Izandiso zesiphequluli sezibe yithuluzi lansuku zonke lezigidi zabasebenzisi abafuna Thuthukisa ulwazi lwakho ku-Chrome, Firefox, noma ku-Edge.Zisetshenziswa ukuhumusha amakhasi ewebhu, ukuvimba izikhangiso, ukuphatha amaphasiwedi, noma ukusheshisa ukuphequlula, futhi ngokuvamile zifakwa ngokuchofoza okumbalwa nje ezitolo zezinhlelo zokusebenza ezisemthethweni. Ngenxa yalokhu kulula, abantu abaningi abaqiniseki ukuthi ubani ophethe isengezo ngasinye noma ukuthi yiziphi izimvume ezizicelayo.
Lokhu kwehluleka kuvula ithuba lokuthi izigebengu ze-inthanethi zisebenzise izandiso njenge isiteshi esithule sokuhlola nokweba idathaUmkhankaso wakamuva, obizwa ngokuthi i-GhostPoster, ukucacisile ukuthi le vector iyingozi kangakanani: izandiso zokukhwabanisa ziyahlangana sengathi zisemthethweni, zisebenza ngendlela evamile, futhi zingahlala zisebenza iminyaka ngaphandle kokuphakamisa izinsolo ngenkathi kubhekwa umsebenzi womsebenzisi.
Uyini umkhankaso we-GhostPoster futhi kungani ukhathaza?
Uphenyo olwenziwe yizinkampani eziningana zokuphepha kwe-inthanethi, okuhlanganisa I-KOI ne-LayerXBathole umsebenzi omkhulu osebenzisa izitolo ezisemthethweni zesandiso seMozilla Firefox, iGoogle Chrome, neMicrosoft Edge. Ngaphansi komkhankaso weGhostPoster, kuye kwatholakala inqwaba yezengezo, ezihlanganiswe ndawonye, Zidlula ukufakwa okungu-840.000 emhlabeni wonke, isibalo esinikeza umbono wobubanzi benkinga.
Lezi zandiso ezinonya zifihlwa njengamathuluzi avamile: Abahumushi bekhasi, abavimbeli bezikhangiso, okuthiwa ama-VPN noma izinsiza zokuphatha ukulandwa. Uma sezifakiwe, zisebenza ngemuva, ziqapha lokho okwenziwa yisisulu kusiphequluli, zifinyelela idatha yokuphequlula futhi, kwezinye izimo, zivumela iminyango yangemuva evumela ukulawula okukude kwemishini.
Okukhathaza kakhulu ukuthi eziningi zalezi zandiso sezitholakala isikhathi eside kumakhathalogi asemthethweni, okusho ukuthi Baphumelele izihlungi zokubuyekezwa ze-Chrome Web Store, i-Firefox Add-ons, kanye ne-Edge storeNgokusho kokuhlaziywa okukhishwe, ezinye bezisebenza kusukela ngo-2020, okuvumele umkhankaso ukuthi uhlale usebenza ngendlela eqhubekayo futhi ngaphandle kokuphazamiseka okukhulu.
Ngaphakathi kwe-GhostPoster, ochwepheshe nabo bathole uhlobo oluthuthukisiwe kakhulu nolugwemayo okuyinto, ngokwayo, efinyelele ukufakwa okungaphezu kuka-3.800. Leli gatsha livelele ngekhono lalo lokugwema izilawuli nokuhlangana nezandiso ezibonakala zisemthethweni, okwenza kube nzima nakakhulu ngabasebenzisi ukuqaphela ukuthi kukhona okungahambi kahle.
Indlela izandiso ezinonya ezisebenza ngayo ngemuva kwe-GhostPoster
Izandiso zesiphequluli, kungakhathaliseki ukuthi ze-Chrome, i-Firefox, noma i-Edge, zihlanganiswe ngokujulile nesofthiwe futhi zingakwazi funda futhi ushintshe okuqukethwe kwamakhasi ewebhuLokhu kufaka phakathi ukufinyelela amakhukhi, umlando wokuphequlula, futhi, kwezinye izimo, ukusebenzisana nesistimu yokusebenza. Uma isandiso senziwe kahle, konke lokhu kusebenza ekuhlinzekeni imisebenzi ewusizo; uma sinonya, lokho kufinyelela okufanayo kuba yisikhali esinembile sabahlaseli.
Endabeni ye-GhostPoster, isihluthulelo ukuthi ingxenye eyingozi ifihlwe ngokucophelela. Uphenyo lubonisa ukuthi labo abaphethe umkhankaso Zifihla ingxenye yekhodi yeJavaScript ngaphakathi kwesithombe se-PNG sesithonjana sesandiso.Le ndlela, eyaziwa ngokuthi i-steganography, ivumela ulwazi ukuthi lufihlwe kumafayela abonakala engenangozi, ukuze ekuqaleni kubonakale ilogo evamile kuphela, kodwa ngaphakathi kukhona ikhodi ezosetshenziswa kamuva.
