu\u1ed3n, t\u00e0i li\u1ec7u thi\u1ebft k\u1ebf s\u1ea3n ph\u1ea9m, d\u1eef li\u1ec7u R&D, th\u00f4ng tin kh\u00e1ch h\u00e0ng, h\u1ee3p \u0111\u1ed3ng \u2013 b\u00e1o gi\u00e1, b\u00e1o c\u00e1o t\u00e0i ch\u00ednh, d\u1eef li\u1ec7u v\u1eadn h\u00e0nh, danh m\u1ee5c nh\u00e0 cung c\u1ea5p\u2026 Ch\u1ec9 m\u1ed9t […]<\/p>\n","protected":false},"author":2,"featured_media":91,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-74","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-default"],"_links":{"self":[{"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/posts\/74","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/comments?post=74"}],"version-history":[{"count":16,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/posts\/74\/revisions"}],"predecessor-version":[{"id":96,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/posts\/74\/revisions\/96"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/media\/91"}],"wp:attachment":[{"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/media?parent=74"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/categories?post=74"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.nsecsoft.com\/vi\/wp-json\/wp\/v2\/tags?post=74"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}