Wataƙila masu satar bayanai sun shiga cikin sanannun asusun iCloud tare da software na bincike

4. 9. 2014

Bayan kwanaki da yawa na binciken cikin gida na Apple, kamfanin ya ba da sanarwa game da Hacking iCloud asusun wasu celebrities, wanda hotunansa masu laushi suka fallasa ga jama'a. A cewar Apple, ba a fitar da hotunan ne ta hanyar kutse ta hanyar kutse ta iCloud da Find My iphone ba, kamar yadda masu kutse suka samu hotunan, injiniyoyin kamfanin California sun yanke shawarar kai hari kan sunayen masu amfani da kalmar sirri da kuma tambayoyin tsaro. Duk da haka, ba su yi sharhi kan yadda aka samu hotunan iCloud ba.

A cewar Wired, an fasa kalmomin shiga ne ta hanyar amfani da manhajojin bincike da hukumomin gwamnati ke amfani da su. Akan Bulletin Board Annabi- IB, inda hotunan shahararrun mutane suka bayyana, wasu membobin sun tattauna a fili ta amfani da software a madadin ElcomSoft Breaker Password Phone. Wannan yana ba ku damar shigar da sunayen masu amfani da kalmomin shiga da aka samu don dawo da duk fayilolin madadin daga iPhone da iPad. A cewar wani kwararre kan tsaro da Wired ya yi hira da shi, metadata daga hotunan ya yi daidai da amfani da wannan manhaja.

Masu satar bayanan dole ne kawai su sami sunayen masu amfani (Apple ID) da kalmomin shiga, wanda wataƙila sun cimma godiya ga hanyar da aka ambata a baya ta amfani da shirin. iBrute tare da Nemo My iPhone rauni, wanda ya ba da damar maharan su yi tunanin kalmar sirri ba tare da iyaka akan adadin ƙoƙarin ba. Apple ya daidaita raunin jim kadan bayan gano shi. Kasancewar wadanda harin dan fashin ya rutsa da su ba su yi amfani da tantancewa ta mataki biyu ba, wanda ke bukatar shigar da lambar da aka aika a wayar, shi ma ya taka rawa sosai. Ya kamata a lura da cewa tabbatarwa mataki biyu baya shafi iCloud madadin da kuma Photo Stream ayyuka, duk da haka, za su sa ya fi wuya a sami kalmar sirrin sunan mai amfani da farko.

Duk da haka, ko da tare da biyu-mataki tabbaci, iCloud ba a fi dacewa kariya. Kamar yadda Michael Rose na uwar garken ya gano TUW, lokacin daidaita Photo Stream, madadin Safari, da saƙonnin imel zuwa sabuwar kwamfutar Apple, babu wani gargaɗi ga mai amfani cewa an sami damar shiga bayanai daga sabuwar kwamfutar. Tare da sanin Apple ID da kalmar sirri ne kawai zai yiwu a sauke abubuwan da aka ambata ba tare da sanin mai amfani ba. Kamar yadda kuke gani, sabis ɗin girgije na Apple har yanzu yana da wasu fashe, ko da mai amfani yana da kariya ta hanyar tabbatarwa ta matakai biyu, wanda, a hanya, har yanzu ba a samuwa a cikin, misali, Jamhuriyar Czech ko Slovakia. Bayan haka, bayan wannan lamarin, hannun jarin Apple ya fadi da kashi hudu cikin dari.

Source: Hanyar shawo kan matsala

Batutuwa: rafi, gwanin kwamfuta, Apple ID, iCloud, Safari, shirin, photography, kwamfuta, waya, mai amfani

Tattaunawar labarin

Michal

4. 9. 2014 15:17

Ba za ku yi imani da yadda wasu mashahurai biyu masu sauƙin kalmar sirri da hotunan batsa a wayarsu za su iya motsa hannun jari na irin wannan babban kamfani :)

Amsa

N2by

5. 9. 2014 8:35

Suna da wani muhimmin bangare a cikin gaskiyar cewa masu amfani sun rasa bayanai da kuma ɗan sirri, don haka a wannan yanayin yana da kyau ga hannun jari su faɗi. Aƙalla yana koyon kula da tsaro kuma mu masu amfani za mu yi kama da kyau ;-).

