{"id":7564,"date":"2023-08-11T09:57:41","date_gmt":"2023-08-11T02:57:41","guid":{"rendered":"https:\/\/vacif.com\/?p=7564"},"modified":"2024-06-24T04:02:15","modified_gmt":"2024-06-24T04:02:15","slug":"tan-cong-man-in-the-middle-mitm-phan-tich-cach-tan-cong-man-in-the-middle-hoat-dong-va-cach-ngan-chan-chung-trong-cac-giao-tiep-mang","status":"publish","type":"post","link":"https:\/\/vacif.com\/en\/tan-cong-man-in-the-middle-mitm-phan-tich-cach-tan-cong-man-in-the-middle-hoat-dong-va-cach-ngan-chan-chung-trong-cac-giao-tiep-mang\/","title":{"rendered":"T\u1ea4N C\u00d4NG MAN-IN-THE-MIDDLE (MITM): PH\u00c2N T\u00cdCH C\u00c1CH T\u1ea4N C\u00d4NG V\u00c0 C\u00c1CH NG\u0102N CH\u1eb6N CH\u00daNG TRONG M\u00d4I TR\u01af\u1edcNG M\u1ea0NG"},"content":{"rendered":"\n

T\u1ed5ng quan :<\/strong><\/p>\n\n\n\n

Trong th\u1ebf gi\u1edbi s\u1ed1 h\u00f3a ng\u00e0y nay, giao ti\u1ebfp qua m\u1ea1ng \u0111\u00e3 tr\u1edf th\u00e0nh m\u1ed9t ph\u1ea7n kh\u00f4ng th\u1ec3 thi\u1ebfu c\u1ee7a cu\u1ed9c s\u1ed1ng h\u00e0ng ng\u00e0y. Tuy nhi\u00ean, \u0111i\u1ec1u n\u00e0y c\u0169ng t\u1ea1o ra nhi\u1ec1u th\u00e1ch th\u1ee9c v\u1ec1 b\u1ea3o m\u1eadt, \u0111\u1eb7c bi\u1ec7t l\u00e0 nguy c\u01a1 b\u1ecb t\u1ea5n c\u00f4ng Man-in-the-Middle (MITM). \u0110\u00e2y l\u00e0 m\u1ed9t trong nh\u1eefng h\u00ecnh th\u1ee9c t\u1ea5n c\u00f4ng ph\u1ed5 bi\u1ebfn v\u00e0 nguy hi\u1ec3m, m\u00e0 t\u1ea1i \u0111\u00f3 k\u1ebb t\u1ea5n c\u00f4ng x\u00e2m nh\u1eadp v\u00e0o qu\u00e1 tr\u00ecnh giao ti\u1ebfp gi\u1eefa hai b\u00ean m\u00e0 kh\u00f4ng b\u1ecb ph\u00e1t hi\u1ec7n. Khi th\u00f4ng tin d\u01b0\u1eddng nh\u01b0 \u0111\u01b0\u1ee3c truy\u1ec1n \u0111i m\u1ed9t c\u00e1ch b\u00ecnh th\u01b0\u1eddng, k\u1ebb t\u1ea5n c\u00f4ng MITM th\u1ef1c t\u1ebf c\u00f3 kh\u1ea3 n\u0103ng theo d\u00f5i, s\u1eeda \u0111\u1ed5i ho\u1eb7c th\u1eadm ch\u00ed \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u.<\/p>\n\n\n\n

Trong b\u00e0i vi\u1ebft n\u00e0y, ch\u00fang ta s\u1ebd c\u00f9ng t\u00ecm hi\u1ec3u v\u1ec1 c\u00e1ch t\u1ea5n c\u00f4ng Man-in-the-Middle ho\u1ea1t \u0111\u1ed9ng, c\u00e1ch m\u00e0 k\u1ebb t\u1ea5n c\u00f4ng t\u1eadn d\u1ee5ng c\u00e1c \u0111i\u1ec3m y\u1ebfu trong qu\u00e1 tr\u00ecnh truy\u1ec1n th\u00f4ng \u0111\u1ec3 th\u1ef1c hi\u1ec7n cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y. Ch\u00fang ta c\u0169ng s\u1ebd xem x\u00e9t nh\u1eefng h\u1eadu qu\u1ea3 c\u00f3 th\u1ec3 x\u1ea3y ra n\u1ebfu t\u1ea5n c\u00f4ng MITM th\u00e0nh c\u00f4ng v\u00e0 c\u00e1ch ch\u00fang \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn s\u1ef1 b\u1ea3o m\u1eadt c\u1ee7a th\u00f4ng tin c\u00e1 nh\u00e2n, t\u00e0i kho\u1ea3n v\u00e0 d\u1eef li\u1ec7u.<\/p>\n\n\n\n

M\u1ee5c l\u1ee5c :<\/strong><\/p>\n\n\n\n

I. T\u1ea5n c\u00f4ng (MiTM) l\u00e0 g\u00ec?<\/strong><\/p>\n\n\n\n

II. C\u00e1ch th\u1ee9c ho\u1ea1t \u0111\u1ed9ng MitM<\/strong><\/p>\n\n\n\n

III. C\u00e1c lo\u1ea1i t\u1ea5n c\u00f4ng trung gian (man-in-the-middle attacks)<\/strong><\/p>\n\n\n\n

IV. C\u00e1ch ng\u0103n ch\u1eb7n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng Man-in-the-Middle (MitM)<\/strong><\/p>\n\n\n\n

