Isikhathi esingaphezudlwana konyaka ngemuva kokuthunyelwa kwe-th ukuvimba ukuxhaphaza okunamandla kwe-NSA lokho kwavuza ku-inthanethi, Amakhulu ezinkulungwane zamakhompyutha ahlala engalungisiwe futhi esengozini.
Okokuqala, zazisetshenziselwa ukusabalalisa i -hlengware, bese kufika ukuhlaselwa kwezimayini ze-cryptocurrency.
Manje, Abaphenyi bathi abaduni (noma abaqhekezi) basebenzisa amathuluzi okuhlunga ukudala inethiwekhi enkulu ye-proxy enobungozi. Ngakho-ke, abaduni basebenzisa amathuluzi e-NSA ukuduna amakhompyutha.
Okutholakele kwakamuva
Okutholakele okusha kwenkampani yezokuphepha i- "Akamai" kusho ukuthi ukuba sengozini kwe-UPnProxy kuhlukumeza umthetho olandelwayo wenethiwekhi ye-Plug and Play.
Futhi ukuthi manje usungakhomba amakhompyutha angakhishwanga ngemuva kwe-firewall yomzila.
Abahlaseli ngokwesiko basebenzisa i-UPnProxy ukwabela kabusha izilungiselelo zokudlulisa imbobo ku-router ethintekile.
Ngakho-ke, bavumela ukutholakala kwemigwaqo kanye nomzila omubi wezimoto. Ngakho-ke, lokhu kungasetshenziselwa ukuqala ukwenqaba ukuhlaselwa kwensiza noma ukusabalalisa i-malware noma ugaxekile.
Ezimweni eziningi, amakhompiyutha kunethiwekhi awathinteki ngoba avikelwe yimithetho ye-router ikheli translation translation (NAT).
Kodwa manje, U-Akamai uthi abahlaseli basebenzisa izindlela ezinamandla ukudlula ku-router bese bethelela amakhompyutha ngamanye kunethiwekhi.
Lokhu kunikeza abahlaseli inani elikhulu kakhulu lamadivayisi angafinyelelwa. Futhi, yenza inethiwekhi enonya iqine kakhulu.
"Yize kuyishwa ukubona abahlaseli besebenzisa i-UPnProxy futhi beyisebenzisa ngenkuthalo ukuhlasela izinhlelo ebezivikelwe ngaphambilini kwiNAT, kodwa ekugcineni kuzokwenzeka," kusho uChad Seaman we-Akamai, obhale lo mbiko.
Abahlaseli basebenzisa izinhlobo ezimbili zokuxhashazwa komjovo:
Okwakho okokuqala I-EternalBlue, lona umnyango wangemuva owakhiwe yiNational Security Agency ukuhlasela amakhompyutha afakwe iWindows.
Ngenkathi esimweni sabasebenzisi beLinux kunokuxhaphaza okubizwa nge- EternalRed, lapho abahlaseli bangena khona ngokuzimela ngokusebenzisa umthetho olandelwayo weSamba.
Mayelana ne-EternalRed
Kubalulekile ukwazi ukuthi lUhlobo lweSamba 3.5.0 lwalusengozini yaleli phutha lokusebenzisa ikhodi ekude, luvumela iklayenti elibi ukuthi lilayishe umtapo wolwazi owabiwe kusabelo esibhaliwe, bese ulayisha iseva bese uyisebenzisa.
Umhlaseli angafinyelela kumshini we-Linux futhi khulisa amalungelo usebenzisa ukuba sengozini kwasendaweni ukuthola ukufinyelela kwezimpande bese ufaka i-future future ransomwarenoma, ngokufana nalolu phiko lwesoftware yeWannaCry yeLinux.
Ngenkathi i-UPnProxy iguqula imephu ethekwini ku-router esengozini. Umndeni waphakade ukhuluma namachweba esevisi asetshenziswa yi-SMB, umthetho olandelwayo wenethiwekhi ojwayelekile osetshenziswa amakhompyutha amaningi.
Ngokubambisana, u-Akamai ubiza lokhu kuhlasela okusha ngokuthi "Ukuthula Okuphakade" okwandisa ngokumangalisayo ukusabalala kwenethiwekhi yommeleli kumadivayisi amaningi asengozini kakhulu.
Izinkulungwane zamakhompyutha athelelekile
U-Akamai uthi ngaphezu kwamadivayisi we-45.000 asevele engaphansi kwenethiwekhi enkulu. Ngokunokwenzeka, le nombolo ingafinyelela ngaphezu kwamakhompyutha angaphezu kwesigidi.
Umgomo lapha akusikho ukuhlaselwa okuhlosiwe "kepha" Kuyimizamo yokusebenzisa okuhle okufakazelwe, ukuvula inethiwekhi enkulu esikhaleni esincane, ngethemba lokuqoqa amadivayisi amaningi ebengafinyeleleki ngaphambili.
Ngeshwa imiyalelo engunaphakade kunzima ukuyibona, okwenza kube nzima kubaphathi ukwazi ukuthi ngabe banegciwane.
Lokho kushiwo, ukulungiswa kwe-EternalRed ne-EternalBlue futhi kukhishwe esikhathini esingaphezu konyaka odlule, kepha izigidi zamadivayisi zihlala zingafakwanga futhi zisengozini.
Inani lamadivayisi asengozini liyancipha. Kodwa-ke, uSeaman uthe lezi zici ezintsha ze-UPnProxy "kungenzeka kube ngumzamo wokugcina wokusebenzisa izindlela ezaziwayo uma kuqhathaniswa nemishini okungenzeka ibingalungisiwe futhi ebikade ingafinyeleleki ngaphambili."