Google + tare da matsaloli kuma: sun aika da imel da ke nuni da hack ta hanyar API

Google

Waɗannan ba daidai bane mafi kyaun lokutan Google. Mun san tuntuni da yawa matsaloli game da sirrin bayananka, har ma da cewa akwai wasu masu fashin kwamfuta. Yanzu, ga alama da alama cewa, da kaɗan kaɗan, ana sake gano wasu, tunda kwanan nan da alama tsaron gidan yanar sadarwarku ya ɗan sami matsala (wanda a halin yanzu, da alama nan da nan zai ɓace).

Kuma, a wannan yanayin, Google yana aika imel ga wasu masu amfani da shi, yana ba da rahoton yiwuwar gazawar tsaro, wanda da shi aikace-aikace tare da samun damar API na iya samun damar samun ƙarin bayanai a cikin Google+ wanda yakamata yakamata, kuma yana iya samun damar bayanan bayanan sauran masu amfani.

Google da an sake yin kutse

Daga abin da muka koya, a wannan yanayin ga alama haka tsakanin 7 da 13 Nuwamba 2018, an gano wata sabuwar barazanar akan Google+, ta hanyar waɗansu aikace-aikace ne kawai waɗanda za ku iya ba da izini ta hanyar API ta Google, za su iya samun ƙarin bayanai a cikin bayanan.

Koyaya, wannan ba shine mafi munin ba, saboda a bayyane Zai ma sami damar isa ga bayanan bayanan waɗanda kuka ƙara a cikin hanyar sadarwar zamantakewa, koda kuwa suna da bayanan sirri. Ta wannan hanyar, wasu masu haɓakawa na iya samun damar yin amfani da bayananka a cikin Google Plus a cikin waɗannan kwanakin.

Ta wannan hanyar, idan har kun ba da izinin aikace-aikacen yaudara, daga Google ya kamata su aiko maka da imel, tare da haɗa bayanai a kan matsala mai matsala a cikin tambaya:

Mun tuntube ku don bayar da rahoto game da matsalar fasaha sanadiyyar sabuntawar software wanda ya shafi abubuwan Shirye-shiryen Shirye-shiryen Aikace-aikacen Google (APIs) tsakanin Nuwamba 7 da 13, 2018 (Lokacin Pacific), wanda shine lokacin da aka warware matsalar. Mun ƙaddara cewa kawai ya shafi Google+ APIs wanda ke dawo da bayanin martabar mai amfani. Wannan halin na iya haifar da matsaloli biyu:

  1. Idan kun ba da izinin aikace-aikace don samun damar bayanan bayananku, kamar sunanka, adireshin imel ko sana'arku, aikace-aikacen na iya neman da duba ƙarin fannonin bayananku ba tare da izini ba fiye da yadda kuka bari.
  2. Idan mutumin da kuka yi musayar bayanai daga bayananku ya ba da izinin aikace-aikace don samun damar filayen jama'a na bayananku, aikace-aikacen na iya nema da tuntuɓar waɗancan fannonin kamar yadda aka nufa, amma kuma yana iya nema da samun dama ba tare da izini ba ga kowane filin da kuka da an raba tare da wannan mutumin, gami da keɓaɓɓun filayen.

Wannan fitowar ta shafi filayen bayanan martaba ne kawai; ma’ana, bai baiwa masu kirkirar damar samun damar samun bayanan kudi ba, da lambobin gano kasa, da kalmomin shiga, ko wasu bayanan makamantansu wadanda galibi ake amfani dasu don aiwatar da ayyukan yaudara ko kuma satar bayanan sirri.

Matsalar, wacce tsarin gwajinmu na atomatik ya gano, an daidaita ta Nuwamba 13 na 2018 (Lokacin Pacific). Ba mu da masaniyar cewa masu haɓaka aikace-aikacen da ke da damar yin amfani da wannan bayanan na tsawon kwanaki shida sun san halin da ake ciki ko kuma sun yi amfani da shi ba daidai ba.

Mun lasafta wa wannan sakon jerin filayen da abin ya shafa da kuma sunayen aikace-aikacen da suka samu damar isa gare su (gwargwadon samuwar su). Kuna iya bincika duk aikace-aikace na ɓangare na uku waɗanda ka ba izinin shiga asusunka a cikin abubuwan da kake so na tsaro.

An bayyana wannan matsalar a cikin shafin yanar gizo Google+ daga Disamba 10 na 2018.

Muna baku hakuri game da damuwar da wannan yanayin ya haifar muku. Idan kuna da wasu tambayoyi, da fatan za a tuntube mu ta amfani da wannan nau'i.

Ta wannan hanyar, yana da mahimmanci kuyi hankali da Google+ kuma cewa ka bincika canje-canjen da kayi a waɗannan kwanakin, saboda yana yiwuwa fiye da ɗaya sun sami dama gare shi, kodayake gaskiya ne cewa wannan lokacin canza kalmar sirri ba zai taimaka maka ba.


Kasance na farko don yin sharhi

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.