{"id":24268,"date":"2026-06-05T08:00:00","date_gmt":"2026-06-05T11:00:00","guid":{"rendered":"https:\/\/www.ethicalhacker.com.br\/site\/?p=24268"},"modified":"2026-05-30T22:29:55","modified_gmt":"2026-05-31T01:29:55","slug":"a-nova-fronteira-dos-ciberataques","status":"publish","type":"post","link":"https:\/\/www.ethicalhacker.com.br\/site\/2026\/06\/exploits\/a-nova-fronteira-dos-ciberataques\/","title":{"rendered":"A nova fronteira dos ciberataques"},"content":{"rendered":"\n<p style=\"text-align: justify;\"><strong>A nova fronteira dos ciberataques: Como dados esquecidos est\u00e3o se tornando o alvo preferencial dos criminosos digitais<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"349\" data-end=\"706\">Durante d\u00e9cadas, a seguran\u00e7a da informa\u00e7\u00e3o concentrou seus esfor\u00e7os na prote\u00e7\u00e3o de sistemas cr\u00edticos, servidores, bancos de dados ativos e aplica\u00e7\u00f5es corporativas. Firewalls, antiv\u00edrus, sistemas de detec\u00e7\u00e3o de intrus\u00e3o e plataformas de monitoramento foram desenvolvidos para impedir acessos n\u00e3o autorizados e reduzir a superf\u00edcie de ataque das organiza\u00e7\u00f5es.<\/p>\n<p style=\"text-align: justify;\" data-start=\"708\" data-end=\"1056\">Entretanto, o cen\u00e1rio atual da ciberseguran\u00e7a est\u00e1 passando por uma transforma\u00e7\u00e3o significativa. Os cibercriminosos est\u00e3o mudando seu foco estrat\u00e9gico. Em vez de atacar exclusivamente sistemas ativos e altamente protegidos, muitos grupos passaram a explorar um elemento frequentemente negligenciado pelas empresas: os chamados <strong data-start=\"1035\" data-end=\"1055\">dados esquecidos<\/strong>.<\/p>\n<p style=\"text-align: justify;\" data-start=\"1058\" data-end=\"1365\">Segundo an\u00e1lise publicada pela <span class=\"\" data-state=\"closed\">PressWorks \/ Valor Econ\u00f4mico<\/span>, organiza\u00e7\u00f5es acumulam grandes volumes de informa\u00e7\u00f5es armazenadas em ambientes legados, backups antigos, reposit\u00f3rios pouco monitorados e sistemas que permanecem conectados \u00e0 infraestrutura corporativa mesmo sem uso operacional relevante.<\/p>\n<p style=\"text-align: justify;\" data-start=\"1367\" data-end=\"1470\">Esse fen\u00f4meno est\u00e1 criando uma nova superf\u00edcie de ataque extremamente atrativa para agentes maliciosos.<\/p>\n<p data-start=\"1367\" data-end=\"1470\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"14ao5qr\" data-start=\"1477\" data-end=\"1507\"><strong>O que s\u00e3o dados esquecidos?<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"1509\" data-end=\"1658\">Dados esquecidos s\u00e3o informa\u00e7\u00f5es corporativas que permanecem armazenadas, mas que n\u00e3o fazem mais parte do fluxo operacional cotidiano da organiza\u00e7\u00e3o.<\/p>\n<p style=\"text-align: justify;\" data-start=\"1660\" data-end=\"1697\">Esses dados podem estar presentes em:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"1699\" data-end=\"1951\">\n<li data-section-id=\"y3t9ps\" data-start=\"1699\" data-end=\"1720\">\n<p>Servidores legados;<\/p>\n<\/li>\n<li data-section-id=\"1ktixi7\" data-start=\"1721\" data-end=\"1742\">\n<p>Backups hist\u00f3ricos;<\/p>\n<\/li>\n<li data-section-id=\"vqk6v\" data-start=\"1743\" data-end=\"1770\">\n<p>Ambientes de homologa\u00e7\u00e3o;<\/p>\n<\/li>\n<li data-section-id=\"1ikisph\" data-start=\"1771\" data-end=\"1794\">\n<p>Sistemas desativados;<\/p>\n<\/li>\n<li data-section-id=\"149pv09\" data-start=\"1795\" data-end=\"1831\">\n<p>Compartilhamentos de rede antigos;<\/p>\n<\/li>\n<li data-section-id=\"1m8oh18\" data-start=\"1832\" data-end=\"1868\">\n<p>Reposit\u00f3rios em nuvem abandonados;<\/p>\n<\/li>\n<li data-section-id=\"1531fgy\" data-start=\"1869\" data-end=\"1900\">\n<p>M\u00e1quinas virtuais esquecidas;<\/p>\n<\/li>\n<li data-section-id=\"61t6vb\" data-start=\"1901\" data-end=\"1951\">\n<p>Arquivos arquivados por exig\u00eancias regulat\u00f3rias.