N\u1ed9i dung b\u00e0i vi\u1ebft :<\/strong><\/p>\n\n\n\n

I. T\u1ea5n c\u00f4ng (MiTM) l\u00e0 g\u00ec?<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Cu\u1ed9c t\u1ea5n c\u00f4ng trung gian (Man-in-the-Middle attack) l\u00e0 m\u1ed9t h\u00ecnh th\u1ee9c t\u1ea5n c\u00f4ng m\u1ea1ng, trong \u0111\u00f3 k\u1ebb t\u1ea5n c\u00f4ng \u1ea9n danh ngang qua v\u00e0 truy\u1ec1n t\u1ea3i th\u00f4ng \u0111i\u1ec7p gi\u1eefa hai b\u00ean m\u00e0 hai b\u00ean n\u00e0y tin r\u1eb1ng h\u1ecd \u0111ang tr\u1ef1c ti\u1ebfp tr\u00f2 chuy\u1ec7n v\u1edbi nhau. T\u1ea5n c\u00f4ng n\u00e0y t\u1ea1o ra m\u1ed9t ho\u1ea1t \u0111\u1ed9ng nghe tr\u1ed9m, khi k\u1ebb t\u1ea5n c\u00f4ng ch\u1eb7n ngang cu\u1ed9c tr\u00f2 chuy\u1ec7n v\u00e0 sau \u0111\u00f3 ki\u1ec3m so\u00e1t to\u00e0n b\u1ed9 qu\u00e1 tr\u00ecnh trao \u0111\u1ed5i th\u00f4ng tin.<\/p>\n\n\n\n

Cu\u1ed9c t\u1ea5n c\u00f4ng trung gian c\u00f3 ti\u1ec1m n\u0103ng g\u00e2y nguy hi\u1ec3m nghi\u00eam tr\u1ecdng \u0111\u1ed1i v\u1edbi b\u1ea3o m\u1eadt tr\u1ef1c tuy\u1ebfn, v\u00ec n\u00f3 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng n\u1eafm b\u1eaft v\u00e0 thao t\u00fang c\u00e1c th\u00f4ng tin c\u00e1 nh\u00e2n nh\u1ea1y c\u1ea3m nh\u01b0 th\u00f4ng tin \u0111\u0103ng nh\u1eadp, chi ti\u1ebft t\u00e0i kho\u1ea3n ho\u1eb7c s\u1ed1 th\u1ebb t\u00edn d\u1ee5ng trong th\u1eddi gian th\u1ef1c.<\/p>\n\n\n\n

C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng Man-in-the-Middle th\u01b0\u1eddng t\u1ea1o ra m\u1ed1i \u0111e d\u1ecda l\u1edbn cho b\u1ea3o m\u1eadt tr\u1ef1c tuy\u1ebfn, v\u00ec ch\u00fang cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng theo d\u00f5i v\u00e0 can thi\u1ec7p v\u00e0o giao ti\u1ebfp gi\u1eefa hai b\u00ean m\u00e0 kh\u00f4ng b\u1ecb ph\u00e1t hi\u1ec7n. \u0110i\u1ec1u n\u00e0y c\u00f3 th\u1ec3 d\u1eabn \u0111\u1ebfn vi\u1ec7c \u0103n c\u1eafp th\u00f4ng tin c\u00e1 nh\u00e2n, th\u00f4ng tin t\u00e0i kho\u1ea3n ng\u00e2n h\u00e0ng v\u00e0 c\u00e1c d\u1eef li\u1ec7u quan tr\u1ecdng kh\u00e1c.<\/p>\n\n\n\n

Cu\u1ed9c t\u1ea5n c\u00f4ng trung gian c\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 nhi\u1ec1u t\u00ean kh\u00e1c nhau nh\u01b0 “monster-in-the-middle,” “machine-in-the-middle,” “monkey-in-the-middle,” v\u00e0 “man-in-the-browser.” Trong \u0111\u00f3, t\u1ea5n c\u00f4ng Man-in-the-browser l\u00e0 lo\u1ea1i ph\u1ed5 bi\u1ebfn nh\u1ea5t, khi k\u1ebb t\u1ea5n c\u00f4ng t\u1eadp trung v\u00e0o vi\u1ec7c nhi\u1ec5m vi r\u00fat \u0111\u1ed9c h\u1ea1i v\u00e0o tr\u00ecnh duy\u1ec7t v\u00e0 ti\u00eam ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i v\u00e0o thi\u1ebft b\u1ecb c\u1ee7a ng\u01b0\u1eddi b\u1ecb t\u1ea5n c\u00f4ng. Ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i th\u01b0\u1eddng \u0111\u01b0\u1ee3c truy\u1ec1n qua c\u00e1c email l\u1eeba \u0111\u1ea3o (phishing). M\u1ee5c ti\u00eau ch\u00ednh c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y l\u00e0 \u0103n c\u1eafp th\u00f4ng tin t\u00e0i ch\u00ednh b\u1eb1ng c\u00e1ch ng\u0103n ch\u1eb7n l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp t\u1eeb ng\u01b0\u1eddi d\u00f9ng \u0111\u1ebfn c\u00e1c trang web ng\u00e2n h\u00e0ng ho\u1eb7c t\u00e0i ch\u00ednh.<\/p>\n\n\n\n

