Kowane tsarin aiki shine m ga barazanar, haka ma Android tsarin na Google. Kodayake yanayin rauni bai yi yawa ba a cikin 'yan kwanakin nan, yana da kyau koyaushe a san abin da suke da yadda suke shafar wayoyinmu waɗanda yawanci ba a sabunta su akai-akai a lokuta da yawa.
Google ya yi gargadin a sabon yanayin rauni da aka sani da CVE-2020-0096 kuma ana kiran shi StrandHogg 2.0 na kamfanin Norway na Promon, wanda zai zama nau'i na biyu na sanannun barazanar da ta bayyana a watan Disambar bara. Yana da kamanceceniya da yawa kuma suna aiki tuƙuru don sake facin faci.
Bayanin StrandHogg (2019)
An san StrandHogg a matsayin rauni na tsarin a farkon watan Disamba, wanda ya shafi yin amfani da yawa na Android da kuma barin aikace-aikacen halal ta malware. A lokuta da dama ba a lura da sa hannun ba, ya shafi sigar ta 6 zuwa 10, akwai malware a wancan lokacin wanda ke amfani da yanayin rauni don kunna kanta ba tare da buƙatar izinin izini ba.
A wancan lokacin har zuwa aikace-aikacen 36 sun sami matsala, suna da lambar ƙeta wanda ke da haɗari ga Android kuma kusan aikace-aikace 500, kusan 'yan masu amfani ke amfani da shi. Idan dan dandatsa ya sami iko ta hanyar StrandHogg, zai iya aiwatar da ayyuka daban-daban, gami da jin muryar mutum ta hanyar makirufo, karanta da aika saƙon SMS, samun damar lambobin sadarwa, yin rikodin tattaunawa, samun dama ga Gallery, da sauran abubuwa.
Wannan sabuwar sabuwar cuta ce mai hatsari ta StrandHogg 2.0 CVE-2020-0096
StrandHogg 2.0 ya ɗauki irin wannan sakamakon, kodayake yana amfani da wata hanyar daban. Maimakon yin amfani da ayyuka masu yawa na Android, sabon yanayin rauni yana amfani da fasalin da ake kira mirroring, dabarar da za ta ba da izini ga masarrafan masarufi su yanke shawarar yin kamari kamar wasu a ɓoye.
Masu fashin kwamfuta za su iya amfani da muguwar kayan aiki da aka girka a kan na'urarku don samun izini don samun damar bayanan sirri, har ma za su iya kai hari kan tashar Android da yawa a lokaci guda, wanda ya gabata ba komai ba ne face hari guda ɗaya a kowane zama. A wannan yanayin, samun dama ya zama daidai a wannan yanayin, za su iya samun damar SMS, hotuna, wurin GPS, leken asiri kan kyamarori da sauran ayyuka daban-daban.
Kare kanka daga StrandHogg 2.0
A wannan yanayin, ya zama dole a sami hankali don kada wannan yanayin ya farautar ku, duk a da Google ya saki facin May don Android. Daga cikin shawarwarin shine ba zazzage apps daga shafukan da ke wajen Google Play Store ba ko samun damar shafukan batsa wanda zai iya lalata wayarka ta zamani da kuma bayanan ka.
Shawarwarin a cikin wannan nau'in shari'ar shine a guji saukar da aikace-aikacen tuhuma, don haka kafin zazzage ɗaya, bincika idan aikace-aikacen na sanannen kamfani ne kuma koyaushe a yi hattara da kayan aikin da ke alƙawarin sa wayarka ta kasance mai tsaro.
Shin na'urar Android na cikin hadari
StrandHogg 2.0 CVE-2020-0096 baya shafar sabon sigar Android, amma a ga nau'ikan baya na Android, waɗanda bisa ga Google an girka su a cikin kashi 91,8% na wayoyi. Yana da kyau a ci gaba da sabunta na'urar tare da sabbin abubuwan sabunta masana'anta.
Google yayi alƙawarin ƙaddamar da sabuntawa kafin ƙarshen Mayu kuma har yanzu yana da kwanaki da yawa don magance wannan matsalar da za ta iya shafar yawancin na'urori saboda ba su da samfurin Android na kwanan nan.
Source: Labaran Yammacin Turai