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"1953\" data-end=\"2100\">Embora muitas vezes n\u00e3o sejam utilizados, continuam contendo informa\u00e7\u00f5es sens\u00edveis e frequentemente permanecem acess\u00edveis dentro da infraestrutura.<\/p>\n<p data-start=\"1953\" data-end=\"2100\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"jv5nop\" data-start=\"2107\" data-end=\"2148\"><strong>O crescimento do problema nas empresas<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"2150\" data-end=\"2230\">A transforma\u00e7\u00e3o digital acelerou drasticamente a produ\u00e7\u00e3o de dados corporativos.<\/p>\n<p style=\"text-align: justify;\" data-start=\"2232\" data-end=\"2260\">Empresas modernas armazenam:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"2262\" data-end=\"2415\">\n<li data-section-id=\"7wcsee\" data-start=\"2262\" data-end=\"2288\">\n<p>Informa\u00e7\u00f5es financeiras;<\/p>\n<\/li>\n<li data-section-id=\"8n3t5s\" data-start=\"2289\" data-end=\"2309\">\n<p>Dados de clientes;<\/p>\n<\/li>\n<li data-section-id=\"1ohzhge\" data-start=\"2310\" data-end=\"2322\">\n<p>Contratos;<\/p>\n<\/li>\n<li data-section-id=\"hvpkgp\" data-start=\"2323\" data-end=\"2337\">\n<p>Credenciais;<\/p>\n<\/li>\n<li data-section-id=\"bq91sa\" data-start=\"2338\" data-end=\"2360\">\n<p>Registros de acesso;<\/p>\n<\/li>\n<li data-section-id=\"3ec31w\" data-start=\"2361\" data-end=\"2388\">\n<p>Informa\u00e7\u00f5es estrat\u00e9gicas;<\/p>\n<\/li>\n<li data-section-id=\"123094h\" data-start=\"2389\" data-end=\"2415\">\n<p>Propriedade intelectual.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"2417\" data-end=\"2532\">Com o passar dos anos, parte desses dados perde relev\u00e2ncia operacional, mas raramente \u00e9 removida de forma adequada.<\/p>\n<p style=\"text-align: justify;\" data-start=\"2534\" data-end=\"2648\">O resultado \u00e9 a cria\u00e7\u00e3o de enormes volumes de informa\u00e7\u00e3o que permanecem armazenados sem monitoramento consistente.<\/p>\n<p data-start=\"2534\" data-end=\"2648\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1vuyr7w\" data-start=\"2655\" data-end=\"2708\"><strong>Por que os criminosos est\u00e3o mudando de estrat\u00e9gia?<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"2710\" data-end=\"2752\">Sistemas cr\u00edticos atuais costumam possuir:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"2754\" data-end=\"2884\">\n<li data-section-id=\"1csiiaz\" data-start=\"2754\" data-end=\"2780\">\n<p>Autentica\u00e7\u00e3o multifator;<\/p>\n<\/li>\n<li data-section-id=\"1t4fhjg\" data-start=\"2781\" data-end=\"2806\">\n<p>Monitoramento cont\u00ednuo;<\/p>\n<\/li>\n<li data-section-id=\"1tnb4q3\" data-start=\"2807\" data-end=\"2819\">\n<p>EDR e XDR;<\/p>\n<\/li>\n<li data-section-id=\"1261gaw\" data-start=\"2820\" data-end=\"2842\">\n<p>Firewalls avan\u00e7ados;<\/p>\n<\/li>\n<li data-section-id=\"qxg66e\" data-start=\"2843\" data-end=\"2859\">\n<p>Sistemas SIEM;<\/p>\n<\/li>\n<li data-section-id=\"n49atr\" data-start=\"2860\" data-end=\"2884\">\n<p>Equipes SOC dedicadas.