Nazarin da masu bincike 6 suka yi daga Jami'ar Indiana, Georgia Tech da Jami'ar Peking sunyi magana game da lamuran tsaro uku da aka samo a Apple OS X da kuma tsarin aiki na iOS wadanda ke nuni ga yiwuwar kai harin ta hanyar lalatattun aikace-aikace samun damar shiga kalmomin shiga na Keychain, bayanan sirri, kalmomin shiga da aka adana a cikin burauzar Google Chrome da ƙari.
Wannan kuskuren tsaro an gano shi tun da daɗewa kuma aka ba da rahoto ga Apple a cikin Oktoba na bara. Bayan gani da neman duk bayanan yanayin rashin lafiyar da aka samo a farkon wannan shekarar, har yanzu ƙwayoyin suna nan kuma wannan shine dalilin da ya sa dole ne mu mai da hankali sosai yayin girka aikace-aikacen da suka fito daga waɗanda ba a san su ba, tunda zamu iya samun babbar matsalar tsaro da na’urorinmu.
Mun tsallake cikakken tsaro na sabis na maɓallin iCloud - wanda aka yi amfani da shi don adana kalmomin shiga da sauran takaddun shaida na aikace-aikacen Apple daban-daban - da akwatunan sandbox na OS X. ana satar bayanan sirri daga Evernote, Facebook, Instagram, WhatsApp da sauran shahararrun aikace-aikace.
Jerin aikace-aikace da ayyuka m waɗanda ƙungiyar masu binciken suka gano sun daɗe kuma muna da wasu daga cikinsu: Evernote, Pushbullet, Dropbox, Instagram, WhatsApp, Pinterest, Dashlane, AnyDo, Aljihu, iCloud, Gmail, Google Drive, Facebook, Twitter, Chrome, 1Password da ƙari da yawa. .
Wannan kasuwanci ne kamar yadda aka saba kuma tabbas mutane daga Cupertino suna aiki don warware wannan matsalar tsaro, amma mafi mahimmanci shine yi amfani da hankali da kaucewa ta kowane hanya sauke software daga shafuka mara izini don guje wa matsaloli duk da cewa wannan ƙungiyar ta nuna cewa yana yiwuwa a yi amfani da wannan kwaro a cikin shagunan Apple.
Ba a san shi ba a yanzu idan wannan kwaron ya shafi OS X El Capitan, amma abin da yake tabbatacce shi ne cewa yana cikin sabon beta wanda yake na OS X 10.10.4 kuma hakan Apple zai buƙaci danna don gyara matsalar.