II. C\u00e1ch th\u1ee9c ho\u1ea1t \u0111\u1ed9ng MitM<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng MitM (Man-in-the-Middle), c\u00e1c t\u1ed9i ph\u1ea1m m\u1ea1ng ch\u00e8n m\u00ecnh v\u00e0o trong qu\u00e1 tr\u00ecnh giao d\u1ecbch d\u1eef li\u1ec7u ho\u1eb7c giao ti\u1ebfp tr\u1ef1c tuy\u1ebfn. Th\u00f4ng qua vi\u1ec7c ph\u00e1t t\u00e1n m\u00e3 \u0111\u1ed9c, k\u1ebb t\u1ea5n c\u00f4ng d\u1ec5 d\u00e0ng ti\u1ebfp c\u1eadn tr\u00ecnh duy\u1ec7t web c\u1ee7a ng\u01b0\u1eddi d\u00f9ng v\u00e0 d\u1eef li\u1ec7u m\u00e0 h\u1ecd g\u1eedi v\u00e0 nh\u1eadn trong qu\u00e1 tr\u00ecnh giao d\u1ecbch. C\u00e1c trang web ng\u00e2n h\u00e0ng tr\u1ef1c tuy\u1ebfn v\u00e0 th\u01b0\u01a1ng m\u1ea1i \u0111i\u1ec7n t\u1eed, y\u00eau c\u1ea7u s\u1ef1 x\u00e1c th\u1ef1c an to\u00e0n th\u00f4ng qua vi\u1ec7c s\u1eed d\u1ee5ng m\u1ed9t kh\u00f3a c\u00f4ng khai v\u00e0 m\u1ed9t kh\u00f3a ri\u00eang t\u01b0, l\u00e0 m\u1ee5c ti\u00eau ch\u00ednh c\u1ee7a c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng MitM v\u00ec ch\u00fang cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng b\u1eaft \u0111\u01b0\u1ee3c th\u00f4ng tin \u0111\u0103ng nh\u1eadp v\u00e0 c\u00e1c th\u00f4ng tin t\u00edn d\u1ee5ng quan tr\u1ecdng kh\u00e1c.<\/p>\n\n\n\n

Th\u01b0\u1eddng th\u00ec, nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y \u0111\u01b0\u1ee3c th\u1ef1c hi\u1ec7n qua hai b\u01b0\u1edbc ch\u00ednh l\u00e0 gi\u00e1n \u0111o\u1ea1n v\u00e0 gi\u1ea3i m\u00e3 d\u1eef li\u1ec7u. B\u01b0\u1edbc gi\u00e1n \u0111o\u1ea1n d\u1eef li\u1ec7u li\u00ean quan \u0111\u1ebfn vi\u1ec7c k\u1ebb t\u1ea5n c\u00f4ng can thi\u1ec7p v\u00e0o qu\u00e1 tr\u00ecnh truy\u1ec1n d\u1eef li\u1ec7u gi\u1eefa m\u1ed9t m\u00e1y kh\u00e1ch v\u00e0 m\u1ed9t m\u00e1y ch\u1ee7. K\u1ebb t\u1ea5n c\u00f4ng l\u1eeba d\u1ed1i c\u1ea3 m\u00e1y kh\u00e1ch v\u00e0 m\u00e1y ch\u1ee7 b\u1eb1ng c\u00e1ch l\u00e0m cho h\u1ecd tin r\u1eb1ng h\u1ecd \u0111ang trao \u0111\u1ed5i th\u00f4ng tin v\u1edbi nhau, trong khi th\u1ef1c t\u1ebf l\u00e0 k\u1ebb t\u1ea5n c\u00f4ng can thi\u1ec7p, ch\u1eb7n l\u1ea1i d\u1eef li\u1ec7u v\u00e0 t\u1ea1o m\u1ed9t k\u1ebft n\u1ed1i \u0111\u1ebfn trang web th\u1eadt s\u1ef1, sau \u0111\u00f3 \u0111\u00f3ng vai tr\u00f2 nh\u01b0 m\u1ed9t proxy \u0111\u1ec3 \u0111\u1ecdc v\u00e0 ch\u00e8n th\u00f4ng tin sai l\u1ec7ch v\u00e0o qu\u00e1 tr\u00ecnh giao ti\u1ebfp.<\/p>\n\n\n\n

C\u1ee5 th\u1ec3, c\u00e1c b\u01b0\u1edbc sau \u0111\u01b0\u1ee3c th\u1ef1c hi\u1ec7n trong m\u1ed9t k\u1ef9 thu\u1eadt gi\u00e1n \u0111o\u1ea1n d\u1eef li\u1ec7u ph\u1ed5 bi\u1ebfn:<\/strong><\/p>\n\n\n\n