<\/p>\n<\/li>\n<\/ul>\n<p>\u00a0<\/p>\n<p style=\"text-align: justify;\" data-start=\"2886\" data-end=\"2936\">J\u00e1 ambientes esquecidos frequentemente apresentam:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"2938\" data-end=\"3072\">\n<li data-section-id=\"1g9s786\" data-start=\"2938\" data-end=\"2955\">\n<p>Senhas antigas;<\/p>\n<\/li>\n<li data-section-id=\"7uicb\" data-start=\"2956\" data-end=\"2983\">\n<p>Sistemas sem atualiza\u00e7\u00e3o;<\/p>\n<\/li>\n<li data-section-id=\"9kazbs\" data-start=\"2984\" data-end=\"3010\">\n<p>Configura\u00e7\u00f5es inseguras;<\/p>\n<\/li>\n<li data-section-id=\"r5xr1m\" data-start=\"3011\" data-end=\"3039\">\n<p>Aus\u00eancia de monitoramento;<\/p>\n<\/li>\n<li data-section-id=\"rbvm2s\" data-start=\"3040\" data-end=\"3072\">\n<p>Controle de acesso inadequado.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"3074\" data-end=\"3195\">Para um invasor, explorar uma \u00e1rea negligenciada pode ser muito mais simples do que enfrentar camadas modernas de defesa.<\/p>\n<p data-start=\"3074\" data-end=\"3195\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1vlb6bx\" data-start=\"3202\" data-end=\"3229\"><strong>A economia do cibercrime<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"3231\" data-end=\"3285\">O cibercrime moderno opera sob uma l\u00f3gica empresarial.<\/p>\n<p style=\"text-align: justify;\" data-start=\"3287\" data-end=\"3312\">Grupos criminosos buscam:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"3314\" data-end=\"3429\">\n<li data-section-id=\"embry8\" data-start=\"3314\" data-end=\"3345\">\n<p>Maximizar retorno financeiro;<\/p>\n<\/li>\n<li data-section-id=\"17c6783\" data-start=\"3346\" data-end=\"3378\">\n<p>Minimizar riscos operacionais;<\/p>\n<\/li>\n<li data-section-id=\"q7nwxu\" data-start=\"3379\" data-end=\"3401\">\n<p>Automatizar ataques;<\/p>\n<\/li>\n<li data-section-id=\"1ucq8rw\" data-start=\"3402\" data-end=\"3429\">\n<p>Reduzir tempo de invas\u00e3o.<\/p>\n<\/li>\n<\/ul>\n<p>\u00a0<\/p>\n<p style=\"text-align: justify;\" data-start=\"3431\" data-end=\"3507\">Nesse contexto, dados esquecidos representam um alvo extremamente lucrativo.<\/p>\n<p style=\"text-align: justify;\" data-start=\"3509\" data-end=\"3542\">Informa\u00e7\u00f5es antigas podem conter:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"3544\" data-end=\"3658\">\n<li data-section-id=\"p24ldb\" data-start=\"3544\" data-end=\"3561\">\n<p>Dados pessoais;<\/p>\n<\/li>\n<li data-section-id=\"1iybb25\" data-start=\"3562\" data-end=\"3584\">\n<p>Credenciais v\u00e1lidas;<\/p>\n<\/li>\n<li data-section-id=\"8w44ip\" data-start=\"3585\" data-end=\"3609\">\n<p>Informa\u00e7\u00f5es banc\u00e1rias;<\/p>\n<\/li>\n<li data-section-id=\"d324y0\" data-start=\"3610\" data-end=\"3634\">\n<p>Segredos corporativos;<\/p>\n<\/li>\n<li data-section-id=\"id7t6w\" data-start=\"3635\" data-end=\"3658\">\n<p>Documenta\u00e7\u00e3o interna.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"3660\" data-end=\"3731\">Mesmo registros antigos podem ser monetizados em mercados clandestinos.<\/p>\n<p data-start=\"3660\" data-end=\"3731\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"a7spot\" data-start=\"3738\" data-end=\"3771\"><strong>O perigo dos ambientes legados<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"3773\" data-end=\"3841\">Uma das principais origens desse problema est\u00e1 nos sistemas legados.