Yese sisitimu yekushandisa iri vari panjodzi yekutyisidzirwa, ndizvo zvakaita iyo Android system yeGoogle. Kunyangwe hurema hwacho husiri hwakawandisa munguva dzichangopfuura, zvinogara zvakanaka kuti uzive zvavari uye kuti zvinokanganisa sei mafoni edu ayo asingawanzo kuvandudzwa nguva zhinji mumatambudziko mazhinji.
Google yambiro nezve kushungurudzika kutsva kunozivikanwa seCVE-2020-0096 uye inonzi StrandHogg 2.0 nekambani yeNorway Promon, inova yechipiri vhezheni yetyisidziro inozivikanwa inozivikanwa yakaonekwa muna Zvita wegore rapfuura. Iyo ine zvakawanda zvakafanana uye ivo vari vakaoma kubasa kuburitsa chigamba.
Simba reStrandHogg (2019)
StrandHogg yaizivikanwa sekushomeka kwesisitimu kutanga kwaZvita, ichikanganisa Android multitasking uye ichibvumidza zviri pamutemo zvikumbiro kubiridzirwa nemarware. Muzviitiko zvakawanda kupindira kwacho kwaisazivikanwa, zvakakanganisa vhezheni ye6 kusvika 10, pakanga paine malware panguva iyoyo yaishandisa kusagadzikana kuzvimisikidza pachayo pasina chikonzero chemvumo yemidzi.
Panguva iyoyo kunosvika makumi matatu neshanu mafomu akange akanganiswa, vaive nekodhi yakaipa yakaisa mungozi Android uye angangoita mazana mashanu manyorerwo, akati wandei anoshandiswa nevashandisi. Kana mubiridzi akatora kutonga kuburikidza neStrandHogg, aigona kuita zviito zvakasiyana, zvinosanganisira kugona kunzwa munhu kuburikidza nemakrofoni, kuverenga nekutumira mameseji, kufonera vanobatika, kurekodha hurukuro, kuwana iyo Garari, pakati pezvimwe zvinhu zvakawanda.
Iyi ndiyo nyowani uye ine ngozi malware StrandHogg 2.0 CVE-2020-0096
StrandHogg 2.0 inotora mhedzisiro yakafanana, kunyangwe ichishandisa imwe nzira. Panzvimbo pekushandisa mabasa eAndy multitasking, iyo nyowani nyowani inoshandisa chinodaidzwa kunzi mirroring, maitiro anozobvumidza maapplication akashata kusarudza kuzviita sevamwe nenzira yakavanda.
MaHackers anogona kushandisa chakashata chishandiso chakaiswa pane chako kifaa kuti uwane mvumo yekuwana zvakavanzika dhata, ivo vanogona kana kurwisa akati wandei maTerminal terminals panguva imwe chete, iyo yapfuura yakanga isiri chinhu kunze kwekurwisa kumwe pachikamu. Mune ino kesi, kuwana kunova kwakafanana mune ino kesi, ivo vanokwanisa kuwana maSMS, mifananidzo, GPS nzvimbo, spy makamera uye zvimwe zviito zvakasiyana.
Zvidzivirire kubva kuStrandHogg 2.0
Mune ino kesi, zvinodikanwa kuve nehungwaru kwete kuvhimwa neiyi njodzi, zvese zvisati zvaitika Google inoburitsa May chigamba cheApple. Pakati pemazano hakusi kurodha maapplication kubva pamapeji ari kunze kweGoogle Play Chitoro kana kuwana mapeji ezvinonyadzisira izvo zvinogona kukanganisa yako smartphone nedata.
Kurudziro yemhando iyi yenyaya ndeyekudzivirira kurodha mafomu anofungidzirwa, saka usati watora kurodha pasi, tarisa kana kunyorera kuri kwekambani inozivikanwa uye gara uchingwarira maturusi anovimbisa kuita kuti foni yako ive yakachengeteka.
Changu Android mudziyo uri munjodzi
StrandHogg 2.0 CVE-2020-0096 haina kukanganisa yazvino vhezheni yeApple, asi hongu kune shanduro dzekare dzeApple, idzo maererano neGoogle dzakaiswa mu91,8% yemafoni. Zvinokurudzirwa kuchengetedza chishandiso ichivandudzwa neyekupedzisira inogadzira zvigadzirwa.
Google inovimbisa kuvhura iyo yekuvandudzwa kusati kwapera Chivabvu uye ichine mazuva akati wandei ekugadzirisa dambudziko iri rinogona kukanganisa akawanda emidziyo nekuti ivo havana iyo yazvino vhezheni yeApple.
mabviro: Europa Press