Malunga nezigidi ezilishumi zabasebenzisi be-Android bosulelwe usetyenziso lokufunda ibhakhowudi "Iskena seBhakhowudi", emva kokuba isicelo esisemthethweni siguqulwe saba malware. Ukuziphatha okungalunganga kwesoftware kwabhencwa ngabaphandi benkampani yezokhuseleko i-Malwarebytes, eyayixela kuGoogle kwaye ngenxa yoko isicelo sasuswa kwivenkile ekwi-intanethi.
Kwakusekupheleni kukaDisemba ophelileyo xa abaphandi baqala ukufumana iifowuni zoncedo. Abasebenzisi bezixhobo ze-Android. Ikhampani Ibango labo basebenzisi babebona iintengiso zivela ngaphandle ngokusebenzisa izikhangeli zakho ezingagqibekanga. Into emangazayo malunga nesibhengezo esikhonza isibetho kukuba akukho namnye kubo owayesandula ukufaka usetyenziso. Nangona kunjalo, zonke iiapps abazifakileyo ukusukela ngoko beza ngqo kwiGoogle Play.
Iintengiso ze-pop-up zaqhubeka de elinye lamaxhoba e-malware lafumanisa ukuba iintengiso zivela kwisicelo esifakwe ixesha elide esibizwa ngokuba yiBhakhowudi Scanner.
Ngokukhawuleza abaphandi bongeze ukufumanisa, emva kokuba umsebenzisi elumkisile kwaye UGoogle uyisusile ivenkile. Abasebenzisi abaninzi basebenzise iapps kwizixhobo zabo eziphathwayo ixesha elide, kubandakanya nomsebenzisi omnye obefakelwe iminyaka.
Emva kohlaziyo olukhutshwe ngoDisembaisicelo Iskena seBhakhowudi sahamba ngendlela ekufanele ukuba iyiyo-Ufundise ikhowudi ye-QR kunye nomvelisi webhakhowudi, isixhobo esiluncedo kwizixhobo eziphathwayo, ukugqiba i-malware. Nangona uGoogle sele esususile esi sicelo, inkampani yezokhuseleko ikholelwa ukuba uhlaziyo lwenzeka nge-4 kaDisemba ngo-2020, etshintshe imisebenzi yesicelo ukuthumela izibhengezo ngaphandle kwesaziso sangaphambili.
Ngelixa uninzi lwabaphuhlisi lubandakanya iintengiso kwisoftware yazo ukuze zinikeze iinguqulelo zasimahla, kwaye iiapps ezihlawulelweyo azibonisi ntengiso, kule minyaka idlulileyo utshintsho lwenzekile ngobusuku obunye. Ukusetyenziswa kwezixhobo eziluncedo ze-adware kuya kusiba yinto eqhelekileyo.
“Ii-SDKs zentengiso zinokuvela kwiinkampani ezahlukeneyo zomntu wesithathu kwaye zibe ngumthombo wengeniso kumenzi wesicelo. Yimeko yokuphumelela, ”utshilo uMalwarebytes. Abasebenzisi bafumana usetyenziso lwasimahla, ngelixa abaphuhlisi beapp kunye nabaphuhlisi be-SDK behlawulwa. Kodwa ngalo lonke ixesha, inkampani yeNtengiso ye-SDK inokutshintsha into kwaye iintengiso zingaqala ukuba ndlongondlongo.
Ngamanye amaxesha abantu besithathu banokuzibandakanya kwizenzo zentengiso ezinoburharha, kodwa oku akunjalo ngalo mfundi webhakhowudi. Endaweni yoko, abaphandi bathi ikhowudi enobungozi ibandakanyiwe kuhlaziyo lukaDisemba kwaye ubukhulu becala ifihliwe ukunqanda ukubonwa. Uhlaziyo lwatyikitywa nesatifikethi sokhuseleko esasisetyenziswa kwiinguqulelo zangaphambili zesicelo se-Android.
“Hayi, kwimeko yeBhakhowudi eSkena, kongezwa ikhowudi enobungozi eyayingekho kwiinguqulelo zangaphambili zesicelo. Kwakhona, ikhowudi eyongeziweyo isebenzisa ubfuscation oqinileyo ukunqanda ukubonwa. Ukuqinisekisa ukuba isuka kumqambi wesicelo ofanayo, siqinisekisile ukuba sasityikitywe sisatifikethi esinye sedigital njengangaphambili.
Inyaniso yokuba uGoogle ususile usetyenziso kuGoogle Play ayithethi ukuba usetyenziso luzakunyamalala kwizixhobo ezichaphazelekayo. Yiyo kanye le ngxaki ifunyanwa ngabasebenzisi abafake iSkena seBhakhowudi. Ukuyiphelisa, abasebenzisi kufuneka bayikhuphe ngesandla le app ngoku inobungozi.
Abaphandi abakwazanga ukufumanisa ukuba i-app yokufunda ibhakhowudi ixesha elingakanani yayilusetyenziso olusemthethweni kwivenkile yeGoogle Play ngaphambi kokuba ibe nobubi.
"Ngokusekwe kwinani elikhulu lofakelo kunye nengxelo yomsebenzisi, sikholelwa ukuba ibikhona kangangeminyaka. Kuyothusa ukuba ngohlaziyo olunye nje, iapp inokujika ngobubi ngelixa iphantsi kwe-radar yeGoogle Play Protect. Kuyandixaka ukuba umphuhlisi wohlelo lokusebenza onesicelo esithandwayo angayiguqula ibe yi-malware. Ngaba yayisisicwangciso kwasekuqaleni, ukuba nesicelo singasebenzi, silinde ukufika emva kokuduma? Ndiyaqikelela ukuba soze sazi, ”yatsho ingxelo yabaphandi.
Umthombo: https://blog.malwarebytes.com/
Okwangoku, ukuba ndikhangela iBarcode Play Store, indibonisa ii -apps ezimbini ze "Barcode Scanner" ezivela kubaphuhlisi abohlukeneyo. Umbhali kufuneka aboniswe kuba akunakwenzeka ukuba uchonge usetyenziso ngegama.
Ewe, kulungile, bendithumela intengiso, ngokwesicatshulwa: hayi ukuba ndlongondlongo. Yeyiphi iapp engasebenziyo?
Xa ndifaka usetyenziso ndihlala ndijonga ukuba izisa iintengiso kunye neemvume kwi «Info. ye-app ».
Kubonakala ngathi awukwazi ukufunda kuba inqaku likwenza kucace gca. Inye into yokubhengeza, njengakwiiapps ezininzi, ezingaqhelekanga kwaye ziphume amaxesha ngamaxesha kwaye enye into eyahluke kakhulu yile bayithethayo kwinqaku, eyaba yintengiso enkulu, ukuya kwinqanaba elichaze ngokuchanekileyo ngenxa yoko ukugqithisa koluntu.
"Ngamanye amaxesha abantu besithathu banokwenza intengiso 'enoburharha', kodwa oku akunjalo ngalo mfundi webhakhowudi."
Iyaqhubeka:
"Endaweni yoko, abaphandi bathi ikhowudi eyingozi yafakwa kuhlaziyo lukaDisemba kwaye ubukhulu becala ifihliwe ukunqanda ukubonwa."
Yintoni ingxaki.
Enkosi ngexesha lakho ... nokuba alunamsebenzi.