Le khodi efihliwe iyavuselelwa uma isandiso sesifakiwe futhi sinomthwalo wemfanelo hlola umsebenzi womsebenzisi ngesikhathi sangempelaIngaqopha ukuthi yimaphi amakhasi avakashelwayo, yimaphi amafomu agcwalisiwe, noma yimaphi amasevisi asetshenziswayo, kanye nokuvimba ulwazi olubucayi njengeziqinisekiso noma amathokheni eseshini. Kwezinye izimo, iphinda ilande amamojula engeziwe ekugcineni... vula umnyango wangemuva emishinini ethintekile, okunikeza abahlaseli ikhono lokuxhuma kude.
Ngokusebenzisa i-steganography, izigebengu ze-cyber zenza ingxenye enonya ingaqashelwa ngesikhathi sokubuyekezwa okuzenzakalelayo kwezitolo zesandiso. Izinhlelo zokuhlaziya zivame ukubuyekeza ikhodi ebonakalayo kanye nokuziphatha okumenyezelweKodwa-ke, bangase bahluleke ukubona ukuthi umongo wangempela wokuhlasela ufihliwe ngaphakathi kwesithombe esilula. Le ndlela yandisa ubunzima kumapulatifomu azama ukunqanda ukusatshalaliswa kwama-plugin akhohlisayo.
Ngaphezu kwalokho, izengezo ezixhunywe ku-GhostPoster zilingisa ngokwethembeka imisebenzi yamathuluzi asemthethweni abathi afana nawo. Zinikeza, isibonelo, ukuhumusha ikhasi noma ukuvimba izikhangiso okuyisisekelo, okuqinisa umuzwa wokuphila okuvamile. Uma nje umsebenzisi ekholelwa ukuthi usebenzisa isandiso esiwusizo, Ngemuva, ukugeleza kolwazi okuqhubekayo kukhiqizwa kumaseva alawulwa umhlaseli..
Indima ye-KOI ne-LayerX ekutholakaleni komkhankaso
Ihlazo le-GhostPoster alizange lenzeke ngobusuku obubodwa. NgoDisemba, abahlaziyi benkampani yezokuphepha i-KOI Bathole iqembu lokuqala lezandiso eziyi-17 ezinonya ezishicilelwe esitolo esisemthethweni seMozilla Firefox. Zonke zazihlose abasebenzisi abafuna izinsiza ezivamile futhi, zizonke, zazinokulanda okungaphezu kuka-50.000.
Ngemva nje kwalokho, inkampani yezokuphepha kwe-inthanethi i-LayerX yaqhubeka nophenyo futhi yathola ukuthi elinye iphakethe lezengezo ezifanayo ezingu-17 kusatshalaliswa ngamakhathalogi e-Microsoft Edge kanye ne-Google Chrome. Ngalezi zindlela ezintsha zokuthola, inani eliphelele lokufakwa okuhlobene ne-GhostPoster landa kakhulu laya ngaphezu kuka-840.000 kuzo zonke iziphequluli ezintathu, okwenza kwaba umkhankaso onomthelela omkhulu emhlabeni jikelele.
Imibiko eshicilelwe ichaza ukuthi Zonke lezi zandiso zabelana ngamaphethini okuziphatha kanye nezakhiwo zobuchwepheshe ezifanayo kakhulu, okuholela esiphethweni sokuthi zaziyingxenye yohlelo olufanayo oluhlelekile. Phakathi kwezinhloso ezitholiwe kwakuwukuqapha ukuzulazula ngesikhathi sangempela, ukuqoqwa kwedatha enkulu, kanye nokungeniswa buthule kweminyango yangemuva emishinini.
Ngesikhathi sokuhlaziya, i-KOI ne-LayerX bagcizelele ukuthi i-Operation GhostPoster akuyona into eyenzeka yodwa, kodwa iyisibonelo se- isu eliqhubeke iminyaka eminingana ukusebenzisa uhlelo lokwandisa. Abacwaningi bagcizelela ukuthi ukuhlanganiswa kwenani elikhulu lokufakwa kanye nokutholwa sekwephuzile kuvumele abahlaseli ukuthi balondoloze imikhankaso yabo esebenzayo benendawo eyanele yokuqhuba.
Ngokusho kochwepheshe, abathengisi beziphequluli ngokwabo babhekene nomsebenzi onzima: thola amathuluzi anonya alingisa amasevisi adumileNakuba kukhona izilawuli ezizenzakalelayo kanye nezinqubo zokubuyekeza, ulwazi lubonisa ukuthi azihlali zanele ukumisa izandiso ezisebenzisa amaqhinga okufihla athuthukile njengalawo abonakala ku-GhostPoster.
