Ikhodi eputshuziwe yemikhiqizo ye-Samsung, izinsiza nezindlela zokuphepha

Darkcrizt

Imizuzu ye-4

Iqembu le-LAPSUS$, okufakazele ukugebenga ingqalasizinda ye-NVIDIA, isikhangiso muva nje i-hack efana ne-Samsung esiteshini sayo seTelegram, lapho i-Samsung iqinisekise khona ukuthi yephulwe yidatha lapho kwebiwa khona ulwazi olubucayi, okuhlanganisa nekhodi yomthombo yama-smartphones ayo e-Galaxy.

Lokhu kweba kwenzeke ngasekupheleni kwesonto eledlule kanti bekuyiLapsus$, okuyiqembu elifanayo labaduni elalingemuva kokwebiwa kwedatha yakwaNvidia, njengoba kubikwe ngoMashi 1. I-Lapsus$ ithi yebe ama-data angu-190, okuhlanganisa ikhodi yomthombo we-Trust Applet, ama-algorithms okusebenza kokuvula i-biometric, ikhodi yomthombo yokulayishwa kwebhuthi, kanye nekhodi yomthombo eyimfihlo ye-Qualcomm.

iqembu futhi uthi untshontshe ikhodi yomthombo kuseva yokuvula ye-Samsung, ama-akhawunti e-Samsung kanye nekhodi yomthombo neminye idatha ehlukahlukene.

Indlela yokuhlasela ebangele ukwebiwa kwedatha ayicacile. I-Lapsus$ yaziwa ngokuhlaselwa kwayo kwe-ransomware, kodwa akulona kuphela uhlobo lokuhlasela iqembu lezigelekeqe elihlanganyela kulo. Njengaku-Nvidia, ukugebenga kwe-Samsung kungenzeka kube ukwebiwa kwedatha okulula kanye nokuqola esikhundleni sokusebenzisa ngokuqondile i-ransomware.

AbakwaSamsung ngokusemthethweni babiza ukweba ngokuthi "ukwephulwa kwezokuphepha okuhlobene nedatha ethile yenkampani yangaphakathi."

"Ngokusekelwe ekuhlaziyeni kwethu kokuqala, ukwephulwa komthetho kuhilela ikhodi ethile yomthombo ehlobene nokusebenza kwemishini ye-Galaxy, kodwa ayifaki imininingwane yomuntu siqu yabathengi bethu noma abasebenzi," kusho abakwaSamsung esitatimendeni esibikwe ngabakwaSammobile. “Okwamanje, asilindele noma yimuphi umthelela ebhizinisini noma kumakhasimende ethu. Sesisebenzise izindlela zokuvimbela ezinye izigameko ezifana nalezi futhi sizoqhubeka nokusiza amakhasimende ethu ngaphandle kokuphazamiseka.”

Kubikwa ukuthi cishe i-190 GB yedatha iputshuziwe, kufaka phakathi ikhodi yomthombo yemikhiqizo ehlukahlukene ye-Samsung, izilayishi zebhuthi, izindlela zokuqinisekisa nokuhlonza, amaseva okuqalisa, isistimu yokuphepha yedivayisi yeselula ye-Knox, izinsizakalo ze-inthanethi, ama-API, kanye nezingxenye zobunikazi ezihlinzekwa yi-Qualcomm, okuhlanganisa isimemezelo sokuthola ikhodi yazo zonke i-TA- applets (Trusted Applet) esebenza ku-hardware enclave engayodwa esekelwe kubuchwepheshe be-TrustZone (TEE), ikhodi yokuphatha engukhiye, amamojula e-DRM kanye nezingxenye zokuhlinzeka ngokuhlonza kwebhayomethrikhi.

Idatha ikhishelwe esizindeni somphakathi futhi manje isiyatholakala kuma-trackers. Mayelana nesiphetho sangaphambilini se-NVIDIA sokudlulisela abashayeli ilayisense yamahhala, kubikwa ukuthi umphumela uzomenyezelwa kamuva.

“Izinhlelo zokusebenza ze-Trojan ezivuna abathintwayo nemininingwane kwezinye izinhlelo zokusebenza, njengezinhlelo zokusebenza zokubhanga, zivame kakhulu ku-Android, kodwa amandla okuphazamisa i-biometrics yocingo noma ukukhiya isikrini akhawulelwe kubalingisi abasabisayo abaxhaswa kakhulu ngemali, okuhlanganisa nobunhloli obuxhaswe nguhulumeni. ” U-Casey Bisson, inhloko yobudlelwano bomkhiqizo kanye nonjiniyela enkampanini yezokuphepha yamakhodi i-BluBracket

"Ikhodi yomthombo eputshuziwe ingenza kube lula kakhulu kubadlali abasabisayo abangakhokhelwanga kahle ukuthi bahlasele kakhulu izici ezivikeleke kakhulu zamadivayisi we-Samsung."

Kwaphawulwa ukuthi ikhodi entshontshiwe inganika amandla ukuhlasela okuyinkimbinkimbi njengokuchoboza isikrini sokukhiya ifoni, ukukhipha idatha egcinwe endaweni ye-Samsung TrustZone, nokuhlasela ngokuchofoza okuthi zero okufaka izicabha ezingemuva emafonini ezisulu.

Okunye okufakwe kulesi sifufula incazelo emfushane yokuqukethwe etholakala kufayela ngalinye kulawa amathathu:

  • Ingxenye 1 iqukethe ukulahlwa kwekhodi yomthombo kanye nedatha ehlobene Kwezokuphepha/Defense/Knox/Bootloader/TrustedApps nezinye izinto ezahlukahlukene
  • Ingxenye 2 iqukethe ukulahlwa kwekhodi yomthombo kanye nedatha ehlobene nokuvikeleka kwedivayisi nokubethela.
  • Ingxenye 3 iqukethe amakhosombe ahlukahlukene e-Samsung Github: Ubunjiniyela Bezokuvikela Beselula, I-akhawunti yasemuva ye-Samsung, i-Samsung Pass Backend/Frontend, kanye ne-SES (Bixby, Smartthings, Store)

Akukacaci ukuthi ngabe iLapsus$ ixhumane nabakwaSamsung ukuthola isihlengo, njengoba besho ecaleni likaNvidia.

Okokugcina uma unentshisekelo yokwazi okwengeziwe ngayo, ungabheka imininingwane Kulesi sixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.