ProHoster > Π‘Π»ΠΎΠ³ > Maamulka > Mirai clone waxay ku daraysaa darsin ka faa'iidaysiyaal cusub oo lagu beegsanayo aaladaha IoT ee ganacsiga

Mirai clone waxay ku daraysaa darsin ka faa'iidaysiyaal cusub oo lagu beegsanayo aaladaha IoT ee ganacsiga

Cilmi-baadhayaashu waxay heleen clone cusub oo ka mid ah Mirai botnet ee caanka ah, oo loogu talagalay aaladaha IoT. Markan, aaladaha ku-xidhan ee loogu talagalay in lagu isticmaalo goobaha ganacsiga ayaa khatar ku jira. Hadafka ugu dambeeya ee weeraryahanadu waa in la xakameeyo aaladaha xajmigooda leh oo ay fuliyaan weerarrada DDoS ee baaxadda leh.

Mirai clone waxay ku daraysaa darsin ka faa'iidaysiyaal cusub oo lagu beegsanayo aaladaha IoT ee ganacsiga

Odhaah:
Markii la qorayay tarjumaada, maan ogayn in hubku uu hore u lahaa maqaal la mid ah.

Qorayaasha Mirai asalka ah mar hore ayaa la xiray, laakiin la heli karo isha code, oo lagu daabacay 2016, waxay u ogolaataa kuwa cusub inay abuuraan botnets iyaga oo ku salaysan. Tusaale ahaan, sheeko-xumo ΠΈ Okiru.

Mirai asalka ah wuxuu soo muuqday 2016. Waxay ku dhufatay router, kamaradaha IP, DVR-yada iyo aaladaha kale ee inta badan leh furaha sirta ah, iyo sidoo kale aaladaha isticmaalaya noocyada Linux ee duugoobay.

Kala duwanaanshaha cusub ee Mirai waxaa loogu talagalay aaladaha ganacsiga

Botnet cusub ayaa waxaa helay koox cilmi baarayaal ah Unugga 42 ka Palo Alto Network. Waxay kaga duwan tahay clones kale in loogu talagalay aaladaha ganacsiga, oo ay ku jiraan WePresent WiPG-1000 nidaamyada bandhigga wireless iyo LG Supersign TVs.

Ka faa'iidaysiga meel durugsan ee gelitaanka LG Supersign TVs (CVE-2018-17173) ayaa la helay bishii Sebtembar ee sannadkii hore. Iyo loogu talagalay WePresent WiPG-1000, waxaa la daabacay 2017. Isku soo wada duuboo, bot-ku waxa uu ku qalabaysan yahay 27 ka faa'iidaysi, kuwaas oo 11 ka mid ahi ay cusub yihiin. Qaabka "aqoonsiga aan caadiga ahayn ee aqoonsiga" ee fulinta weerarrada qaamuuska ayaa sidoo kale la ballaariyay. Kala duwanaanshiyaha cusub ee Mirai wuxuu kaloo bartilmaameedsadaa qalabyo kala duwan oo ku xiran sida:

  • Linksys router
  • router ZTE
  • Dlink router
  • Qalabka kaydinta shabakada
  • NVR iyo kamaradaha IP

"Sifooyinkan cusub waxay siinayaan botnet weerar weyn," Cilmi-baarayaasha Cutubka 42 ayaa ku yiri boostada blog. "Gaar ahaan, bartilmaameedka kanaalada isgaarsiinta shirkadaha waxay u oggolaaneysaa inay amarto xajmi badan, taas oo ugu dambeyntii keenta kororka dabka ee botnet si uu u fuliyo weerarrada DDoS."

Dhacdadani waxay muujineysaa baahida loo qabo in shirkaduhu ay la socdaan aaladaha IoT ee shabakadooda, si sax ah u habeeyaan amniga, iyo sidoo kale baahida loo qabo cusbooneysiinta joogtada ah.
.

Source: www.habr.com

Add a comment