<\/p>\n<p style=\"text-align: justify;\" data-start=\"3843\" data-end=\"3906\">Muitas organiza\u00e7\u00f5es mant\u00eam aplica\u00e7\u00f5es antigas por motivos como:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"3908\" data-end=\"4004\">\n<li data-section-id=\"jsd8b8\" data-start=\"3908\" data-end=\"3926\">\n<p>Compatibilidade;<\/p>\n<\/li>\n<li data-section-id=\"otxot6\" data-start=\"3927\" data-end=\"3953\">\n<p>Exig\u00eancias regulat\u00f3rias;<\/p>\n<\/li>\n<li data-section-id=\"jm0s90\" data-start=\"3954\" data-end=\"3975\">\n<p>Custos de migra\u00e7\u00e3o;<\/p>\n<\/li>\n<li data-section-id=\"1ak6nx9\" data-start=\"3976\" data-end=\"4004\">\n<p>Depend\u00eancias operacionais.<\/p>\n<\/li>\n<\/ul>\n<p>\u00a0<\/p>\n<p style=\"text-align: justify;\" data-start=\"4006\" data-end=\"4046\">Esses ambientes frequentemente utilizam:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"4048\" data-end=\"4168\">\n<li data-section-id=\"znwdh9\" data-start=\"4048\" data-end=\"4082\">\n<p>Sistemas operacionais obsoletos;<\/p>\n<\/li>\n<li data-section-id=\"rw17ec\" data-start=\"4083\" data-end=\"4106\">\n<p>Protocolos inseguros;<\/p>\n<\/li>\n<li data-section-id=\"ij4kku\" data-start=\"4107\" data-end=\"4133\">\n<p>Bibliotecas vulner\u00e1veis;<\/p>\n<\/li>\n<li data-section-id=\"ai6u\" data-start=\"4134\" data-end=\"4168\">\n<p>M\u00e9todos antigos de autentica\u00e7\u00e3o.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"4170\" data-end=\"4225\">Para atacantes, representam pontos de entrada valiosos.<\/p>\n<p data-start=\"4170\" data-end=\"4225\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1k8y7i6\" data-start=\"4232\" data-end=\"4263\"><strong>Backups: O tesouro esquecido<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"4265\" data-end=\"4337\">Backups s\u00e3o frequentemente vistos apenas como mecanismos de recupera\u00e7\u00e3o.<\/p>\n<p style=\"text-align: justify;\" data-start=\"4339\" data-end=\"4425\">Entretanto, para um invasor, eles podem conter uma fotografia completa da organiza\u00e7\u00e3o.<\/p>\n<p style=\"text-align: justify;\" data-start=\"4427\" data-end=\"4459\">Backups antigos podem armazenar:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"4461\" data-end=\"4578\">\n<li data-section-id=\"3cmrx7\" data-start=\"4461\" data-end=\"4481\">\n<p>Bases de clientes;<\/p>\n<\/li>\n<li data-section-id=\"g91znh\" data-start=\"4482\" data-end=\"4508\">\n<p>Documentos estrat\u00e9gicos;<\/p>\n<\/li>\n<li data-section-id=\"txmc3k\" data-start=\"4509\" data-end=\"4533\">\n<p>Chaves criptogr\u00e1ficas;<\/p>\n<\/li>\n<li data-section-id=\"1g9s786\" data-start=\"4534\" data-end=\"4551\">\n<p>Senhas antigas;<\/p>\n<\/li>\n<li data-section-id=\"7wcser\" data-start=\"4552\" data-end=\"4578\">\n<p>Informa\u00e7\u00f5es financeiras.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"4580\" data-end=\"4698\">Em muitos casos, os controles de acesso aos backups s\u00e3o menos rigorosos do que os aplicados aos ambientes de produ\u00e7\u00e3o.<\/p>\n<p data-start=\"4580\" data-end=\"4698\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"19f98zo\" data-start=\"4705\" data-end=\"4738\"><strong>A explora\u00e7\u00e3o de dados na nuvem<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"4740\" data-end=\"4805\">O crescimento dos servi\u00e7os cloud ampliou ainda mais esse desafio.