    \n
  • K\u1ebb t\u1ea5n c\u00f4ng c\u00e0i \u0111\u1eb7t m\u1ed9t ph\u1ea7n m\u1ec1m theo d\u00f5i g\u00f3i tin \u0111\u1ec3 theo d\u00f5i b\u1ea5t k\u1ef3 l\u01b0u l\u01b0\u1ee3ng m\u1ea1ng n\u00e0o c\u00f3 th\u1ec3 kh\u00f4ng an to\u00e0n, nh\u01b0 khi ng\u01b0\u1eddi d\u00f9ng truy c\u1eadp m\u1ed9t trang web d\u1ef1a tr\u00ean giao th\u1ee9c truy\u1ec1n t\u1ea3i si\u00eau v\u0103n b\u1ea3n (HTTP) ho\u1eb7c s\u1eed d\u1ee5ng m\u1ed9t \u0111i\u1ec3m ph\u00e1t s\u00f3ng c\u00f4ng c\u1ed9ng kh\u00f4ng an to\u00e0n.<\/li>\n\n\n\n
  • Khi ng\u01b0\u1eddi d\u00f9ng \u0111\u0103ng nh\u1eadp v\u00e0o trang web kh\u00f4ng an to\u00e0n, k\u1ebb t\u1ea5n c\u00f4ng thu th\u1eadp th\u00f4ng tin c\u1ee7a ng\u01b0\u1eddi d\u00f9ng v\u00e0 chuy\u1ec3n h\u01b0\u1edbng h\u1ecd \u0111\u1ebfn m\u1ed9t trang web gi\u1ea3 m\u1ea1o.<\/li>\n\n\n\n
  • Trang web gi\u1ea3 m\u1ea1o b\u1eaft ch\u01b0\u1edbc trang web g\u1ed1c v\u00e0 thu th\u1eadp t\u1ea5t c\u1ea3 th\u00f4ng tin quan tr\u1ecdng c\u1ee7a ng\u01b0\u1eddi d\u00f9ng, m\u00e0 k\u1ebb t\u1ea5n c\u00f4ng sau \u0111\u00f3 c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng \u0111\u1ec3 truy c\u1eadp v\u00e0o t\u1ea5t c\u1ea3 t\u00e0i nguy\u00ean c\u1ee7a ng\u01b0\u1eddi d\u00f9ng tr\u00ean trang web g\u1ed1c.<\/li>\n<\/ul>\n\n\n\n

    B\u01b0\u1edbc gi\u1ea3i m\u00e3 l\u00e0 giai \u0111o\u1ea1n m\u00e0 d\u1eef li\u1ec7u \u0111\u00e3 b\u1ecb ch\u1eb7n l\u1ea1i \u0111\u01b0\u1ee3c gi\u1ea3i m\u00e3. B\u01b0\u1edbc quan tr\u1ecdng n\u00e0y cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng cu\u1ed1i c\u00f9ng gi\u1ea3i m\u00e3 v\u00e0 s\u1eed d\u1ee5ng d\u1eef li\u1ec7u v\u00e0o l\u1ee3i \u00edch c\u1ee7a h\u1ecd; v\u00ed d\u1ee5, h\u1ecd c\u00f3 th\u1ec3 th\u1ef1c hi\u1ec7n tr\u1ed9m danh t\u00ednh ho\u1eb7c g\u00e2y ra s\u1ef1 gi\u00e1n \u0111o\u1ea1n cho ho\u1ea1t \u0111\u1ed9ng kinh doanh.<\/p>\n\n\n\n

    III. C\u00e1c lo\u1ea1i t\u1ea5n c\u00f4ng trung gian (man-in-the-middle attacks)<\/strong><\/p>\n\n\n

    \n
    \"\"<\/figure>\n<\/div>\n\n\n

    D\u01b0\u1edbi \u0111\u00e2y l\u00e0 c\u00e1c lo\u1ea1i t\u1ea5n c\u00f4ng trung gian (man-in-the-middle attacks) m\u00e0 c\u00e1c tin t\u1eb7c s\u1eed d\u1ee5ng \u0111\u1ec3 ti\u1ebfp c\u1eadn thi\u1ebft b\u1ecb v\u00e0 th\u00f4ng tin nh\u1ea1y c\u1ea3m:<\/strong><\/p>\n\n\n\n

