Pungiyar leƙen asirin Cyber ​​suna amfani da tashar jirgin ruwa ta bayan gida ta Windows don afkawa OS X

Miguel Ángel Juncos

2 minti

Cutar cikin lambar shirin

Wani rukuni na masu satar bayanai da aka sani da su ne ke tsara hare-hare daban-daban a baya a kan Tashar Masana'antu ta Tsaron Amurka., Da kuma wasu mahimman kamfanoni a ɓangaren, kwanan nan sun fara amfani da shirin wanda ya haɗa da ƙofar baya don kai hari ga tsarin tare da OS X.

Masu binciken tsaro na FireEye tuni sun yi tsokaci kan wani shafin yanar gizo ranar Alhamis cewa an shigar da lambar bayan gida zuwa OS X daga bayan gida na Windows wanda aka yi amfani da shi sosai a cikin hare-haren da aka yi niyya a cikin 'yan shekarun nan, ana sabunta su sau da yawa a cikin aikin.

Ana laƙabi da mummunan shirin XSLCmd kuma yana da ikon buɗe harsashi mai juyawa don sarrafa fayil da canja wuri, gami da shigar da wasu shirye-shirye masu ɓarna a kwamfutar da ke cutar. Bambance-bambancen OS X na iya yin rajista keystrokes da hotunan kariyar kwamfuta, a cewar masu binciken FireEye.

Lokacin da aka girka a kan Mac, wannan malware tana shigar da kanta cikin »/ Library / Logs / clipboardd» da »HOME / Library / LaunchAgents / clipboardd«. Hakanan yana ƙirƙirar fayil ɗin com.apple.service.clipboardd.plist don tabbatar da yana gudana bayan tsarin ya sake. Malware ta ƙunshi lambar da ke bincika sigar OS X, amma ba sigogin da ke sama da OS X 10.8 (Mountain Lion) ba. Wannan yana nuna cewa sigar 10.8 ita ce ta ƙarshe ta OS X lokacin da aka rubuta shirin ko kuma aƙalla mafi yawan wanda aka saba amfani dashi don manufar sa.

XSLCmd bayan gida an ƙirƙira shi kuma ana amfani dashi ta ƙungiyar leƙen asiri ta yanar gizo wanda ya kasance yana aiki tun aƙalla 2009 kuma masu binciken FireEye sun sanya masa suna GREF. "A tarihance, GREF ya jagoranci kungiyoyi da dama, ciki har da Cibiyar Masana'antu ta Amurka (DIB), kamfanonin lantarki da injiniyoyi a duk duniya, da kuma tushe da sauran kungiyoyi masu zaman kansu, musamman wadanda ke da sha'awa a Asiya.» .

A cewar FireEye:

OS X ta sami karbuwa a tsakanin kamfanoni, tare da masu amfani da gogewa da sauri da sabawa da sabon tsarin da kuma samun saukin aiki, har ma da masu amfani da fasahar zamani masu amfani da fasalolin da suka fi karfi, da kuma shugabannin gudanarwa [Many] Mutane da yawa kuma suna ɗaukar hakan a matsayin mafi amintaccen dandamali na ƙididdiga, wanda ke haifar da haɗarin haɗuwa a cikin sassan IT biyu. A zahiri, yayin da masana'antar tsaro ta fara ba da ƙarin samfuran don tsarin OS X, waɗannan tsarin wani lokacin ba a kayyade su da kulawa a cikin yanayin kamfanoni fiye da takwarorinsu na Windows.


Sayi yanki
Kuna sha'awar:
Sirrin ƙaddamar da gidan yanar gizon ku cikin nasara

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.