ProHoster > Π‘Π»ΠΎΠ³ > wararka internetka > Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

Dhamaadkii 2019, dhowr ganacsade oo Ruush ah ayaa la xiriiray kooxda-IB waaxda baarista dambiyada internetka kuwaas oo ay soo food saartay dhibaatada galitaanka aan la ogolayn ee dad aan la garaneyn ay ku helaan waraaqahooda fariinta Telegram. Dhacdooyinka ayaa ka dhacay aaladaha IOS iyo Android, iyadoon loo eegin hawlwadeenka gacanta dawladda dhexe ee dhibbanuhu uu macmiil u yahay.

Weerarku wuxuu ku billowday adeegsaduhu farriinta farriinta Telegram-ka ee kanaalka adeegga Telegram (kani waa kanaalka rasmiga ah ee farriinta oo leh jeeg xaqiijin buluug ah) oo leh koodka xaqiijinta ee isticmaaluhu uusan codsan. Taas ka dib, SMS oo leh koodka hawlgelinta ayaa loo soo diray taleefanka gacanta ee dhibbanaha - isla markiiba ogeysiis ayaa laga helay kanaalka adeegga Telegram-ka in koontada laga soo galay qalab cusub.

Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

Dhammaan kiisaska kooxda-IB ay ka warqabaan, weeraryahanadu waxay galeen akoon qof kale iyaga oo isticmaalaya internetka moobiilka (malaha isticmaalaya kaararka SIM-ka ee la tuuri karo), iyo cinwaanka IP-ga weerarka inta badan wuxuu ku sugnaa Samara.

Helitaanka marka la codsado

Daraasad ay samaysay Kooxda-IB Computer Forensics Laboratory, halkaas oo lagu wareejiyay qalabka elektaroonigga ah ee dhibbanayaasha, ayaa muujisay in qalabka aan lagu faafin spyware ama bangiyada Trojan, xisaabaadka aan la jabin, iyo SIM-kaarka aan la bedelin. Dhammaan kiisaska, weeraryahanadu waxay marin u heleen fariinta dhibbanaha iyagoo isticmaalaya koodhadhka SMS-ka ee la helay markii ay ka soo galayaan akoontada qalab cusub.

Habkani waa sida soo socota: marka aad ka hawlgelinayso masiibada qalab cusub, Telegram wuxuu u soo diraa koodka kanaalka adeegga dhammaan qalabka isticmaalaha, ka dibna (marka la codsado) fariin SMS ah ayaa loo soo diraa telefoonka. Iyadoo taas la og yahay, weeraryahannada laftoodu waxay bilaabaan codsi ah in farriinta ay u soo diraan SMS oo leh koodka hawlgelinta, dhexda SMS-kan oo ay isticmaalaan koodka la helay si ay si guul leh ugu galaan farriinta.

Sidaa darteed, weeraryahanadu waxay si sharci darro ah u galaan dhammaan sheekeysiga hadda jira, marka laga reebo kuwa sirta ah, iyo sidoo kale taariikhda waraaqaha wada sheekeysiga, oo ay ku jiraan faylasha iyo sawirada loo soo diray. Markii uu tan ogaaday, isticmaale Telegram-ka sharciga ah ayaa si xoog ah u joojin kara fadhiga weerarka. Thanks to habka ilaalinta ee la hirgaliyay, caksigeeda ma dhici karto; weeraryahan ma joojin karo kulamadii hore ee isticmaale dhabta ah 24 saacadood gudahood. Sidaa darteed, waxaa muhiim ah in la ogaado fadhiga ka baxsan wakhtiga oo la dhammeeyo si aanay u lumin gelitaanka akoonkaaga. Khabiirada Kooxda-IB waxay u direen kooxda Telegram wargelin ku saabsan baaritaankooda xaaladda.

Daraasadda shilalku way sii socotaa, wakhtigan xaadirka ahna si sax ah looma xaqiijin nidaamka loo adeegsaday in lagaga gudbo qodobka SMS. Waqtiyo kala duwan, cilmi-baarayaashu waxay bixiyeen tusaaleyaal SMS-ka-dhex-galka ah iyagoo isticmaalaya weerarrada SS7 ama borotokoolka Dhexroorka ee loo isticmaalo shabakadaha mobaylada. Fikrad ahaan, weerarrada noocan oo kale ah waxaa lagu fulin karaa iyada oo si sharci darro ah loo isticmaalo hab farsamo oo gaar ah ama macluumaadka gudaha ee hawlwadeennada gacanta. Gaar ahaan, forumyada hackers-ka ee Darknet waxaa jira xayaysiisyo cusub oo wata dalabyo lagu jabinayo fariimaha kala duwan, oo uu ku jiro Telegram.

Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

"Khubarada dalal kala duwan, oo ay ku jiraan Ruushka, ayaa si isdaba joog ah u sheegay in shabakadaha bulshada, bangiyada mobilada iyo fariimaha degdega ah lagu jabsan karo iyada oo la adeegsanayo nuglaanta nidaamka SS7, laakiin kuwani waxay ahaayeen kiisas go'doonsan oo weerarro la bartilmaameedsaday ama cilmi-baaris tijaabo ah," faallooyinka Sergey Lupanin, madaxa Waaxda baarista dambiyada internetka ee kooxda-IB, "Dhacdooyin cusub oo xiriir ah, kuwaas oo ay horeba u jireen in ka badan 10, rabitaanka weeraryahannada si ay u dhigaan habkan lacag kasbashada qulqulka waa wax iska cad. Si aysan taasi u dhicin, waxaa lagama maarmaan ah in aad kordhiso heerkaaga nadaafadda dhijitaalka ah: ugu yaraan, isticmaal xaqiijinta laba-geesoodka ah meel kasta oo suurtagal ah, oo ku dar SMS-ka qodobka labaad ee qasabka ah, kaas oo si habsami ah ugu jira isla Telegramka. ”

Sidee loo ilaaliyaa naftaada?

1. Telegram ayaa horay u hirgeliyay dhammaan fursadaha amniga internetka ee lagama maarmaanka u ah taas oo yareyn doonta dadaalka weeraryahannada.
2. Qalabka IOS iyo Android ee Telegram-ka, waxaad u baahan tahay inaad tagto goobaha Telegram-ka, ka dooro tabka β€œPrivacy” oo aad ku qorto β€œCloud passwordTwo step verification” ama β€œTwo step verification”. Sharaxaad faahfaahsan oo ku saabsan sida loo suurtageliyo doorashadan ayaa lagu bixiyay tilmaamaha ku yaal bogga rasmiga ah ee farriinta: telegram.org/blog/sessions-and-2-step-verification (https://telegram.org/blog/sessions-and-2-step-verification)

Sida weeraryahanadu u akhriyi karaan waraaqahaaga Telegram. Sideese looga joojin karaa inay tan sameeyaan?

3. Waa muhiim in aan la dhigin ciwaanka emailka si uu u soo kabsado erayga sirta ah, tan iyo sida caadiga ah, soo kabashada erayga sirta ah ee emailka ayaa sidoo kale ku dhacda SMS. Si la mid ah, waxaad kordhin kartaa ammaanka akoonkaaga WhatsApp.



Source: www.habr.com

Add a comment