      \n
    • Gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 giao th\u1ee9c Internet (Internet Protocol spoofing):<\/strong> T\u01b0\u01a1ng t\u1ef1 vi\u1ec7c tr\u1ed9m danh t\u00ednh, gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 IP x\u1ea3y ra khi tin t\u1eb7c thay \u0111\u1ed5i \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n c\u1ee7a m\u1ed9t trang web, \u0111\u1ecba ch\u1ec9 email ho\u1eb7c thi\u1ebft b\u1ecb \u0111\u1ec3 che \u0111\u1eady. \u0110i\u1ec1u n\u00e0y l\u00e0m ng\u01b0\u1eddi d\u00f9ng tin r\u1eb1ng h\u1ecd \u0111ang t\u01b0\u01a1ng t\u00e1c v\u1edbi m\u1ed9t ngu\u1ed3n tin c\u1eady, v\u00e0 th\u00f4ng tin nh\u1ea1y c\u1ea3m m\u00e0 h\u1ecd chia s\u1ebb trong giao d\u1ecbch \u0111\u01b0\u1ee3c chuy\u1ec3n \u0111\u1ebfn c\u00e1c tin t\u1eb7c thay v\u00ec ngu\u1ed3n tin c\u1eady.<\/li>\n\n\n\n
    • Gi\u1ea3 m\u1ea1o h\u1ec7 th\u1ed1ng t\u00ean mi\u1ec1n (Domain Name System spoofing):<\/strong> \u0110\u00e2y l\u00e0 t\u1ea5n c\u00f4ng trung gian, khi tin t\u1eb7c thay \u0111\u1ed5i t\u00ean mi\u1ec1n \u0111\u1ec3 chuy\u1ec3n h\u01b0\u1edbng l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp \u0111\u1ebfn c\u00e1c trang web gi\u1ea3 m\u1ea1o. Ng\u01b0\u1eddi d\u00f9ng c\u00f3 th\u1ec3 ngh\u0129 r\u1eb1ng h\u1ecd \u0111ang truy c\u1eadp v\u00e0o m\u1ed9t trang web an to\u00e0n v\u00e0 \u0111\u00e1ng tin, nh\u01b0ng th\u1ef1c t\u1ebf h\u1ecd \u0111ang v\u00e0o m\u1ed9t trang web do tin t\u1eb7c \u0111i\u1ec1u h\u00e0nh. M\u1ee5c ti\u00eau ch\u00ednh c\u1ee7a t\u1ea5n c\u00f4ng n\u00e0y l\u00e0 chuy\u1ec3n h\u01b0\u1edbng l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp \u0111\u1ebfn trang web gi\u1ea3 m\u1ea1o ho\u1eb7c b\u1eaft gi\u1eef th\u00f4ng tin \u0111\u0103ng nh\u1eadp c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/li>\n\n\n\n
    • Gi\u1ea3 m\u1ea1o giao th\u1ee9c HTTP (HTTP spoofing): <\/strong>Giao th\u1ee9c HTTP th\u1ec3 hi\u1ec7n truy\u1ec1n th\u00f4ng an to\u00e0n tr\u00ean internet. HTTPS ch\u1ec9 ra trang web an to\u00e0n v\u00e0 \u0111\u00e1ng tin. Trong cu\u1ed9c t\u1ea5n c\u00f4ng gi\u1ea3 m\u1ea1o HTTPS, phi\u00ean duy\u1ec7t \u0111\u01b0\u1ee3c chuy\u1ec3n \u0111\u1ebfn trang web kh\u00f4ng an to\u00e0n ho\u1eb7c d\u1ef1a tr\u00ean HTTP m\u00e0 kh\u00f4ng s\u1ef1 \u0111\u1ed3ng \u00fd hay hi\u1ec3u bi\u1ebft c\u1ee7a ng\u01b0\u1eddi d\u00f9ng. Tin t\u1eb7c c\u00f3 th\u1ec3 theo d\u00f5i t\u01b0\u01a1ng t\u00e1c c\u1ee7a ng\u01b0\u1eddi d\u00f9ng v\u00e0 \u0111\u00e1nh c\u1eafp th\u00f4ng tin c\u00e1 nh\u00e2n th\u00f4ng qua vi\u1ec7c chuy\u1ec3n h\u01b0\u1edbng n\u00e0y.<\/li>\n\n\n\n
    • Th\u00f4ng qua SSL (Secure Sockets Layer hijacking): <\/strong>SSL l\u00e0 giao th\u1ee9c thi\u1ebft l\u1eadp k\u1ebft n\u1ed1i m\u00e3 h\u00f3a gi\u1eefa tr\u00ecnh duy\u1ec7t v\u00e0 m\u00e1y ch\u1ee7 web. Trong t\u1ea5n c\u00f4ng SSL hijacking, tin t\u1eb7c c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng m\u00e1y t\u00ednh kh\u00e1c v\u00e0 m\u00e1y ch\u1ee7 an to\u00e0n \u0111\u1ec3 ch\u1eb7n th\u00f4ng tin di chuy\u1ec3n gi\u1eefa m\u00e1y ch\u1ee7 v\u00e0 m\u00e1y t\u00ednh ng\u01b0\u1eddi d\u00f9ng cu\u1ed1i.<\/li>\n\n\n\n