Ubani osekela lokhu: iqembu le-Darkspectre kanye nemikhankaso yalo yangaphambilini
Uphenyo lukhomba umdlali owaziwayo emkhakheni wezokuphepha kwe-inthanethi: I-DarkspectreLeli qembu belilokhu lisebenzisa izandiso zesiphequluli ukusabalalisa i-malware iminyaka eminingi futhi libongwa ngemisebenzi yangaphambilini efana ne-ShadyPanda kanye ne-The Zoom Stealer, ezabelana ngezinsiza zobuchwepheshe kanye nengqalasizinda ne-GhostPoster.
Ngokusho kwedatha eqoqwe, i-Darkspectre ibilokhu ithuthukisa amaqhinga ayo ngokuhamba kwesikhathi. Imikhankaso yangaphambilini yayivele ibonise isithakazelo esikhethekile ekungeneni ngeziteshi ezibonakala zithembekile., njengezitolo zezinsiza ezisemthethweni. I-GhostPoster, ngaleyo ndlela, ingaba ukuvela komugqa womsebenzi ofuna ukukhulisa ukufinyelela ngaphandle kokuphakamisa ama-alamu ngokushesha.
I-LayerX ichaza ukuthi ukulandelela ingqalasizinda esetshenziswa ku-GhostPoster, ShadyPanda, kanye ne-Zoom Stealer kuvumele ukubhala phansi ukuvela kobuchwepheshe kwalezi zinsongoAbacwaningi baphawule indlela ama-domain, amaseva, kanye nezingcezu zekhodi ezisetshenziswa ngayo kabusha ekuhlaselweni okuhlukene, okuvumela amathuluzi ukuthi avumelane nezinyathelo zokuphepha ezisetshenziswa amapulatifomu.
Esinye sezici ezikhathaza kakhulu izinkampani zokuphepha ukuthi Kubikwa ukuthi ezinye izandiso ezixhunywe ku-Darkspectre zihlale zisebenza kusukela ngo-2020 ngaphandle kokutholakala. Lokhu kuqhubeka kugqamisa kokubili ubuhlakani babahlaseli kanye nokulinganiselwa kwezinhlelo zokubuyekeza ezenzakalelayo, ezingakwazi njalo ukubona amaphethini anonya lapho efihliwe ezingxenyeni ezingavamile, njengezithonjana zezithombe.
Imibiko iphinde ikhombise ukuthi, ngokombono wokusebenza, I-GhostPoster ithembele kumasu okugwema acwengekile kakhuluLezi zinyathelo zifaka phakathi ukulayishwa kwezingxenye okubambezelekile, ukusebenza kuphela ngaphansi kwezimo ezithile zokuzulazula, kanye nokusetshenziswa kokuxhumana okuyimfihlo namaseva omyalo nokulawula. Konke lokhu kunegalelo ekunciphiseni umsindo kanye nokuhlala kude ne-radar isikhathi eside ngangokunokwenzeka.
Izandiso, i-vector yokuhlasela evame kakhulu
Ngale kwe-GhostPoster, ochwepheshe bebelokhu bexwayisa ngokuthi izandiso azibalulekile. isisulu esiphindaphindayo sezigebengu ze-inthanethiUkuthandwa kwabo kanye nokwethenjwa abakutholayo ngokuthi bavela ezitolo ezisemthethweni kubenza babe yindlela ekahle yokungena ngenkani isofthiwe enonya ngaphandle kokuba umsebenzisi asole noma yini.
Ezimweni eziningi, izisulu zilanda lezi zengezo ngoba Bathembisa izici ezikhangayo nezikhululekileLezi zandiso zingakusiza: ukususa izikhangiso eziphazamisayo, ukuthuthukisa ubumfihlo, ukusheshisa isiphequluli sakho, noma ukwenza imisebenzi ephindaphindwayo ibe ngokuzenzakalelayo. Inkinga ukuthi, uma izimvume sezinikeziwe, isandiso singafinyelela ulwazi oluningi ngaphandle kokudinga ukucela imvume futhi.
Imikhankaso efana ne-GhostPoster ibonisa ukuthi, ngisho noma isandiso sigcwalisa ezinye zezithembiso zaso, kungenzeka ukuthi benza imisebenzi eyimfihloNgamanye amazwi, i-plugin ingavimba izikhangiso noma ihumushe amakhasi ngendlela evamile, kodwa ngesikhathi esifanayo iqoqe idatha yokuphequlula, ivimbele iziqinisekiso, noma ixhumane namaseva angaphandle ukuze ilande imiyalelo emisha.
