I-BadBox 2.0: I-Botnet ehlasele amadivayisi angaphezu kwesigidi esi-1 isusiwe

  • I-BadBox 2.0 ihlakazwe abacwaningi bezokuphepha ngokubambisana ne-Google nezinye izinhlangano.
  • Amadivayisi e-Android angaphezu kwesigidi athintekile, ikakhulukazi e-Brazil, e-US nakwamanye amazwe.
  • Uhlelo olungayilungele ikhompuyutha lufike lufakwe ngaphambilini kumadivayisi afana nama-TV Boxes, amathebulethi nama-Smart TV abiza kancane.
  • I-Google isuse izinhlelo zokusebenza eziyingozi ezingu-24 esitolo sayo futhi yaqinisa i-Google Play Protect ukuze igweme izifo ezizayo.
Lorena Figueredo

Imizuzu ye-4

I-BadBox 2.0 isusiwe

Abacwaningi beCybersecurity bakwazile ukudiliza i-BadBox 2.0 botnet, uhlelo olungayilungele ikhompuyutha olukwazile ukungena kumadivayisi e-Android angaphezu kwesigidi emhlabeni wonke. Ucwaningo beluholwa ithimba lezobunhloli le-HUMAN leSatori elisongelayo, ngokubambisana ne-Google, i-Trend Micro, i-Shadowserver Foundation, namanye amaqembu okuvikela.

Lolu hlelo olungayilungele ikhompuyutha lutholakale ikakhulukazi kumadivayisi e-Android angabizi kakhulu njenge-TV Boxes, amaphilisi nama-Smart TV., ezenza abameleli bezindawo zokuhlala zemisebenzi yokukhwabanisa. Ngenxa yochungechunge lwezenzo ezididiyelwe, ingxenye enkulu yengqalasizinda esetshenziswa izigebengu ze-inthanethi iye yavalwa.

Isebenze kanjani i-BadBox 2.0?

I-BadBox 2.0 ibonakala ngokukwazi kwayo Ukuguqula amadivayisi e-Android abe amathuluzi obugebengu be-inthanethi. Amadivayisi anegciwane asetshenziselwa ukukhiqiza izikhangiso ezingelona iqiniso, ukwenza ukuhlasela kokuqinisekisa, nokuqondisa kabusha ithrafikhi yewebhu kumasayithi omgunyathi. Lezi zinhlobo zemisebenzi zifana nezinsongo ezilethwa enye i-malware eyaziwayo, njengaleyo ongayithola esihlokweni esimayelana nohlelo olungayilungele ikhompuyutha njenge. I-BadBox 2.0.

Uhlelo olungayilungele ikhompuyutha lufinyelele kumadivayisi ngezindlela ezimbili:

  • Kufakwe ngaphambilini kumadivayisi athengiswa abakhiqizi abangaziwa.
  • Kamuva ifakwe ngezinhlelo zokusebenza ezinonya noma izibuyekezo ze-firmware ezikhohlisayo.

Umthelela womhlaba kanye namazwe athinteke kakhulu

Ukuhlaziywa kwe-HUMAN nezinye izinhlangano ze-cybersecurity kwembula lokho Ukutheleleka okuningi bekugxile eBrazil (37.6%), e-United States (18.2%), Mexico (6.3%) nase-Argentina (5.3%).. Sekukonke, kuhlonzwe imishini ethelelekile emazweni angama-222, okuqinisekisa ubukhulu benkinga.

Amadivayisi athintekile ngokuvamile bekuyimikhiqizo esekelwe Iphrojekthi ye-Android Open Source (AOSP). Lokhu kusho ukuthi azizange ziqinisekiswe yi-Google Play Protect, okwenza ukutholwa kohlelo olungayilungele ikhompuyutha kanye nokususwa okusebenzayo kube nzima kakhulu. Ukuze ufunde kabanzi ngokubaluleka kokuvikela ku-Android, ungafunda mayelana nendlela yokuhlola ukuthi i-Android yakho ayinakho yini uhlelo olungayilungele ikhompuyutha.

