Ondrej Holzman Masu amfani da iOS marasa hankali da rashin kulawa suna fuskantar ƙarin haɗari. Bayan mako guda da gano WireLurker malware Kamfanin tsaro na FireEye ya sanar da cewa ya sake gano wani rami na tsaro a cikin wayoyin iPhone da iPad da za a iya kai wa hari ta hanyar amfani da wata dabara mai suna "Masque Attack". Yana iya yin koyi ko maye gurbin aikace-aikacen da ake da su ta hanyar aikace-aikacen ɓangare na uku na karya kuma daga baya samun bayanan mai amfani.
Masu saukar da aikace-aikacen zuwa na'urorin iOS na musamman ta hanyar App Store kada su ji tsoron harin Masque, saboda sabon malware yana aiki ta yadda mai amfani zai iya saukar da aikace-aikacen a wajen shagon software na hukuma, wanda imel ko saƙo na yaudara ( misali, dauke da hanyar zazzage sabon sigar shahararren wasan Flappy Bird, duba bidiyon da ke ƙasa).
Da zarar mai amfani ya danna hanyar haɗin yanar gizo na yaudara, za a kai su zuwa shafin yanar gizon yana tambayar su su zazzage wata manhaja mai kama da Flappy Bird, amma a zahiri sigar Gmail ce ta jabu wacce ta sake shigar da asalin app ɗin da aka saukar da shi bisa ka'ida daga App Store. . Aikace-aikacen yana ci gaba da yin hakan, kawai yana loda dokin Trojan a cikin kansa, wanda ke samun duk bayanan sirri daga gare ta. Harin na iya ba kawai ya shafi Gmel ba, har ma, misali, aikace-aikacen banki. Bugu da ƙari, wannan malware ɗin na iya samun damar zuwa ainihin bayanan gida na aikace-aikacen da ƙila an riga an goge su, kuma su sami, misali, aƙalla bayanan shaidar shiga da aka adana.
[youtube id=”76ogdpbBlsU” nisa =”620″ tsawo=”360″]
Fake versions na iya maye gurbin asali app saboda gaskiyar cewa suna da lambar tantancewa ta musamman da Apple ke ba wa apps, kuma yana da wuya masu amfani su bambanta ɗaya daga ɗayan. Sigar karya ta ɓoye sannan tana rubuta saƙonnin e-mail, SMS, kiran waya da sauran bayanai, saboda iOS baya tsoma baki akan aikace-aikacen da ke da bayanan gano iri ɗaya.
Masque Attack ba zai iya maye gurbin tsoffin ƙa'idodin iOS kamar Safari ko Mail ba, amma yana iya kai hari cikin sauƙi galibin aikace-aikacen da aka zazzage daga Store Store kuma yana da yuwuwar babbar barazana fiye da WireLurker da aka gano a makon da ya gabata. Apple ya mayar da martani da sauri ga WireLurker kuma ya toshe takaddun kamfani ta hanyar da aka shigar da aikace-aikacen, amma Masque Attack yana amfani da lambobin tantancewa na musamman don shigar da aikace-aikacen da ke akwai.
Kamfanin tsaro na FireEye ya gano cewa harin Masque yana aiki akan iOS 7.1.1, 7.1.2, 8.0, 8.1 da 8.1.1 beta, kuma an ce Apple ya bayar da rahoton matsalar a karshen watan Yulin bana. Koyaya, masu amfani da kansu suna iya kare kansu daga haɗarin haɗari cikin sauƙi - kawai kar a shigar da kowane aikace-aikacen a wajen Store ɗin App kuma kar a buɗe duk wata hanyar haɗin yanar gizo ta imel da saƙonnin rubutu. Har yanzu Apple bai ce uffan ba kan matsalar tsaro.
Apple yana da mummunan shekara. Wayoyi masu sassauƙa, rashin yiwuwar kira daga wayar, ramukan tsaro kamar alade, wifi mai aiki da yawa a cikin Yosemite (wannan shine kowane launi na gini). Ina kwanakin da Apple yayi abubuwa daidai? Na sani, kafin rasuwar S. Ayuba...
Koyaya, masu amfani da kansu suna iya kare kansu daga haɗarin haɗari cikin sauƙi - kawai kar a shigar da kowane aikace-aikacen a wajen Store ɗin App kuma kar a buɗe duk wata hanyar haɗin yanar gizo ta imel da saƙonnin rubutu.
Amma har yanzu wannan bai yi aiki ba, saboda idan ya yi aiki, malware da ƙwayoyin cuta ba su wanzu a yau :)
Bai yi aiki ba ga "mutane marasa biyayya", wanda Jamhuriyar Czech ke cike da shi, kuma shine dalilin da ya sa dokoki da kuma musamman dokokin hanya abin dariya ne a gare su, kuma rashin sauraron wannan shawarwarin game da software mara izini kuma hanya ce ta zuwa. halaka. Don haka zai yi aiki idan ba don tunani mara kyau ba;)
Ba zan shigar da dokokin hanya ba, abin takaici ba a rubuta su don tabbatar da hanyoyinmu ba, amma don tallafa wa ’yan sandan birni da tallafa wa kudaden shiga idan ya shiga asusun gwamnati :(((
Amma ba wannan ba shine tattaunawa anan :)
Na fi sha'awar tunanin mutane, musamman daga Jamhuriyar Czech. Idan a maimakon fakitin sigari 1 sun sayi apps 90 akan cents 4 kowanne kuma ba su zazzage su daga tushen da ba na hukuma ba kuma ba su lalata iPhones ɗin su ba, ba za su yi kuka ba game da asarar na'urorinsu masu tsada :)
Tabbas, an halicci wannan zaren gaba ɗaya don amsa annabcin banza: "tun mutuwar Ayuba, komai yana tafiya daidai, kuma a wannan shekara musamman"
Ban ji daɗin kwatanta ba. A cikin shekaru 2 da suka wuce, godiya ga abokaina, na shiga cikin wannan batu kuma ba na son abin da ke faruwa a can kuma wani lokacin yana da banƙyama :(
Na yarda cewa amsata da aka buga a dandalin na iya zama cikin fushi, amma ni ne, kai tsaye na kai ga batun ba tare da jin dadi ba kuma ba na jin dadi, kawai na rubuta ra'ayi na. Abin takaici, wani lokacin ma akan farashi ne ina tsammanin na rubuta ra'ayi na a fahimta, amma mutane ba su san abin da nake nufi ba:(
Na fahimci kwatankwacin tunani a baya, amma ina tsammanin wannan sabon kwatankwacin (game da akwatin, amma ba aikace-aikacen 4x ba) ya fi daidai.