<\/p>\n<p style=\"text-align: justify;\" data-start=\"4807\" data-end=\"4841\">Organiza\u00e7\u00f5es frequentemente criam:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"4843\" data-end=\"4953\">\n<li data-section-id=\"1w5tk0t\" data-start=\"4843\" data-end=\"4870\">\n<p>Buckets de armazenamento;<\/p>\n<\/li>\n<li data-section-id=\"1pe34ao\" data-start=\"4871\" data-end=\"4903\">\n<p>M\u00e1quinas virtuais tempor\u00e1rias;<\/p>\n<\/li>\n<li data-section-id=\"ig0n73\" data-start=\"4904\" data-end=\"4925\">\n<p>Ambientes de teste;<\/p>\n<\/li>\n<li data-section-id=\"mxsgyw\" data-start=\"4926\" data-end=\"4953\">\n<p>Inst\u00e2ncias experimentais.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"4955\" data-end=\"5034\">Quando esses recursos deixam de ser utilizados, muitas vezes permanecem ativos.<\/p>\n<p style=\"text-align: justify;\" data-start=\"5036\" data-end=\"5190\">Pesquisadores identificam regularmente ambientes expostos contendo milhares de registros sens\u00edveis devido a erros de configura\u00e7\u00e3o ou abandono operacional.<\/p>\n<p data-start=\"5036\" data-end=\"5190\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1c631cu\" data-start=\"5197\" data-end=\"5235\"><strong>A rela\u00e7\u00e3o com ataques de ransomware<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"5237\" data-end=\"5317\">Grupos de ransomware passaram a utilizar estrat\u00e9gias de dupla e tripla extors\u00e3o.<\/p>\n<p style=\"text-align: justify;\" data-start=\"5319\" data-end=\"5374\">Antes de criptografar sistemas, os criminosos procuram:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"5376\" data-end=\"5468\">\n<li data-section-id=\"612phh\" data-start=\"5376\" data-end=\"5394\">\n<p>Exfiltrar dados;<\/p>\n<\/li>\n<li data-section-id=\"1nkpus9\" data-start=\"5395\" data-end=\"5433\">\n<p>Identificar documentos estrat\u00e9gicos;<\/p>\n<\/li>\n<li data-section-id=\"kfmja9\" data-start=\"5434\" data-end=\"5468\">\n<p>Localizar informa\u00e7\u00f5es reguladas.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"5470\" data-end=\"5538\">Dados esquecidos tornam-se uma fonte rica de material para extors\u00e3o.<\/p>\n<p style=\"text-align: justify;\" data-start=\"5540\" data-end=\"5667\">Mesmo que a empresa consiga restaurar seus sistemas, o vazamento das informa\u00e7\u00f5es continua representando um risco significativo.<\/p>\n<p data-start=\"5540\" data-end=\"5667\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"xu2h91\" data-start=\"5674\" data-end=\"5712\"><strong>O problema da falta de visibilidade<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"5714\" data-end=\"5808\">Um dos maiores desafios da seguran\u00e7a moderna \u00e9 a aus\u00eancia de visibilidade completa dos ativos.<\/p>\n<p style=\"text-align: justify;\" data-start=\"5810\" data-end=\"5864\">Muitas organiza\u00e7\u00f5es n\u00e3o possuem invent\u00e1rio preciso de:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"5866\" data-end=\"5964\">\n<li data-section-id=\"1n3oxev\" data-start=\"5866\" data-end=\"5879\">\n<p>Servidores;<\/p>\n<\/li>\n<li data-section-id=\"nyjoa1\" data-start=\"5880\" data-end=\"5897\">\n<p>Bases de dados;<\/p>\n<\/li>\n<li data-section-id=\"1svsugc\" data-start=\"5898\" data-end=\"5916\">\n<p>Ambientes cloud;<\/p>\n<\/li>\n<li data-section-id=\"8kbs77\" data-start=\"5917\" data-end=\"5936\">\n<p>Sistemas legados;<\/p>\n<\/li>\n<li data-section-id=\"ht8yu9\" data-start=\"5937\" data-end=\"5964\">\n<p>Reposit\u00f3rios de arquivos.