BadBox 2.0: Botnet oo weeraray in ka badan 1 milyan oo qalab ayaa la tirtiray

  • BadBox 2.0 waxaa burburiyay cilmi-baarayaal amni oo kaashanaya Google iyo hay'ado kale.
  • In ka badan hal milyan oo aaladaha Android ay saameeyeen, badi Brazil, US iyo dalal kale.
  • Malware-ka ayaa horay loogu sii rakibay aaladaha ay ka midka yihiin sanduuqyada TV-ga, tablet-yada iyo TV-yada Smart-ka ee qiimahoodu jaban yahay.
  • Google ayaa bakhaarkeeda ka saartay 24 apps oo xaasidnimo ah waxayna xoojisay ilaalinta Google Play si ay uga hortagto caabuqyada mustaqbalka.
Lorena Figueredo

Daqiiqado 4

BadBox 2.0 waa laga saaray

Cilmi-baarayaasha amniga internetka ayaa ku guuleystay inay burburiyaan BadBox 2.0 botnet, malware casri ah oo ku guulaystay in uu dhex galo in ka badan hal milyan oo qalab Android ah oo adduunka oo dhan ah. Cilmi baarista waxaa hogaaminayay kooxda sirta halista Satori ee HUMAN, iyadoo lala kaashanayo Google, Trend Micro, The Shadowserver Foundation, iyo kooxaha kale ee amniga.

Malware-kan waxaa inta badan laga helay aaladaha Android ee jaban sida sanduuqyada TV-ga, tablet-yada iyo TV-yada Smart., iyaga oo u beddelaya wakiilo la deggan yahay oo hawlo khiyaano ah. Waad ku mahadsan tahay tillaabo isdabajoog ah, qayb weyn oo ka mid ah kaabayaasha ay adeegsadeen dambiilayaasha internetka waa la joojiyay.

Sidee buu u shaqeeyay BadBox 2.0?

BadBox 2.0 waxaa lagu gartaa awooddeeda U beddelashada aaladaha Android ka dhigi aaladaha dambiyada internetka. Aaladaha caabuqa ayaa loo istcimaali jiray si ay u abuuraan aragtiyo xayeysiis oo been abuur ah, oo lagu fuliyo weerarro wax lagu shubto, iyo in taraafikada shabakada loo jiheeyo goobo been abuur ah. Noocyada noocaan ah waxay u egyihiin hanjabaadaha ay keenaan malware-ka kale ee la yaqaan, sida midka aad ka heli karto maqaal ku saabsan malware sida BadBox 2.0.

Malware-ku wuxuu ku gaadhay aaladaha laba siyaabood:

  • Horay loogu rakibay aaladaha ay iibiyaan soosaarayaasha yar yar ee la yaqaan.
  • Ka dib lagu rakibay codsiyada xaasidnimada ah ama cusbooneysiinta firmware-ka la maamulay.

Saamaynta caalamiga ah iyo wadamada ugu badan ee ay saamaysay

Falanqaynta HUMAN iyo hay'adaha kale ee amniga internetka ayaa shaaca ka qaaday taas Infekshannada badankood waxay ku urursan yihiin Brazil (37.6%), Mareykanka (18.2%), Mexico (6.3%) iyo Argentina (5.3%). Wadar ahaan, aaladaha cudurka qaba ayaa lagu aqoonsaday 222 waddan, taas oo xaqiijinaysa baaxadda dhibaatada.

Aaladaha ay saameeyeen waxay u badnaayeen alaabooyin ku salaysan Mashruuca Isha Furan ee Android (AOSP). Taas macnaheedu waa in ma aysan shahaado Google Play Protect, samaynta ogaanshaha malware iyo ka saarista waxtarka leh mid aad u adag. Si aad wax badan uga ogaato muhiimada ilaalinta Android, waxaad ka akhrisan kartaa sida loo hubiyo in Android kaaga uu ku dhacay malware.

Google Play wuxuu ilaaliyaa iskaanka wakhtiga-dhabta ah
Maqaalka laxiriira:
Ilaalinta Play Play iyo qalabkeeda wax iskaanka ee wakhtiga dhabta ah

Tallaabooyinka la qaaday si loo joojiyo fiditaanka

BadBox 2.0 botnet-1 waa laga saaray

Si loo carqaladeeyo hawlgallada BadBox 2.0, dhawr tallaabo oo muhiim ah ayaa la qaaday:

  • Deminta Adeegayaasha Taliska iyo Xakamaynta loo isticmaalo botnet.
  • Ka saarida 24 codsiyo xaasidnimo ah ka Google Play Store, kaas oo loo isticmaalay in lagu qaybiyo malware.
  • Xeerar cusub ayaa lagu hirgeliyay Ilaalinta Play Google si loo joojiyo abka shakiga leh ee ku jira aaladaha shahaadaysan

Inkasta oo ay jiraan dadaalladaas, khubarada ayaa ka digaya in khatarta aan si buuxda loo dabar-goyn, maadaama aaladaha aan haysan shahaado ilaalinta Google Play ay wali noqon karaan kuwo nugul. Marka tan la eego, waa muhiim in laga war hayo hanjabaadihii ugu dambeeyay, sida lagu sheegay maqaal ku saabsan HummingBad malware.

Sida aad naftaada uga ilaalin lahayd BadBox 2.0 oo aad uga fogaato caabuqyada mustaqbalka

Si looga fogaado in lagu dhaco nooca malware-ka ah, khubarada ammaanku waxay ku talinayaan in la qaado tallaabooyinka soo socda:

  • Kaliya ku iibso shahaado ilaalinta Google Play qalabka, maadaama kuwaas lagu qiimeeyay dhinaca amniga.
  • Ha ku rakibin codsiyada ka baxsan Google Play Store, maadaama qaar badan oo iyaga ka mid ah ay ku jiri karaan malware qarsoon.
  • Si joogto ah u cusboonaysii firmware-ka aaladahaaga si loo hubiyo in ay haystaan ​​balastarkii ugu dambeeyay ee amniga.
  • Haddii qalab looga shakisan yahay inuu cudurka qabo, ka saar internetka oo, haddii ay suurtagal tahay, ku beddel mid ka mid ah calaamad la aamini karo.

Isticmaalayaashu waxay sidoo kale hubin karaan haddii qalabkoodu ammaan yahay iyagoo aadaya Play Protect settings ee Google Play Store oo hubiya in qalabkoodu la shahaado. Halkaa marka ay marayso, waxa kale oo lagu talinayaa in dib loo eego codsiyada la rakibay si loo ogaado haddii mid iyaga ka mid ah uu shakiyo, iyada oo la adeegsanayo hagaha sida loo ogaado xayaysiisyada aan loo baahnayn ee Android.

In kasta oo carqaladaynta BadBox 2.0 botnet ay ka dhigan tahay dharbaaxo weyn oo soo gaadhay weeraryahannada, haddana waxaa jira weli Khatarta isticmaalayaasha isticmaalaya aaladaha aan la aqoonsan. Talada ugu fiican si looga fogaado hanjabaadaha noocan ah waa in la iibsado alaabooyinka caanka ah iyo Ka digtoonow codsiyada shakiga leh.

play ilaalinta ogolaanshaha apps khiyaano-0
Maqaalka laxiriira:
Ilaalinta Play Google waxay xoojisaa amnigaaga codsiyada xaasidnimada leh