Har yanzu, kuma mun riga mun rasa ƙidaya, masu amfani da Android waɗanda, idan suka tuna, suna da rabon kasuwa wanda yakai kusan kashi 85% na na'urorin hannu, sake samun matsalar malware wanda, a takaice, na iya yin kwaikwayon sahihan aikace-aikace don satar bayanan biyan ku kuma "tafi" siyayya da kudinka.
Da gaske ba sabuwar barazana bane, amma a wani nau'in ci gaba wanda ya rigaya sananne, ingantacce kuma mai hatsari tunda har yana iya kwaikwayon tabbatarwar SMS don satar bayanai, katunan bashi da zare kudi, da asusun banki daga masu amfani.
Barazana kamar haɗari har yanzu ba'a sani ba
Fiye da shekara guda kasancewar Trojan-Banker.AndroidOS.Faketoken. Koyaya, mahaliccin wannan ɓarna na Android sun sami nasarar kammala shi da irin wannan matakin na wayewa wanda ya tayar da ƙararrawa tsakanin masanan tsaro na yanar gizo. Da yawa sosai Masu bincike har yanzu suna mamakin yadda suka sami damar cimma irin wannan mummunar cutar.
Mafi munin abu game da wannan sabuwar barazanar shine har yanzu masana ba su san yadda cutar na’urar ke faruwa ba. Daga SecureList sun bayar da rahoto waɗanda sun riga sun binciki ƙirar malware kuma a hankali suna shigar da lambarta kuma suna ƙarin koyo game da ita, duk da haka, yana da wuya a sami "maganin guba" lokacin da ba a san hanyar kamuwa da cutar ba. Kuma wannan duk da cewa sananniyar barazanar ce amma, muna dagewa, ingantattu kuma masu haɓaka.
Kamar yadda muka fada a sama, Trojan-Banker.AndroidOS.Faketoken malware ne wanda tuni al'ummar cyberecurity suka sani kusan shekara guda. A zahiri, an haɗa shi a cikin jerin ƙwayoyin cuta don Android kuma wasu riga-kafi riga suna da matakai akan sa. Duk da haka, wannan sabon sigar yafi karfi da hatsari, ta yadda har yanzu ba a san ainihin tasirinsa ba. Bari mu tuna cewa wannan "yaƙin" tsakanin ƙwayoyin cuta da riga-kafi, tsakanin barazanar da yanar gizo da hanyoyin warware su, galibi yana amsa wasan "cat da linzamin kwamfuta". Masu aikata laifuka ta hanyar yanar gizo koyaushe suna mataki ɗaya a gaban masana tsaro. Yanayi ne na hankali, kamar yadda yake a rayuwa kanta: yadda ake neman magani don cutar da ba a san da ita ba? Mabuɗin yana cikin saurin sani da fahimtar barazanar kuma, sama da duka, nemo da amfani da ingantaccen bayani. A halin yanzu, masanan tsaro na yanar gizo har yanzu suna mamakin duka aikin da kuma niyyar wannan malware don haka wayewa.
Ta yaya wannan sabon malware don Android yake aiki?
Wannan ingantaccen sabon salon Trojan-Banker.AndroidOS.Faketoken An girka shi a cikin tsarin aiki na Android kuma, bayan ɓoye kanta don kada a gan shi, yana fara aiki ba tare da mai amfani ya lura da shi ba. A gare shi, yana leken asirin duk aikace-aikacen da mai amfani ya fara da duk kiran da aka yi, yin rikodin wannan aikin wanda daga baya ya aika zuwa sabar da ba a sani ba, musamman kowane irin bayanin da ya shafi katunan bashi, asusun banki, da sauransu.
Amma ainihin haɗarin yana cikin gaskiyar cewa wannan ɓarnatarwar overlays a kan wasu banki da kuma aikace-aikacen biyan kuɗi halal. Don haka, yayin da mai amfani yayi imanin cewa suna shigar da bayanan su a cikin ainihin ƙa'idar, abin da suke yi a zahiri shine samar da banki na kansu, biyan kuɗi, da cikakkun bayanai ga waɗannan masu aikata laifuka na yanar gizo. Abun kwaikwayon cikakke ne: zane, launuka, rubutu, da sauransu iri ɗaya ne da aikace-aikacen asali.
Kuna iya tunanin cewa, duk da cewa wannan malware na iya samun damar rike bankin ku da bayanan biyan ku, tsarin tabbatar da sakonnin ku na banki, wanda ke aika lambar inganci zuwa wayar ku ta wayar hannu duk lokacin da kuka yi sayayya, zai hana sata. Abin takaici, wannan ba haka bane tunda wannan malware shima yana leken asirin sakonnin SMS kuma yana iya kwafin wadannan lambobin kuma aika su zuwa sabar nesa irin wannan ba za ka gane abin da ke faruwa ba har sai ka ga faduwar da ta shiga asusunka.
Ya bayyana cewa an yada malware ta hanyar sakon hoto wanda yake dauke dashi. Da gaske, ba mu koyi komai ba tukuna? Karka taba bude sako wanda baka san wanda ya tura shi ba, ka share shi nan take.