    • Chi\u1ebfm \u0111o\u1ea1t email (Email hijacking):<\/strong> \u0110\u00e2y l\u00e0 t\u1ea5n c\u00f4ng MiTM, khi tin t\u1eb7c ki\u1ec3m so\u00e1t t\u00e0i kho\u1ea3n email c\u1ee7a ng\u00e2n h\u00e0ng v\u00e0 t\u1ed5 ch\u1ee9c t\u00e0i ch\u00ednh kh\u00e1c \u0111\u1ec3 gi\u00e1m s\u00e1t giao d\u1ecbch ng\u01b0\u1eddi d\u00f9ng th\u1ef1c hi\u1ec7n. Tin t\u1eb7c th\u1eadm ch\u00ed c\u00f3 th\u1ec3 gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 email c\u1ee7a ng\u00e2n h\u00e0ng v\u00e0 g\u1eedi h\u01b0\u1edbng d\u1eabn cho kh\u00e1ch h\u00e0ng chuy\u1ec3n ti\u1ec1n cho tin t\u1eb7c m\u00e0 kh\u00f4ng bi\u1ebft.<\/li>\n\n\n\n
    • Nghe tr\u1ed9m Wi-Fi (Wi-Fi eavesdropping):<\/strong> Cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y x\u1ea3y ra trong Wi-Fi c\u00f4ng c\u1ed9ng. Trong t\u1ea5n c\u00f4ng n\u00e0y, ng\u01b0\u1eddi d\u00f9ng Wi-Fi c\u00f4ng c\u1ed9ng b\u1ecb l\u1eeba k\u1ebft n\u1ed1i v\u1edbi m\u1ea1ng v\u00e0 \u0111i\u1ec3m ph\u00e1t s\u00f3ng Wi-Fi gi\u1ea3 m\u1ea1o. Tin t\u1eb7c th\u1ef1c hi\u1ec7n \u0111i\u1ec1u n\u00e0y b\u1eb1ng c\u00e1ch thi\u1ebft l\u1eadp k\u1ebft n\u1ed1i Wi-Fi c\u00f3 t\u00ean t\u01b0\u01a1ng t\u1ef1 v\u1edbi doanh nghi\u1ec7p g\u1ea7n \u0111\u00f3.<\/li>\n\n\n\n
    • Chi\u1ebfm \u0111o\u1ea1t th\u00f4ng tin phi\u00ean (Session hijacking): <\/strong>C\u00f2n g\u1ecdi l\u00e0 \u0103n c\u1eafp cookie tr\u00ecnh duy\u1ec7t, h\u00e0nh vi x\u1ea5u n\u00e0y x\u1ea3y ra khi tin t\u1eb7c \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u v\u00e0 m\u1eadt kh\u1ea9u l\u01b0u trong cookie phi\u00ean duy\u1ec7t ng\u01b0\u1eddi d\u00f9ng. \u0110\u00f4i khi, tin t\u1eb7c c\u00f3 th\u1ec3 truy c\u1eadp v\u00f4 h\u1ea1n v\u00e0o t\u00e0i nguy\u00ean \u0111\u00e3 l\u01b0u c\u1ee7a ng\u01b0\u1eddi d\u00f9ng, v\u00ed d\u1ee5 nh\u01b0 \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u v\u00e0 danh t\u00ednh c\u1ee7a ng\u01b0\u1eddi d\u00f9ng, mua h\u00e0ng ho\u1eb7c tr\u1ed9m ti\u1ec1n t\u1eeb t\u00e0i kho\u1ea3n ng\u00e2n h\u00e0ng c\u1ee7a h\u1ecd.<\/li>\n\n\n\n
    • L\u00e2y nhi\u1ec5m b\u1ed9 nh\u1edb t\u1ea1m (Cache poisoning):<\/strong> C\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 l\u00e0m nhi\u1ec5m cache \u0111\u1ecba ch\u1ec9 gi\u1ea3i quy\u1ebft (Address Resolution Protocol, ho\u1eb7c ARP cache poisoning), \u0111\u00e2y l\u00e0 m\u1ed9t t\u1ea5n c\u00f4ng MiTM hi\u1ec7n \u0111\u1ea1i ph\u1ed5 bi\u1ebfn, cho ph\u00e9p tin t\u1eb7c trong c\u00f9ng m\u1ea1ng con v\u1edbi n\u1ea1n nh\u00e2n nghe tr\u1ed9m l\u01b0u l\u01b0\u1ee3ng th\u00f4ng tin \u0111ang \u0111\u01b0\u1ee3c chuy\u1ec3n \u0111\u1ed5i gi\u1eefa h\u1ecd.<\/li>\n<\/ul>\n\n\n\n

