Kungiyar LAPSUS$, wanda ya tabbatar da hack da kayan aikin NVIDIA, talla kwanan nan hack mai kama da Samsung a cikin tashar Telegram, wanda Samsung ya tabbatar da cewa ya samu matsalar satar bayanai inda aka saci muhimman bayanai, ciki har da lambar tushen wayoyinsa na Galaxy.
Satar ta faru ne a karshen makon da ya gabata kuma Lapsus $, kungiyar masu satar bayanan ce da ke bayan satar bayanan Nvidia, kamar yadda aka ruwaito a ranar 1 ga Maris. Lapsus$ yayi ikirarin cewa ya saci gigabytes 190 na bayanai. gami da Amintaccen lambar tushe ta Applet, algorithms don ayyukan buɗaɗɗen halittu, lambar tushen bootloader, da lambar tushe na Qualcomm na sirri.
kungiyar kuma da'awar cewa sun sace lambar tushe daga sabar kunnawa ta Samsung, Samsung accounts da source code da daban-daban sauran bayanai.
Ba a san nau'in harin da ya haifar da satar bayanan ba. An san Lapsus$ don hare-haren ransomware, amma ba shine kawai nau'in harin da 'yan kungiyar ke shiga ba. Kamar yadda yake tare da Nvidia, hack ɗin Samsung na iya zama satar bayanai mai sauƙi da sata maimakon amfani da ransomware kai tsaye.
Samsung a hukumance yana kiran satar a matsayin "lalacewar tsaro da ke da alaƙa da wasu bayanan kamfanoni na cikin gida."
"Bisa binciken farko da muka yi, keta haddin ya shafi wasu bayanan da suka shafi aikin na'urorin Galaxy, amma bai hada da bayanan sirri na abokan cinikinmu ko ma'aikatanmu ba," in ji Samsung a cikin wata sanarwa da Sammobile ya ruwaito. "A halin yanzu, ba mu tsammanin wani tasiri ga kasuwancinmu ko abokan cinikinmu. Mun aiwatar da matakan hana faruwar hakan kuma za mu ci gaba da yi wa abokan cinikinmu hidima ba tare da tsangwama ba”.
An ba da rahoton cewa kusan 190 GB na bayanai ya leko, gami da lambar tushe don samfuran Samsung daban-daban, masu ɗaukar bootloaders, ingantattun hanyoyin ganowa da hanyoyin ganowa, sabar kunnawa, tsarin tsaro na na'urar hannu ta Knox, sabis na kan layi, APIs, gami da abubuwan mallakar da Qualcomm ya kawo, gami da sanarwar karɓar lambar ta duk TA- applets (Trusted Applet) yana gudana a cikin keɓantaccen kayan masarufi dangane da fasahar TrustZone (TEE), lambar sarrafa maɓalli, samfuran DRM da abubuwan haɗin gwiwa don samar da gano yanayin halitta.
An fitar da bayanan a cikin wuraren jama'a kuma yanzu ana samun su akan torrent trackers. Game da wa'adin baya na NVIDIA don canja wurin direbobi zuwa lasisin kyauta, an ba da rahoton cewa za a sanar da sakamakon daga baya.
“Trojan apps da ke tattara lambobin sadarwa da takaddun shaida daga wasu manhajoji, irin su aikace-aikacen banki, sun zama ruwan dare a kan Android, amma ikon da za a iya fasa na’urar tantance bayanan wayar salula ko kuma allon kulle-kulle ya iyakance ga masu yin barazanar samun kuɗi sosai, gami da ayyukan leƙen asiri na gwamnati. ” Casey Bisson, shugaban samfura da dangantakar masu haɓakawa a kamfanin tsaro na lambar BluBracket
"Lambobin tushe da aka leka na iya sa ya fi sauƙi ga masu yin barazanar da ba su da kuɗi don aiwatar da sabbin hare-hare a kan ingantattun abubuwan na'urorin Samsung."
An lura cewa lambar da aka sata na iya ba da damar kai hare-hare na zamani kamar fasa allon kulle waya, fitar da bayanan da aka adana a muhallin Samsung TrustZone, da kuma hare-haren da ba za a iya dannawa ba da ke sanya bayan gida a kan wayoyin wadanda abin ya shafa.
Har ila yau, an haɗa shi a cikin rafi akwai taƙaitaccen bayanin abubuwan da ke akwai a cikin kowane fayiloli guda uku:
- Sashe na 1 ya ƙunshi juji lambar tushe da bayanai masu alaƙa akan Tsaro / Tsaro / Knox / Bootloader / TrustApps da sauran abubuwa daban-daban.
- Sashe na 2 yana ƙunshe da jujiyar lambar tushe da bayanai masu alaƙa da tsaro na na'ura da ɓoyewa.
- Sashe na 3 ya ƙunshi ma'ajiyar Samsung Github daban-daban: Injiniyan Tsaro ta Wayar hannu, Bayan Asusu na Samsung, Samsung Pass Backend/Frontend, da SES (Bixby, Smartthings, Store)
Babu tabbas ko Lapsus$ ya tuntubi Samsung don neman fansa, kamar yadda suka yi iƙirari a shari'ar Nvidia.
Finalmente idan kuna sha'awar ƙarin sani game da shi, zaka iya duba bayanan A cikin mahaɗin mai zuwa.