Tsarin kwamfutar Apple, Mac OS X, suna fuskantar sabuwar barazana hakan yana ba maharan dama dauki iko da tsarin ba tare da wata matsala ba kuma tattara bayanai daga kwamfutocin da suka kamu.
Masana tsaro na Bitdefender sun gano wannan malware da aka sani da Eleanor hakan yana shafar tsarin Mac OS X ta hanyar buɗe a ƙofar baya da haɗa kayan aiki ta hanyar hanyar sadarwar Tor.
Ana rarraba Eleanor akan hanyar sadarwa ta hanyar aikace-aikacen da ake kira Mai sauƙin EasyDoc, kamar mai amfani da mara cutarwa, wanda masu amfani suke girkawa da niyyar yin amfani da jujjuya tsarin jujjuyawar. Ganin yana da sauƙi: yanki mai iyaka don jan fayilolin da basu taɓa tuba ba.
Ba wai kawai aikace-aikacen ba zai canza fayiloli ba, amma masana a Bidefender sun bayar da rahoton cewa girka wannan aikin ya hada da girka wasu bangarori uku: ƙofar baya, abokin cinikin gidan yanar gizo Pastebin da kuma sabar apache. Tiberio Axinte, Bitdefender Technical Lead, ya yi kashedi game da barazanar da Eleanor ke yi wa kwamfutoci.
“Wannan nau'in malware yana da hadari musamman da yake yana da wahalar ganowa kuma ya baiwa maharin cikakken ikon kulawar tsarin. Misali, zasu iya toshe hanyar zuwa kwamfutarka, suyi barazanar maido da fayilolinka masu zaman kansu, ko juya tsarinka cikin botnet don kai farmaki ga wasu na'urori. Damar ba ta da iyaka. "
Eleanor ya ƙirƙiri wani shugabanci Tor a kan injunan da ke dauke da cutar, barin maharan su hade kuma cikakken hanya zuwa duk tsarin fayil, da kuma ɗaukar hotuna da bidiyo ta hanyar kyamarar yanar gizo.
Kodayake Eleanor ba ta haifar da wata illa ba a halin yanzu, an san cewa tana da ikon aiwatarwa, ban da Lambar PHP, PERL, Python, Ruby, Java, da rubutun yare C. Wannan zai ba da damar malware ƙirƙiri, sharewa da shirya bayanai da fayilolin tsarin, don haka yin barazana mai haɗari.
A halin yanzu ba mu da ƙarin bayani kan Eleanor. Koyaya, an san maharan suna amfani da muguwar aikace-aikacen don ɗora bayanan ɓoye ta hanyar shigarwa da kuma amfani dasu danganta kwamfutarka da botnet ko cibiyar sadarwa na aljan kwakwalwa.
Ba a tabbatar da ainihin aikace-aikacen ta Apple ba, don haka masu bincike na tsaro sun ba da shawarar canzawa Saitunan tsaro na Mac don bada izinin aikace-aikacen da aka sauke daga Mac App Store da masu haɓakawa sun gano.