      IV. C\u00e1ch ng\u0103n ch\u1eb7n c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng Man-in-the-Middle (MitM)<\/strong><\/p>\n\n\n

      \n
      \"\"<\/figure>\n<\/div>\n\n\n

      Trong vi\u1ec7c \u0111\u1ed1i ph\u00f3 v\u1edbi c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng Man-in-the-Middle (MitM), vi\u1ec7c h\u1ea1n ch\u1ebf l\u00e0 bi\u1ec7n ph\u00e1p ph\u00f2ng ng\u1eeba t\u1ed1t nh\u1ea5t. <\/p>\n\n\n\n

      D\u01b0\u1edbi \u0111\u00e2y l\u00e0 m\u1ed9t s\u1ed1 c\u00e1ch m\u00e0 ch\u00fang ta c\u00f3 th\u1ec3 \u00e1p d\u1ee5ng \u0111\u1ec3 ng\u0103n ch\u1eb7n nh\u1eefng cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y:<\/strong><\/p>\n\n\n\n

        \n
      1. T\u1ea1o k\u1ebft n\u1ed1i b\u1ea3o m\u1eadt:<\/strong> B\u01b0\u1edbc \u0111\u1ea7u ti\u00ean \u0111\u1ec3 ch\u1ed1ng l\u1ea1i c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng MitM l\u00e0 \u0111\u1ea3m b\u1ea3o k\u1ebft n\u1ed1i an to\u00e0n. Ng\u01b0\u1eddi d\u00f9ng ch\u1ec9 n\u00ean truy c\u1eadp c\u00e1c trang web hi\u1ec3n th\u1ecb “HTTPS” trong thanh \u0111\u1ecba ch\u1ec9 URL, thay v\u00ec ch\u1ec9 “HTTP”. H\u1ea7u h\u1ebft c\u00e1c tr\u00ecnh duy\u1ec7t web hi\u1ec3n th\u1ecb bi\u1ec3u t\u01b0\u1ee3ng \u1ed5 kh\u00f3a tr\u01b0\u1edbc URL \u0111\u1ec3 ch\u1ec9 ra r\u1eb1ng trang web l\u00e0 an to\u00e0n. B\u00ean c\u1ea1nh vi\u1ec7c \u0111\u1ea3m b\u1ea3o an to\u00e0n cho c\u00e1c trang web, vi\u1ec7c tr\u00e1nh s\u1eed d\u1ee5ng c\u00e1c k\u1ebft n\u1ed1i Wi-Fi c\u00f4ng c\u1ed9ng kh\u00f4ng b\u1ea3o m\u1eadt c\u0169ng r\u1ea5t quan tr\u1ecdng, v\u00ec ch\u00fang d\u1ec5 b\u1ecb t\u1ea5n c\u00f4ng v\u00e0 b\u1ecb t\u1ed9i ph\u1ea1m m\u1ea1ng \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u. T\u1ed5 ch\u1ee9c n\u00ean \u00e1p d\u1ee5ng vi\u1ec7c x\u00e1c th\u1ef1c \u0111a y\u1ebfu t\u1ed1 cho t\u1ea5t c\u1ea3 ng\u01b0\u1eddi d\u00f9ng, \u0111\u1ec3 t\u0103ng c\u01b0\u1eddng th\u00eam m\u1ed9t l\u1edbp b\u1ea3o m\u1eadt cho vi\u1ec7c truy\u1ec1n th\u00f4ng tr\u1ef1c tuy\u1ebfn.<\/li>\n\n\n\n
      2. Tr\u00e1nh email l\u1eeba \u0111\u1ea3o:<\/strong> T\u1ed9i ph\u1ea1m m\u1ea1ng th\u01b0\u1eddng t\u1ea1o ra c\u00e1c email l\u1eeba \u0111\u1ea3o \u0111\u1ec3 l\u1eeba ng\u01b0\u1eddi d\u00f9ng m\u1edf ch\u00fang. Ng\u01b0\u1eddi d\u00f9ng c\u1ea7n c\u00e2n nh\u1eafc k\u1ef9 tr\u01b0\u1edbc khi m\u1edf email \u0111\u1ebfn t\u1eeb ngu\u1ed3n kh\u00f4ng x\u00e1c minh ho\u1eb7c kh\u00f4ng r\u00f5. Th\u00f4ng th\u01b0\u1eddng, email l\u1eeba \u0111\u1ea3o s\u1ebd gi\u1ea3 m\u1ea1o m\u1ed9t ngu\u1ed3n \u0111\u00e1ng tin c\u1eady, nh\u01b0 m\u1ed9t t\u00e0i kho\u1ea3n ng\u00e2n h\u00e0ng ho\u1eb7c m\u1ed9t t\u1ed5 ch\u1ee9c t\u00e0i ch\u00ednh. Nh\u1eefng email n\u00e0y th\u01b0\u1eddng y\u00eau c\u1ea7u ng\u01b0\u1eddi d\u00f9ng nh\u1ea5p v\u00e0o li\u00ean k\u1ebft \u0111\u1ec3 nh\u1eadp th\u00f4ng tin \u0111\u0103ng nh\u1eadp ho\u1eb7c c\u1eadp nh\u1eadt m\u1eadt kh\u1ea9u. Tuy\u1ec7t \u0111\u1ed1i tr\u00e1nh nh\u1ea5p v\u00e0o c\u00e1c li\u00ean k\u1ebft n\u00e0y, v\u00ec ch\u00fang c\u00f3 th\u1ec3 chuy\u1ec3n h\u01b0\u1edbng ng\u01b0\u1eddi d\u00f9ng \u0111\u1ebfn trang web gi\u1ea3 m\u1ea1o ho\u1eb7c t\u1ea3i xu\u1ed1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i.<\/li>\n\n\n\n
      3. S\u1eed d\u1ee5ng m\u00e3 h\u00f3a m\u1ea1ng ri\u00eang \u1ea3o (VPN):<\/strong> VPN m\u00e3 h\u00f3a k\u1ebft n\u1ed1i internet v\u00e0 truy\u1ec1n d\u1eef li\u1ec7u tr\u1ef1c tuy\u1ebfn nh\u01b0 m\u1eadt kh\u1ea9u v\u00e0 th\u00f4ng tin th\u1ebb t\u00edn d\u1ee5ng, v\u00e0 n\u00ean \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng khi k\u1ebft n\u1ed1i \u0111\u1ebfn c\u00e1c m\u1ea1ng Wi-Fi c\u00f4ng c\u1ed9ng v\u00e0 \u0111i\u1ec3m ph\u00e1t s\u00f3ng kh\u00f4ng an to\u00e0n. VPN c\u00f3 th\u1ec3 ng\u0103n ch\u1eb7n ti\u1ec1m n\u0103ng c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng MitM. Ngay c\u1ea3 khi t\u1ed9i ph\u1ea1m m\u1ea1ng c\u00f3 th\u1ec3 truy c\u1eadp v\u00e0o m\u1ea1ng, h\u1ecd c\u0169ng s\u1ebd kh\u00f4ng th\u1ec3 gi\u1ea3i m\u00e3 c\u00e1c tin nh\u1eafn ho\u1eb7c truy c\u1eadp t\u00e0i nguy\u00ean do m\u00e3 h\u00f3a b\u1edfi VPN cung c\u1ea5p. T\u1ed5 ch\u1ee9c c\u0169ng c\u1ea7n \u0111\u1ea3m b\u1ea3o nh\u00e2n vi\u00ean \u0111\u0103ng nh\u1eadp h\u1ec7 th\u1ed1ng qua m\u1ea1ng ri\u00eang \u1ea3o c\u1ee7a c\u00f4ng ty, \u0111\u1eb7c bi\u1ec7t khi l\u00e0m vi\u1ec7c t\u1eeb xa.<\/li>\n\n\n\n
      4. B\u1ea3o v\u1ec7 \u0111i\u1ec3m cu\u1ed1i: <\/strong>Tri\u1ec3n khai b\u1ea3o m\u1eadt \u0111i\u1ec3m cu\u1ed1i to\u00e0n di\u1ec7n l\u00e0 r\u1ea5t quan tr\u1ecdng khi c\u1ed1 g\u1eafng ng\u0103n ch\u1eb7n s\u1ef1 lan truy\u1ec1n c\u1ee7a ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i v\u00e0 c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng m\u1ea1ng kh\u00e1c. V\u00ec c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng MitM th\u01b0\u1eddng s\u1eed d\u1ee5ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i \u0111\u1ec3 th\u1ef1c hi\u1ec7n, vi\u1ec7c c\u00e0i \u0111\u1eb7t s\u1ea3n ph\u1ea9m ch\u1ed1ng ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i v\u00e0 b\u1ea3o m\u1eadt internet l\u00e0 h\u1ebft s\u1ee9c quan tr\u1ecdng.<\/li>\n<\/ol>\n\n\n\n

