KORXONADA AXBOROT XAVFSIZLIGI TIZIMLARIGA BO‘LADIGAN HUJUMLARNI OLDINI OLISH USUL VA VOSITALAR TADQIQI
Keywords:
axborot xavfsizligi; kiber hujumlar; himoya choralari; xavf tahlili; ISO 27001.Abstract
Ushbu maqolada zamonaviy korxonalarga qarshi amalga oshiriladigan axborot xavfsizligi hujumlari va ularning oldini olish bo‘yicha nazariy hamda amaliy yondashuvlar tadqiq qilindi. Tadqiqot davomida mahalliy va xalqaro misollar, jumladan, DDoS, phishing, zararli dasturlar va ijtimoiy muhandislik hujumlari tahlil qilindi. Shuningdek, ISO/IEC 27001 va ISO/IEC 27005 standartlari asosida xavf-xatarlarni boshqarish, defense-in-depth konsepsiyasi va nol ishonch (Zero Trust) arxitekturasi kabi nazariy asoslar yoritildi. Amaliy jihatdan esa firewall, IDS/IPS, SIEM, EDR hamda XDR kabi zamonaviy texnologik vositalar samaradorligi ko‘rsatib berildi. O‘zbekiston kontekstida kiberjinoyatlar keskin o‘sayotganligi, korxonalar uchun esa xodimlarni muntazam o‘qitish va xavfsizlik siyosatlarini joriy etish zarurligi alohida ta’kidlandi. Tadqiqot natijalari shuni ko‘rsatadiki, kompleks yondashuv — ya’ni texnik vositalar, standartlashtirilgan boshqaruv tizimlari va xodimlar tayyorgarligini uyg‘unlashtirish orqali korxonalarda axborot xavfsizligi darajasi sezilarli oshirilishi mumkin.
References
1. Biplob, M.B., Marma, S., & Akther, M. (2024). Securing Tomorrow’s Digital World: Key Trends in Cyber security for 2024. Preprints. doi:10.20944/preprints202409.0576.v1
2. Naz, A., Sarwar, M., Kaleem, M., Mushtaq, M.A., & Rashid, S. (2024). A comprehensive survey on social engineering-based attacks on social networks. International Journal of Advanced and Applied Sciences, 11(4), 139–154.
3. International Organization for Standardization (ISO). (2022). ISO/IEC 27001:2022 – Information security management systems – Requirements. Geneva, Switzerland: ISO.
4. International Organization for Standardization (ISO). (2022). ISO/IEC 27005:2022 – Guidance on managing information security risks. Geneva, Switzerland: ISO.
5. Cloudflare, Inc. (n.d.). What is “defense in depth”?. Cloudflare Learning Center. Retrieved from https://www.cloudflare.com/learning/security/glossary/what-is-defense-in-depth/
6. Special Eurasia. (2025, June 3). Rising Cybercrime Alarms Uzbekistan’s National Security. Retrieved from https://www.specialeurasia.com/2025/06/03/cybercrimes-uzbekistans/
7. Hoxhunt. (2025). Phishing Trends Report (Updated for 2025).