Amsa

vh14

4. 9. 2014 16:55

Don haka, kalmomin sirri sun fashe ta amfani da shirin iBrute, wanda ke amfani da hanyar gwaji/kuskure don gwada duk kalmomin shiga da aka saba amfani da su bisa ga wasu ƙamus. Rashin rauni shine waɗanda abin ya shafa suna da ƙamus ko kalmar sirri mai rauni kuma Apple bai toshe wannan hanyar ba (misali ta iyakance adadin ƙoƙarin da ba a yi nasara ba a cikin minti daya) a Nemo Waya ta (yanzu gyarawa). Da zarar sun sami kalmomin shiga, za su iya yin duk abin da suke so. Amma don kada a bayyana bayanai game da rajistar wata na'ura mai ID na Apple iri ɗaya, sun zazzage cikakken madadin iPhone daga iCloud ta amfani da shirin EPPB kuma sun fitar da hotuna daga madadin ta amfani da wannan shirin. Ƙarshe - kalmar sirri mai kyau dole ne kawai.

Amsa

Xenon da

4. 9. 2014 18:36

Ba zan yi mamaki ba idan ma an biya kudi. jefa datti kamar yadda zai yiwu a kan giant Apple 'yan kwanaki kafin gabatar da manyan sabbin abubuwa. Hakanan yana ɗaya daga cikin yuwuwar yanayin yadda zai kasance. Domin mutum ya yi farin ciki game da hannun jari a yau, duk abin da za ku yi shi ne fahimtar yadda yake da hankali. Amma wanda ya fi kyau koyaushe za a jefar da shi, ba zai canza ba.

Amsa

N2by

5. 9. 2014 8:29

Amsa

Buce

5. 9. 2014 9:32

Tabbas, Apple baya biyan komai. A daina kare majalisa ko ta halin kaka. Ya riga ya zama abin kunya. Sun raba shi kawai

Amsa

yanayi 22

4. 9. 2014 20:28

A yau na sami imel daga "checkauth@apple.com". Yana kama da Apple, kuma ya ce an zazzage wani aikace-aikacen da ba na ma amfani da shi daga asusuna. Lokacin da na je canza kalmar sirri ta, ta tura ni zuwa shafi mai kama da Apple.com, amma adireshin URL ya bambanta.

Amsa

Sunan ku

Sharhin ku

Ta hanyar cike bayanan da ke sama, na yarda cewa kamfanin TEXT FACTORY s.r.o., ofishin rajista a Brno, Durďákova 336/29, Černá Pole, ZIP code: 613 00, lambar ID: 06157831, rajista a Kotun Yanki a Brno, sashe na C , saka 100399, zai aiwatar da bayanan sirri na da aka bayar a cikin fom ɗin rajista da na cika bisa la'akari da halalcin buƙatun TEXT FACTORY s.r.o. bisa ga Mataki na 6 sakin layi na 1 harafi f) GDPR da kuma cika wajibai na shari'a (Mataki na 6, sakin layi na 1, harafi c) GDPR), don dalilai masu zuwa: wajibcin tabbatar da izinin baƙi zuwa gidajen yanar gizon da TEXT FACTORY s.r.o. ke sarrafa don ba da gudummawa sosai ga labaran da aka buga ko a cikin tattaunawa. forums da aiwatar da haƙƙin TEXT FACTORY s.r.o. a matsayin mai kula da waɗannan wuraren tattaunawa. Ana iya samun ƙarin bayani game da sarrafa bayanan sirri da haƙƙoƙi a ciki Darussan kan kariyar bayanan sirri. dukan rubutun

Source: Hanyar shawo kan matsala

Masu alaƙa