        H\u1ea7u h\u1ebft c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng m\u1ea1ng th\u01b0\u1eddng b\u1eaft ngu\u1ed3n t\u1eeb h\u00e0nh vi c\u1ee7a con ng\u01b0\u1eddi m\u00e0 th\u01b0\u1eddng kh\u00f4ng \u0111\u01b0\u1ee3c nh\u1eadn th\u1ee9c. B\u1eb1ng c\u00e1ch \u0111\u00e0o t\u1ea1o ng\u01b0\u1eddi d\u00f9ng v\u1ec1 nh\u1eefng nguy c\u01a1 c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng MitM v\u00e0 th\u1ef1c hi\u1ec7n vi\u1ec7c \u0111\u00e0o t\u1ea1o ch\u1ee7 \u0111\u1ed9ng v\u1ec1 nh\u1eadn th\u1ee9c an ninh cho nh\u00e2n vi\u00ean, t\u1ed5 ch\u1ee9c c\u00f3 th\u1ec3 ph\u00f2ng tr\u00e1nh m\u1ed1i nguy h\u1ea1i \u0111\u1ed1i v\u1edbi d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m c\u1ee7a h\u1ecd. Vi\u1ec7c \u0111\u00e0o t\u1ea1o c\u0169ng n\u00ean gi\u00fap ng\u01b0\u1eddi d\u00f9ng nh\u1eadn bi\u1ebft email \u0111\u1ed9c h\u1ea1i v\u00e0 hi\u1ec3u v\u1ec1 nh\u1eefng th\u1ef1c h\u00e0nh an ninh t\u1ed1t nh\u1ea5t, nh\u01b0 vi\u1ec7c s\u1eed d\u1ee5ng VPN, tr\u00e1nh c\u00e1c m\u1ea1ng Wi-Fi c\u00f4ng c\u1ed9ng v\u00e0 kh\u00f4ng nh\u1ea5p v\u00e0o c\u00e1c li\u00ean k\u1ebft email \u0111\u00e1ng ng\u1edd.<\/p>\n","protected":false},"excerpt":{"rendered":"

        T\u1ed5ng quan : Trong th\u1ebf gi\u1edbi s\u1ed1 h\u00f3a ng\u00e0y nay, giao ti\u1ebfp qua m\u1ea1ng \u0111\u00e3 tr\u1edf th\u00e0nh m\u1ed9t ph\u1ea7n kh\u00f4ng th\u1ec3 thi\u1ebfu c\u1ee7a cu\u1ed9c s\u1ed1ng h\u00e0ng ng\u00e0y. Tuy nhi\u00ean, \u0111i\u1ec1u n\u00e0y c\u0169ng t\u1ea1o ra nhi\u1ec1u th\u00e1ch th\u1ee9c v\u1ec1 b\u1ea3o m\u1eadt, \u0111\u1eb7c bi\u1ec7t l\u00e0 nguy c\u01a1 b\u1ecb t\u1ea5n c\u00f4ng Man-in-the-Middle (MITM). \u0110\u00e2y l\u00e0 m\u1ed9t trong nh\u1eefng […]<\/p>\n","protected":false},"author":11,"featured_media":7570,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[18,80,17],"tags":[251,252,92,97],"class_list":["post-7564","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-endpoint","category-huong-dan-tai-lieu","category-bao-mat","tag-man-in-the-middle","tag-mitm","tag-ransomware","tag-sophos-endpoint","entry","has-media"],"_links":{"self":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7564","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/comments?post=7564"}],"version-history":[{"count":1,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7564\/revisions"}],"predecessor-version":[{"id":10143,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/7564\/revisions\/10143"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media\/7570"}],"wp:attachment":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media?parent=7564"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/categories?post=7564"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/tags?post=7564"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}