Ukusetshenziswa kwamasu anjenge-steganography yesithombe noma ukwenziwa kwekhodi efihliwe kuyawuphazamisa kakhulu umsebenzi wokuhlaziya. Izinhlelo zokuphepha zendabuko zivame ukufuna amaphethini aziwayoKodwa uma ikhodi enonya ifihlakala kumafayela ezithombe noma isatshalaliswa ngezingxenye ezincane phakathi kwezingxenye ezahlukahlukene, ukuhlonza kuba nzima kakhulu.
Lesi simo siphoqa bobabili abathuthukisi besiphequluli kanye nesandiso ukuthi bazigcinele bona qinisa izindlela zokuqinisekisaOchwepheshe baveza ukuthi kuzodingeka ukuhlanganisa ukuhlaziywa okuzenzakalelayo okujulile, ukuhlolwa ngesandla, kanye nokuqapha okukhulu kokuziphatha kwangempela kwezandiso uma sezishicilelwe, ikakhulukazi lezo ezifinyelela inani elikhulu lokufakwa ngesikhathi esifushane.
Umthelela kubasebenzisi eYurophu kanye nezincomo eziyisisekelo
Umkhankaso we-GhostPoster ufinyeleleke emhlabeni wonke, kodwa Kuphinde kuthinte abasebenzisi eSpain nakwamanye amazwe aseYurophuE-UK, i-Chrome, i-Firefox, ne-Edge zibangela cishe konke ukusetshenziswa kwesiphequluli ekhaya nasezindaweni zobungcweti. Noma ubani ofake izandiso zokuhumusha, izithiyo zezikhangiso, noma ama-VPN eminyakeni yamuva nje ngabe uvezwe ukube isengezo besisohlwini olunezithiyo.
Iziphathimandla zaseYurophu kanye namaqembu okusabela asebenzisa imibiko evela ezinkampanini ezifana ne-KOI kanye ne-LayerX njengereferensi ye- buyekeza izexwayiso zakho kanye amazinga okuphepha ekhompyuthaIsincomo esijwayelekile ukuthi ubuyekeze njalo izandiso ezifakiwe bese ukhipha lezo ezingasasetshenziswa noma imvelaphi yazo engacaci. Akuvamile ukuqoqa izengezo ezisetshenziswe kanye bese zikhohliwe, kodwa ezisakwazi ukufinyelela isiphequluli.
Ukuze kuncishiswe izingozi, ochwepheshe bayeluleka ukubeka phambili izandiso ezakhiwe yizinhlangano eziqashelwayoHlola izilinganiso kanye nenani labasebenzisi, futhi uqaphele izixazululo ezithembisa izici eziningi kakhulu kuphakheji eyodwa. Kunconywa futhi ukuthi ubuyekeze izimvume eziceliwe ngaphambi kokufaka, ikakhulukazi uma isengezo sicela ukufinyelela okugcwele kuyo yonke idatha yokuphequlula ngaphandle kokuthi kubonakale kudingekile ngokuphelele.
Emkhakheni webhizinisi, lapho ukuphequlula kuvame ukuhilela ukufinyelela ulwazi olubucayi kanye nezinsizakalo zangaphakathi, izinhlangano zaseYurophu zifaka izinqubomgomo ezithile ukuze lawula ukuthi yiziphi izandiso ezingasetshenziswa kumakhompyutha ezinkampaniIzinyathelo ezivamile zifaka phakathi ukudala uhlu lwabagunyaziwe lwezengezo ezivunyelwe, ukuqapha okuhlanganisiwe, kanye nokusebenzisa izixazululo zokuphepha ezikwazi ukuqapha umsebenzi wesiphequluli.
Ochwepheshe batusa abasebenzisi ngabanye abasola ukuthi bafake isandiso esingaba yingozi Susa isengezo, sebenzisa iskena nge-antivirus ethembekile. Futhi uma ukungabaza kuqhubeka, thintana nochwepheshe wezokuphepha kwe-inthanethi. Emikhankasweni eyinkimbinkimbi njenge-GhostPoster, ukukhipha nje i-malware kungase kunganeli uma kufakwe i-malware eyengeziwe ohlelweni.
Icala le-GhostPoster liqokomisa izinga Ukuthemba izitolo ezisemthethweni ezinwetshiwe ngokungacabangi kungaba yingoziNakuba zihlala ziyisiteshi esiphephile kakhulu ngokumelene nokulandwa okuvela kumawebhusayithi angaziwa, ulwazi lubonisa ukuthi azizona iziphambeko nokuthi abahlaseli bayazi ukuthi bangazivumelanisa kanjani nezilawuli zabo. Inhlanganisela yokusetshenziswa okubucayi ngabasebenzisi, izinqubo zokubuyekeza eziqinile, kanye nokuqapha okuqhubekayo yizinkampani zokuphepha kuzoba yisihluthulelo sokunciphisa imikhankaso efanayo esikhathini esizayo.