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"5966\" data-end=\"6021\">Aquilo que n\u00e3o \u00e9 conhecido dificilmente ser\u00e1 protegido.<\/p>\n<p data-start=\"5966\" data-end=\"6021\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1klr5vl\" data-start=\"6028\" data-end=\"6070\"><strong>Data Security Posture Management (DSPM)<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"6072\" data-end=\"6176\">Para enfrentar esse cen\u00e1rio, cresce a ado\u00e7\u00e3o de solu\u00e7\u00f5es de <strong data-start=\"6132\" data-end=\"6175\">Data Security Posture Management (DSPM)<\/strong>.<\/p>\n<p style=\"text-align: justify;\" data-start=\"6178\" data-end=\"6205\">Essas plataformas ajudam a:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"6207\" data-end=\"6374\">\n<li data-section-id=\"ot4ryj\" data-start=\"6207\" data-end=\"6232\">\n<p>Mapear dados sens\u00edveis;<\/p>\n<\/li>\n<li data-section-id=\"5gy468\" data-start=\"6233\" data-end=\"6271\">\n<p>Identificar reposit\u00f3rios esquecidos;<\/p>\n<\/li>\n<li data-section-id=\"11ihgj3\" data-start=\"6272\" data-end=\"6307\">\n<p>Classificar informa\u00e7\u00f5es cr\u00edticas;<\/p>\n<\/li>\n<li data-section-id=\"1khhbh0\" data-start=\"6308\" data-end=\"6340\">\n<p>Detectar exposi\u00e7\u00f5es indevidas;<\/p>\n<\/li>\n<li data-section-id=\"zqfgjg\" data-start=\"6341\" data-end=\"6374\">\n<p>Monitorar riscos continuamente.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"6376\" data-end=\"6483\">O foco deixa de ser apenas a prote\u00e7\u00e3o da infraestrutura e passa a incluir diretamente a prote\u00e7\u00e3o dos dados.<\/p>\n<p data-start=\"6376\" data-end=\"6483\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1o07h55\" data-start=\"6490\" data-end=\"6529\"><strong>A import\u00e2ncia da governan\u00e7a de dados<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"6531\" data-end=\"6604\">A governan\u00e7a tornou-se um componente essencial da ciberseguran\u00e7a moderna.<\/p>\n<p style=\"text-align: justify;\" data-start=\"6606\" data-end=\"6643\">Entre as pr\u00e1ticas recomendadas est\u00e3o:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"6645\" data-end=\"6814\">\n<li data-section-id=\"fscq42\" data-start=\"6645\" data-end=\"6682\">\n<p>Invent\u00e1rio cont\u00ednuo de informa\u00e7\u00f5es;<\/p>\n<\/li>\n<li data-section-id=\"1xqz09a\" data-start=\"6683\" data-end=\"6708\">\n<p>Classifica\u00e7\u00e3o de dados;<\/p>\n<\/li>\n<li data-section-id=\"fzahj7\" data-start=\"6709\" data-end=\"6733\">\n<p>Pol\u00edticas de reten\u00e7\u00e3o;<\/p>\n<\/li>\n<li data-section-id=\"10drlvz\" data-start=\"6734\" data-end=\"6779\">\n<p>Elimina\u00e7\u00e3o segura de informa\u00e7\u00f5es obsoletas;<\/p>\n<\/li>\n<li data-section-id=\"4l2zcy\" data-start=\"6780\" data-end=\"6814\">\n<p>Revis\u00e3o peri\u00f3dica de permiss\u00f5es.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"6816\" data-end=\"6907\">Essas medidas reduzem significativamente a quantidade de dados expostos desnecessariamente.<\/p>\n<p data-start=\"6816\" data-end=\"6907\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"5ve1nu\" data-start=\"6914\" data-end=\"6952\"><strong>LGPD e responsabilidade corporativa<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"6954\" data-end=\"7042\">Sob a perspectiva regulat\u00f3ria, manter dados esquecidos tamb\u00e9m representa risco jur\u00eddico.