Udaba lokuvikeleka muva nje luye lwaba lusizo kakhulu endaweni ye-inthanethi. Lokhu kungenxa yokuthi ngisho namathuluzi anokwethenjelwa ahlinzeka ngokuphathwa kwephasiwedi ngokuvamile aba yizisulu zokuhlaselwa kwama-hacker. Ezimweni eziningi, abahlaseli abazihluphi ngisho nangokuzakhela amathuluzi abo kusukela ekuqaleni, kodwa basebenzisa izixazululo esezilungile ngokusekelwe, ngokwesibonelo, imodeli ye-MaaS, engasatshalaliswa ngezindlela ezihlukahlukene futhi inhloso yayo kuwukuqapha ku-inthanethi nokuhlola idatha. Kodwa-ke, ezandleni zomhlaseli, isiza ukuthelela amathuluzi futhi isabalalise okuqukethwe kwayo okunonya. Ochwepheshe bezokuphepha bakwazile ukuthola ukusetshenziswa kwe-MaaS enjalo ebizwa nge-Nexus, ehlose ukuthola ulwazi lwasebhange kumadivayisi ane Android usebenzisa ihhashi leThrojani.
Isiginesha Hlanza obhekene nokuvikeleka ku-inthanethi kuhlaziye imodus operandi yesistimu ye-Nexus kusetshenziswa idatha yesampula evela kumaforamu angaphansi komhlaba ngokubambisana neseva. TECHRADAR. Le botnet, okungukuthi inethiwekhi yamadivayisi onakalisiwe abese elawulwa umhlaseli, yaqala ukuhlonzwa ngoJuni wonyaka odlule futhi ivumela amakhasimende ayo ukuthi enze ukuhlasela kwe-ATO, okufushane kokuthi Ukuthathwa Kwe-akhawunti, ngenkokhelo yanyanga zonke engu-US$3. I-Nexus ingena ngesinyenyela kudivayisi yakho yesistimu Android ukuzenza njengohlelo lokusebenza olusemthethweni olungase lutholakale ezitolo zezinhlelo zokusebenza zezinkampani zangaphandle ngokuvamile ezingabazekayo futhi lupakishe ibhonasi engeyona enobungane ngendlela yehhashi leTrojan. Uma usuthelelekile, idivayisi yesisulu iba yingxenye ye-botnet.
Igalari yezithombe
I-Nexus iwuhlelo olungayilungele ikhompuyutha olunamandla olungarekhoda izifakazelo zokungena ezinhlelweni ezihlukene zisebenzisa i-keylogging, ngokuyisisekelo inhloli kukhibhodi yakho. Kodwa-ke, iyakwazi futhi ukweba amakhodi wokuqinisekisa wezinto ezimbili alethwa nge-SMS kanye informace kusukela kuhlelo lokusebenza lwe-Google Authenticator oluvikeleke ngokuqhathaniswa. Konke lokhu ngaphandle kolwazi lwakho. Uhlelo olungayilungele ikhompuyutha lungasusa imilayezo ye-SMS ngemva kokweba amakhodi, iwabuyekeze ngokuzenzakalelayo ngemuva, noma isabalalise olunye uhlelo olungayilungele ikhompuyutha. Iphupho elibi langempela lokuvikeleka.
Njengoba izisetshenziswa zesisulu ziyingxenye ye-botnet, abalingisi abasongelayo abasebenzisa uhlelo lwe-Nexus bangakwazi ukuqapha bekude wonke ama-bots, amadivaysi anegciwane kanye nedatha etholwe kubo, besebenzisa iphaneli yewebhu elula. Isixhumi esibonakalayo kubikwa ukuthi sivumela ukwenziwa ngokwezifiso kwesistimu futhi sisekela umjovo wesilawuli kude wamakhasi okungena ngemvume ezicelo zamabhange abukeka ngokusemthethweni angaba ngu-450 ukuze kwebiwe idatha.
Ungaba nentshisekelo ku
Ngokobuchwepheshe, i-Nexus iwukuvela kwetrojan yasebhange ye-SOVA kusukela maphakathi no-2021 Ngokuka-Cleafy, kubukeka sengathi ikhodi yomthombo ye-SOVA yebiwe ngu-opharetha we-botnet Android, eyaqashisa i-MaS yefa. Ibhizinisi elisebenzisa i-Nexus lisebenzise izingxenye zale khodi yomthombo entshontshiwe labe selingeza ezinye izinto eziyingozi, njengemojula ye-ransomware ekwazi ukukhiya idivayisi yakho isebenzisa ukubethela kwe-AES, nakuba lokhu kubonakala kungasebenzi okwamanje.
Ngakho-ke i-Nexus yabelana ngemiyalo futhi ilawula amaphrothokholi nomanduleli wayo odumile, okuhlanganisa ukuziba amadivayisi emazweni afanayo abesohlwini olumhlophe lwe-SOVA. Ngakho-ke, i-hardware esebenza e-Azerbaijan, Armenia, Belarus, Kazakhstan, Kyrgyzstan, Moldova, Russia, Tajikistan, Uzbekistan, Ukraine, nase-Indonesia ayinakwa ngisho noma ithuluzi lifakiwe. Iningi lala mazwe lingamalungu e-Commonwealth of Independent States eyasungulwa ngemuva kokuwa kweSoviet Union.
Igalari yezithombe
Njengoba uhlelo olungayilungele ikhompuyutha luwuhlobo lwehhashi leThrojani, ukutholwa kwalo kungase kube kudivayisi yesistimu Android odinga kakhulu. Isexwayiso esingaba khona kungaba ukubona ukwanda okungajwayelekile kudatha yeselula nasekusetshenzisweni kwe-Wi-Fi, okuvamise ukukhombisa ukuthi uhlelo olungayilungele ikhompuyutha luxhumana nedivayisi yomgebengu we-inthanethi noma lubuyekeza ngemuva. Omunye umkhondo ukudonsa kwebhethri okungavamile uma idivayisi ingasetshenziswa. Uma uhlangabezana nanoma iyiphi yalezi zinkinga, kuwumqondo omuhle ukuqala ukucabanga ngokwenza ikhophi yasenqolobaneni idatha yakho ebalulekile futhi usethe kabusha idivayisi yakho kuzilungiselelo zasembonini noma uxhumane nochwepheshe bezokuphepha abaqeqeshiwe.
Ukuze uzivikele kuhlelo olungayilungele ikhompuyutha oluyingozi njenge-Nexus, hlala ulanda izinhlelo zokusebenza emithonjeni ethembekile njenge-Google Play Isitolo, qiniseka ukuthi unezibuyekezo zakamuva ezifakiwe, futhi unikeze kuphela izinhlelo zokusebenza izimvume ezidingekayo ukuze uziqalise. U-Cleafy akakavezi ubukhulu be-botnet ye-Nexus, kodwa kulezi zinsuku kuhlala kungcono ukwenza iphutha ohlangothini lokuqaphela kunokuba uthole isimanga esibi.
