Haana kupfuura
Plead chiitiko muASUS WebStorage chirongwa chakawanikwa neEset nyanzvi pakupera kwaApril. Pakutanga, boka reBlackTech raigovera Plead vachishandisa phishing kurwiswa kuburikidza neemail uye marouters ane hurema hwakavhurika. Kurwiswa kwekupedzisira kwakanga kusina kujairika. MaHackers akaisa Plead muUSUS Webstorage Upate.exe chirongwa, inova yekambani software yekuvandudza software. Ipapo iyo yekuseri yakagadziridzwa zvakare nevaridzi uye yakavimbika ASUS WebStorage chirongwa.
Maererano nenyanzvi, matsotsi akakwanisa kuunza backdoor muASUS utilities nekuda kwekusachengeteka kwakakwana muHTTP protocol vachishandisa iyo inonzi man-in-the-pakati kurwisa. Chikumbiro chekuvandudza uye kuendesa mafaera kubva kuASUS masevhisi kuburikidza neHTTP chinogona kubvumwa, uye panzvimbo yesoftware yakavimbika, mafaira ane hutachiona anoendeswa kune akabatwa. Panguva imwecheteyo, ASUS software haina nzira dzekutarisa chokwadi chezvirongwa zvakadhawunirodha zvisati zvaitwa pakombuta yemunhu akabatwa. Kubvunzurudzwa kwezvigadziriso kunogoneka pane yakakanganiswa ma routers. Nokuda kweizvi, zvakakwana kuti vatungamiri varegeredze zvigadziro zvekugadzirisa. Mazhinji ma routers ari mumambure akarwiswa anobva kumugadziri mumwechete ane fekitori-set logins uye mapassword, ruzivo nezve izvo zvisiri chakavanzika chakachengetedzwa.
Iyo ASUS Cloud sevhisi yakakurumidza kupindura kune njodzi uye yakagadziridza masisitimu ari pane yekuvandudza server. Nekudaro, kambani inokurudzira kuti vashandisi vatarise makomputa avo kune mavhairasi.
Source: 3dnews.ru