Mummunan fakitoci sun ba da rahoton cewa tun daga watan Disamba 2018, ƙungiyar masu aikata laifuka ta yanar gizo sun yi kutse a cikin gida, da farko samfuran D-Link, don canza saitunan uwar garken DNS da kuma hana zirga-zirgar da aka tsara don halaltattun gidajen yanar gizo. Bayan haka, an tura masu amfani zuwa albarkatun karya.
An ba da rahoton cewa saboda wannan dalili, ana amfani da ramukan da ke cikin firmware, wanda ke ba da damar yin canje-canjen da ba a sani ba ga halayen masu amfani da hanyar sadarwa. Jerin na'urorin da aka yi niyya yayi kama da haka:
- D-Link DSL-2640B - 14327 na'urorin da aka karye;
- D-Link DSL-2740R - 379 na'urori;
- D-Link DSL-2780B - 0 na'urorin;
- D-Link DSL-526B - 7 na'urorin;
- ARG-W4 ADSL - 0 na'urorin;
- DSLink 260E - 7 na'urorin;
- Secutech - na'urori 17;
- TOTOLINK - 2265 na'urori.
Wato, samfura biyu ne kawai suka jure harin. An bayyana cewa an kai hare-hare sau uku: a watan Disambar 2018, a farkon watan Fabrairu da kuma karshen watan Maris na wannan shekara. An bayar da rahoton cewa masu kutse sun yi amfani da adiresoshin IP masu zuwa:
- 144.217.191.145.
- 66.70.173.48.
- 195.128.124.131.
- 195.128.126.165.
Ka'idar aiki na irin waɗannan hare-haren yana da sauƙi - an canza saitunan DNS a cikin na'ura mai ba da hanya tsakanin hanyoyin sadarwa, bayan haka yana tura mai amfani zuwa shafin clone, inda ake buƙatar shigar da shiga, kalmar sirri da sauran bayanai. Daga nan sai su je wajen masu satar bayanai. Ana ba da shawarar duk masu waɗannan samfuran da aka ambata a sama don sabunta firmware na masu amfani da su da wuri-wuri.
Abin sha'awa, irin waɗannan hare-haren ba su da yawa a yanzu; sun shahara a farkon shekarun 2000. Ko da yake a cikin 'yan shekarun nan an yi amfani da su lokaci-lokaci. Don haka, a cikin 2016, an yi rikodin wani babban hari ta hanyar amfani da tallan da ke kamuwa da hanyoyin sadarwa a Brazil.
Kuma a farkon 2018, an kai hari wanda ke tura masu amfani zuwa shafuka masu malware don Android.
source: 3dnews.ru