Ƙara Ayyuka: Ina tsammanin Apple yana nema a halin yanzu. Duk da cewa ba su da shugaba kamar S.Jobs, amma ba su da kyau. Suna da yawancin mutane masu ƙwarewa da hankali waɗanda za su iya zuwa da abubuwa masu ban sha'awa, amma yana ɗaukar lokaci. Ni da kaina, ina tsammanin zai yiwu a kwatanta Apple a yau da Apple tare da S.Jobs har zuwa shekaru 10 bayan tafiyarsa, har sai lokacin kawai ya yi kururuwa, amma wannan ra'ayi ne kawai ...
Gaba ɗaya yarda ;)
Suna da ramukan tsaro a baya kuma sun fi wannan mahimmanci… Misali, sun ƙara Layer ASLR a cikin OSX 10.5, amma yana da cikakken aiki kawai a cikin 10.7 (idan ban yi kuskure a cikin sigar ba), sami bayanin Masanin tsaro Dino Dai Zovi. Amma game da kwari na baya-bayan nan, nemo bayanai akan Heartbleed, Shell Shock…
Matsalar tsaro, sun kasance, kuma za su kasance, ko da idan kuna amfani da Linux, Windows, OSX, Chrome...Bayan lokaci ne kawai OSX ko Linux ya zama mafi yaduwa kuma waɗannan tsarin sun zama masu ban sha'awa ga masu kirkiro malware, ku kawai. ba za ku iya guje masa ba kuma idan kun ce tsarin "ba tare da kurakurai ba" (kamar yadda na fada game da Linux), to kawai kuna kwance a aljihunku ...
Af, idan kuna son jin tsoro, nemo bayanai game da taron tsaro na Black Hat na wannan shekara kuma ku kalli laccoci akan raunin firmware na USB, wannan ma bam ne :)
m : Wannan baƙar fata ce kuma, yana tunatar da ni Sobotka. Ina ba da shawarar canzawa zuwa wani dandamali da kawar da iOS da Mac OS lokacin da S.Jobs ya tafi. Sannan zaku gamsu.
Kuma akan mafi yawan na'urar da aka karye, shin suna shigar da aikace-aikace daga wani wuri ban da AppStore?
Ni ma zan yi sha'awar hakan. Domin ban taba ganin a cikin iOS na da yuwuwar shigar da aikace-aikacen ba sai ta AppStore. Lokacin da "Shigar" ya fito a waccan bidiyon, ban taba ganinsa ba.
Ee, kawai kuna buƙatar sanya hannu kan aikace-aikacen tare da takardar shaidar Kasuwanci, sannan ana iya shigar da ita ta wannan hanyar.
Ba ya aiki ba tare da fasa gidan yari ba. Ko aika hanyar haɗi kuma zan yi ƙoƙarin shigar da aikace-aikacen a kan iPhone ba tare da yantad da wannan hanyar ba.
Lukas Palda gaskiya ne. Yana yiwuwa, amma akwai fewan aikace-aikacen fasaha ko kuma ba su da sha'awar da ba ku sani ba game da su, amma yana yiwuwa :)
Don haka kawai zazzage Storu kuma matsalar ta ƙare
Sannu kowa da kowa... bisa ga ni da labarin, ya isa ya bi ka'idodin asali, kamar yadda lokacin amfani da wasu na'urorin da aka haɗa zuwa net (ko da kuwa ko iOS, Android, WIN, da dai sauransu) = kar a danna. haɗe-haɗe daga masu aikawa da ba a sani ba, kada ku yi wasa da dabaru kuma kunna gogaggen "hacker", kar a zazzage fayilolin da ake tuhuma ... Na karanta irin wannan labarin akan "gossip" novinky.cz kuma idan wani yana so ya cutar da wani kamfani, za su iya cutar da kowane kamfani. nemo hanya...
Ga waɗanda ke tunanin cewa bai isa a sami Jailbreak ba kuma shigar da shi kawai daga AppStore:
http://www.fireeye.com/blog/technical/cyber-exploits/2014/11/masque-attack-all-your-ios-apps-belong-to-us.html
Daga sakin layi: "Masu amfani da iOS na iya kare kansu daga hare-haren Masque ta bin matakai uku:...".
Takaitaccen bayani: bayan danna hanyar haɗi a cikin imel ko sms, akwatin maganganu mai zaɓin "Install" (ko Amintaccen Developer) na iya bayyana gare ku. Wannan shi ne ainihin ainihin wannan matsala.
Kuna iya tunanin cewa ba kuna danna hanyoyin ba, amma abokan ku, danginku, da sauransu. ba sai sun sami ilimin IT kamar ku ba, don haka yana da kyau a umarce su da kada su danna "Install" da sauransu.
___
Na karbi mulki daga tushen.cz