I-Google Play ivikela ukuskena kwesikhathi sangempela
I-athikili ehlobene:
I-Google Play Protect kanye nethuluzi layo lokuskena lesikhathi sangempela

Izinyathelo ezithathiwe ukumisa ukusabalala

I-BadBox 2.0 ikhishwe i-botnet-1

Ukuphazamisa ukusebenza kwe-BadBox 2.0, kuthathwe izinyathelo ezibalulekile ezimbalwa:

  • Ikhubaza Amaseva Wokulawula Nokulawula esetshenziswa yi-botnet.
  • Isusa izinhlelo zokusebenza ezingalungile ezingama-24 kusukela ku-Google Play Isitolo, ebesisetshenziswa ukusabalalisa uhlelo olungayilungele ikhompuyutha.
  • Imithetho emisha isetshenziswe ku-Google Play Protect ukuvimba izinhlelo zokusebenza ezisolisayo kumadivayisi aqinisekisiwe.

Ngaphandle kwale mizamo, ochwepheshe baxwayisa ngokuthi usongo alukaqedwa ngokuphelele, njengoba amadivayisi angenaso isitifiketi se-Google Play Protect asengaba sengcupheni. Mayelana nalokhu, kubalulekile ukuthi uhlale unolwazi mayelana nezinsongo zakamuva, njengoba kushiwo esihlokweni esimayelana nohlelo olungayilungele ikhompuyutha lwe-HummingBad.

Ungazivikela kanjani ku-BadBox 2.0 futhi ugweme izifo ezizayo

Ukuze ugweme ukuba yisisulu salolu hlobo lohlelo olungayilungele ikhompuyutha, ongoti bezokuphepha batusa ukuthatha lezi zinyathelo ezilandelayo:

  • Thenga kuphela amadivayisi ngesitifiketi se-Google Play Protect, njengoba lezi zihlolwa ngokwemibandela yokuphepha.
  • Ungafaki izinhlelo zokusebenza ngaphandle kwe-Google Play Isitolo, njengoba eziningi zazo zingaqukatha uhlelo olungayilungele ikhompuyutha olufihliwe.
  • Buyekeza i-firmware yamadivayisi akho njalo ukuqinisekisa ukuthi banamapheshana okuphepha akamuva.
  • Uma idivayisi kusolwa ukuthi inegciwane, yinqamule ku-inthanethi futhi, uma kungenzeka, faka enye yohlobo oluthenjwayo.

Abasebenzisi bangaphinda bahlole ukuthi idivayisi yabo ivikelekile yini ngokuya kuzilungiselelo ze-Play Protect ku-Google Play Isitolo futhi bahlole ukuthi idivayisi yabo iqinisekisiwe yini. Kuleli qophelo, kuhle futhi ukuthi ubuyekeze izinhlelo zokusebenza ezifakiwe ukuze uthole ukuthi zikhona yini ezisolisayo, usebenzisa imihlahlandlela yokuthi ungathola kanjani ukukhangisa okungafunwa ku-Android.

Nakuba ukuphazamiseka kwe-botnet ye-BadBox 2.0 kumelela igalelo elikhulu kubahlaseli, kusekhona Izingozi zabasebenzisi abasebenzisa amadivayisi angaqinisekisiwe. Iseluleko esingcono kakhulu sokugwema lolu hlobo lwezinsongo ukuthenga imikhiqizo evela kumikhiqizo ehlonishwayo kanye Hlala uqaphile ngezinhlelo zokusebenza ezisolisayo.

play vikela izimvume izinhlelo zokusebenza eziwumgunyathi-0
I-athikili ehlobene:
I-Google Play Protect iqinisa ukuphepha kwakho ngokumelene nezinhlelo zokusebenza ezinonya