<\/p>\n<p style=\"text-align: justify;\" data-start=\"7044\" data-end=\"7171\">A <span class=\"hover:entity-accent entity-underline inline cursor-pointer align-baseline\"><span class=\"whitespace-normal\">Autoridade Nacional de Prote\u00e7\u00e3o de Dados<\/span><\/span> exige que organiza\u00e7\u00f5es adotem medidas adequadas para prote\u00e7\u00e3o das informa\u00e7\u00f5es pessoais.<\/p>\n<p style=\"text-align: justify;\" data-start=\"7173\" data-end=\"7265\">Quanto maior o volume de dados armazenados sem necessidade, maior tende a ser a exposi\u00e7\u00e3o a:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"7267\" data-end=\"7369\">\n<li data-section-id=\"16kd0ml\" data-start=\"7267\" data-end=\"7293\">\n<p>Incidentes de seguran\u00e7a;<\/p>\n<\/li>\n<li data-section-id=\"sivglj\" data-start=\"7294\" data-end=\"7316\">\n<p>Multas regulat\u00f3rias;<\/p>\n<\/li>\n<li data-section-id=\"sao2nn\" data-start=\"7317\" data-end=\"7339\">\n<p>Danos reputacionais;<\/p>\n<\/li>\n<li data-section-id=\"101ysog\" data-start=\"7340\" data-end=\"7369\">\n<p>Responsabiliza\u00e7\u00e3o jur\u00eddica.<\/p>\n<\/li>\n<\/ul>\n<p>\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"8tvw76\" data-start=\"7376\" data-end=\"7417\"><strong>O futuro dos ataques baseados em dados<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"7419\" data-end=\"7547\">Especialistas observam que os ataques est\u00e3o migrando de uma l\u00f3gica centrada em sistemas para uma l\u00f3gica centrada em informa\u00e7\u00f5es.<\/p>\n<p style=\"text-align: justify;\" data-start=\"7549\" data-end=\"7605\">O objetivo principal j\u00e1 n\u00e3o \u00e9 apenas invadir servidores.<\/p>\n<p style=\"text-align: justify;\" data-start=\"7607\" data-end=\"7627\">O foco passou a ser:<\/p>\n<ul style=\"text-align: justify;\" data-start=\"7629\" data-end=\"7738\">\n<li data-section-id=\"109o5r4\" data-start=\"7629\" data-end=\"7656\">\n<p>Encontrar dados valiosos;<\/p>\n<\/li>\n<li data-section-id=\"19me0u2\" data-start=\"7657\" data-end=\"7681\">\n<p>Monetizar informa\u00e7\u00f5es;<\/p>\n<\/li>\n<li data-section-id=\"7vy192\" data-start=\"7682\" data-end=\"7702\">\n<p>Praticar extors\u00e3o;<\/p>\n<\/li>\n<li data-section-id=\"hom7by\" data-start=\"7703\" data-end=\"7738\">\n<p>Explorar propriedade intelectual.<\/p>\n<\/li>\n<\/ul>\n<p style=\"text-align: justify;\" data-start=\"7740\" data-end=\"7829\">Nesse cen\u00e1rio, qualquer reposit\u00f3rio esquecido pode se transformar em um alvo priorit\u00e1rio.<\/p>\n<p data-start=\"7740\" data-end=\"7829\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"h85oci\" data-start=\"7836\" data-end=\"7848\"><strong>Conclus\u00e3o<\/strong><\/p>\n<p style=\"text-align: justify;\" data-start=\"7850\" data-end=\"8154\">A evolu\u00e7\u00e3o do cibercrime demonstra que a prote\u00e7\u00e3o dos sistemas, embora essencial, j\u00e1 n\u00e3o \u00e9 suficiente para garantir a seguran\u00e7a organizacional. Os criminosos compreenderam que dados esquecidos frequentemente oferecem um caminho mais simples, silencioso e lucrativo para obten\u00e7\u00e3o de informa\u00e7\u00f5es sens\u00edveis.<\/p>\n<p style=\"text-align: justify;\" data-start=\"8156\" data-end=\"8491\">Ambientes legados, backups antigos, reposit\u00f3rios abandonados e recursos em nuvem sem gerenciamento adequado est\u00e3o se transformando em pontos cr\u00edticos de exposi\u00e7\u00e3o. Muitas vezes, essas estruturas permanecem invis\u00edveis para as equipes de seguran\u00e7a, mas altamente vis\u00edveis para ferramentas automatizadas utilizadas por agentes maliciosos.