Iyo LAPSUS $ boka, izvo zvakaratidza kubira NVIDIA zvivakwa, shambadzo munguva pfupi yapfuura hack yakafanana neSamsung mune yayo Telegraph chiteshi, iyo Samsung yakasimbisa kuti yakatyorwa data umo ruzivo rwakadzama rwakabiwa, kusanganisira iyo kodhi kodhi yeGalaxy smartphones.
Kubira uku kwakaitika kupera kwesvondo rapfuura uye yaive Lapsus $, iro rimwe boka rehacker raive kuseri kwekubiwa kwedata reNvidia, sezvakataurwa munaKurume 1. Lapsus $ inoti yakaba 190 gigabytes yedata, kusanganisira Vimba neApplet source kodhi, algorithms yebiometric kiinura mashandiro, bootloader source code, uye chakavanzika Qualcomm source code.
boka racho zvakare aiti akaba iyo source code kubva kune Samsung's activation server, Samsung maakaunti uye sosi kodhi uye akasiyana mamwe data.
Nzira yekurwisa iyo yakakonzera kubiwa kwedata haina kujeka. Lapsus $ inozivikanwa nekurwisa kwayo ransomware, asi haisiriyo chete rudzi rwekurwisa umo boka rinotora rutivi. Sezvakaita Nvidia, iyo Samsung yekubira inogona kunge iri nyore kuba data uye kubira pane kushandisa zvakananga ransomware.
Samsung inoreva zviri pamutemo kubiwa se "kutyorwa kwekuchengetedza kune chekuita neimwe data yekambani yemukati."
"Zvichienderana nekuongorora kwedu kwekutanga, kukanganisa kunosanganisira imwe sosi kodhi ine chekuita nekushanda kweGalaxy zvishandiso, asi haisanganisire ruzivo rwevatengi vedu kana vashandi," Samsung yakadaro mukutaura neSammobile. "Parizvino, isu hatitarisire chero kukanganisa kune bhizinesi redu kana vatengi. Takaita matanho ekudzivirira zvimwe zviitiko zvakadaro uye ticharamba tichishandira vatengi vedu pasina kukanganisa. "
Zvinonzi yakatenderedza 190 GB yedata yakaburitswa, kusanganisira kodhi yekodhi yezvinhu zvakasiyana-siyana zveSamsung zvigadzirwa, mabhoti ekurodha, echokwadi uye ekuzivikanwa masisitimu, activation maseva, Knox nharembozha yekuchengetedza system, masevhisi epamhepo, APIs, pamwe nemidziyo inopihwa neQualcomm, kusanganisira chiziviso chekugamuchira kodhi yezvese TA- applets (Trusted Applet) inomhanya mune yakasarudzika hardware enclave yakavakirwa paTrustZone (TEE) tekinoroji, kiyi yekutonga kodhi, DRM module uye zvikamu zvekupa biometric identification.
Iyo data yakaburitswa munzvimbo yeruzhinji uye yave kuwanikwa pane torrent trackers. Nezve NVIDIA's yapfuura ultimatum yekuendesa vatyairi kune rezinesi remahara, zvinonzi mhedzisiro ichaziviswa gare gare.
"Mapurogiramu eTrojan anokohwa maaitirwo uye zvitupa kubva kune mamwe maapplication, akadai semabhengi maapplication, akajairwa paAndroid, asi kugona kubaya foni biometrics kana kukiya chidzitiro kwakaganhurirwa kune vane mari dzakanyanya kutyisidzira vatambi, kusanganisira espionage inotsigirwa nehurumende. ” Casey Bisson, mukuru wechigadzirwa uye hukama hwekuvandudza pakodhi yekuchengetedza kambani BluBracket
"Iyo yakaburitswa kodhi kodhi inogona kuita kuti zvive nyore kune vashoma vane mari yekutyisidzira vatambi kuti vaite zvakanyanya kurwiswa pane zvakachengeteka zvakanyanya zveSamsung zvishandiso."
Izvo zvakacherechedzwa kuti kodhi yakabiwa yaigona kugonesa kurwiswa kwakaoma sekupwanya chivharo chefoni, kuburitsa data rakachengetwa muSamsung TrustZone nharaunda, uye zero-tinya kurwiswa kunoisa kunoramba kuseri kweseri pamafoni evanobatwa.
Zvakare zvinosanganisirwa murukova tsananguro pfupi yezviri kuwanikwa mune imwe neimwe yemafaira matatu:
- Chikamu 1 chine sosi yekurasa kodhi uye inoenderana data pane Chengetedzo/Defense/Knox/Bootloader/TrustedApps nezvimwe zvakasiyana zvinhu.
- Chikamu 2 chine sosi yekurasa kodhi uye data ine chekuita nekuchengetedza mudziyo uye encryption.
- Chikamu chechitatu chine akasiyana Samsung Github repositories: Nhare Yekudzivirira Injiniya, Samsung Account Backend, Samsung Pass Backend / Frontend, uye SES (Bixby, Smartthings, Chitoro)
Hazvizivikanwe kana Lapsus $ yakabatana neSamsung kuti ive rudzikinuro, sezvavakataura muNvidia kesi.
Finalmente kana iwe uchida kuziva zvishoma nezvazvo, unogona kutarisa ruzivo Mune inotevera chinongedzo.