<\/p>\n<p style=\"text-align: justify;\" data-start=\"8493\" data-end=\"8895\">O cen\u00e1rio atual exige uma mudan\u00e7a de paradigma. A seguran\u00e7a moderna deve deixar de proteger apenas infraestruturas e passar a proteger diretamente os dados, independentemente de onde estejam armazenados. Organiza\u00e7\u00f5es que investirem em governan\u00e7a, visibilidade de ativos, classifica\u00e7\u00e3o de informa\u00e7\u00f5es e monitoramento cont\u00ednuo estar\u00e3o mais preparadas para enfrentar essa nova gera\u00e7\u00e3o de amea\u00e7as digitais.<\/p>\n<p data-start=\"8493\" data-end=\"8895\">\u00a0<\/p>\n<p style=\"text-align: justify;\" data-section-id=\"1bfeuhi\" data-start=\"8902\" data-end=\"8931\"><strong>Refer\u00eancias Bibliogr\u00e1ficas<\/strong><\/p>\n<ul data-start=\"8933\" data-end=\"9015\">\n<li style=\"text-align: justify;\" data-section-id=\"a37rzb\" data-start=\"8933\" data-end=\"8973\">\n<p><span class=\"\" data-state=\"closed\"><a class=\"decorated-link\" href=\"https:\/\/valor.globo.com\/patrocinado\/pressworks\/noticia\/2026\/05\/22\/ciberataques-deixam-de-mirar-apenas-sistemas-e-passam-a-explorar-dados-esquecidos-das-empresas-1.ghtml?utm_source=chatgpt.com\" target=\"_blank\" rel=\"noopener\">Valor Econ\u00f4mico \/ PressWorks \u2013 Ciberataques deixam de mirar apenas sistemas e passam a explorar dados esquecidos das empresas<\/a><\/span><\/p>\n<\/li>\n<li data-section-id=\"12bqazo\" data-start=\"8975\" data-end=\"9015\" data-is-last-node=\"\">\n<p style=\"text-align: justify;\"><span class=\"\" data-state=\"closed\"><a class=\"decorated-link\" href=\"https:\/\/www.ibm.com\/reports\/data-breach?utm_source=chatgpt.com\" target=\"_blank\" rel=\"noopener\">IBM Security \u2013 Cost of a Data Breach Report<\/a><\/span><\/p>\n<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>A nova fronteira dos ciberataques: Como dados esquecidos est\u00e3o se tornando o alvo preferencial dos criminosos digitais Durante d\u00e9cadas, a seguran\u00e7a da informa\u00e7\u00e3o concentrou seus esfor\u00e7os na prote\u00e7\u00e3o de sistemas cr\u00edticos, servidores, bancos de dados ativos e aplica\u00e7\u00f5es corporativas. Firewalls, antiv\u00edrus, sistemas de detec\u00e7\u00e3o de intrus\u00e3o e plataformas de monitoramento foram desenvolvidos para impedir acessos [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":24269,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[89,100,21,105],"tags":[],"class_list":["post-24268","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-basico","category-diversos","category-exploits","category-noticias"],"_links":{"self":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/24268","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/comments?post=24268"}],"version-history":[{"count":4,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/24268\/revisions"}],"predecessor-version":[{"id":24284,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/24268\/revisions\/24284"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/media\/24269"}],"wp:attachment":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/media?parent=24268"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/categories?post=24268"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/tags?post=24268"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}