Abaphandi bokhuseleko abavela kwinkampani yaseTshayina iTencent () iklasi entsha yohlaselo lwe-BadPower ejolise ekoyiseni iitshaja zee-smartphones kunye neelaptops ezixhasayo . Uhlaselo luvumela itshaja ukuba idlulise amandla agqithisileyo ukuba isixhobo asenzelwanga ukuphatha, nto leyo inokukhokelela ekungaphumeleli, ukunyibilika kwamalungu, okanye nomlilo wesixhobo.
Uhlaselo lwenziwa kwi-smartphone yexhoba, ulawulo olubanjwe ngumhlaseli, umzekelo, ngokuxhaphaza umngcipheko okanye ukuqaliswa kwe-malware (isixhobo ngaxeshanye sisebenza njengomthombo kunye nokujoliswe kuyo). Indlela ingasetyenziselwa ukulimaza ngokwasemzimbeni isixhobo esele sichaphazelekile kwaye senze i-sabotage enokubangela umlilo. Uhlaselo lusebenza kwiitshaja ezixhasa uhlaziyo lwe-firmware kwaye zingasebenzisi ukuqinisekiswa kwekhowudi yokukhuphela usebenzisa isignesha yedijithali. Iitshaja ezingakuxhasi ukudanyaza azikwazi ukuhlaselwa. Ubungakanani bomonakalo onokwenzeka buxhomekeke kwimodeli yetshaja, ukuphuma kwamandla kunye nobukho beendlela zokukhusela umthwalo ogqithisileyo kwizixhobo ezihlawuliswayo.
Iprothokholi yokutshaja ngokukhawuleza ye-USB ithetha inkqubo yokutshaja iiparamitha zokutshaja kunye nesixhobo esihlawuliswayo. Isixhobo esihlawuliswayo sidlulisela ulwazi kwitshaja malunga neendlela ezixhasiweyo kunye ne-voltage evumelekileyo (umzekelo, endaweni ye-volts ezi-5, kuxelwe ukuba inokwamkela i-9, i-12 okanye i-20 volts). Itshaja inokubeka iliso kwiiparamitha ngexesha lokutshaja, utshintshe umlinganiselo wentlawulo kwaye ulungelelanise i-voltage ngokuxhomekeke kwiqondo lokushisa.
Ukuba itshaja ibona ngokucacileyo ukuba iiparamitha eziphezulu kakhulu okanye utshintsho lwenziwe kwikhowudi yolawulo lokutshaja, itshaja inokuvelisa iiparamitha zokutshaja esingakhange ziyilelwe zona. Indlela yokuhlasela ye-BadPower ibandakanya ukonakalisa i-firmware okanye ukulayisha i-firmware elungisiweyo kwitshaja, ebeka ubuninzi bombane obunokwenzeka. Amandla eeshaja akhula ngokukhawuleza kwaye, umzekelo, i-Xiaomi kwinyanga ezayo ukukhupha izixhobo ezixhasa i-100W kunye ne-125W itekhnoloji yokutshaja ngokukhawuleza.
Kwii-adapters ezikhawulezayo ze-35 zokutshaja kunye neebhetri zangaphandle (ii-Power Banks) ezivavanywe ngabaphandi, ezikhethiweyo kwiimodeli ze-234 ezikhoyo kwiimarike, ukuhlaselwa kwakusetyenziswe kwizixhobo ze-18 ezenziwe ngabavelisi be-8. Uhlaselo lwe-11 yezixhobo eziyingxaki ze-18 zazinokwenzeka kwimodi ezenzekelayo ngokupheleleyo. Ukutshintsha i-firmware kwizixhobo ezisi-7 ezifuna ukwenziwa kwetshaja ngokwasemzimbeni. Abaphandi bafikelela kwisigqibo sokuba iqondo lokhuseleko alixhomekeke kwiprothokholi yokutshaja ngokukhawuleza esetyenzisiweyo, kodwa inxulumene kuphela nokukwazi ukuhlaziya i-firmware nge-USB kunye nokusetyenziswa kweendlela ze-cryptographic zokuqinisekisa imisebenzi kunye ne-firmware.
Ezinye iitshaja zikhanya ngezibuko eliqhelekileyo le-USB kwaye zikuvumela ukuba uguqule i-firmware kwi-smartphone ehlaselwe okanye ilaptop ngaphandle kokusetyenziswa kwezixhobo ezikhethekileyo kwaye ifihliwe kumnini wesixhobo. Ngokutsho kwabaphandi, malunga ne-60% yeetshiphusi ezikhawulezayo zokutshaja kwimarike zivumela uhlaziyo lwe-firmware ngezibuko le-USB kwiimveliso zokugqibela.
Uninzi lweengxaki ezinxulumene netekhnoloji yokuhlaselwa kweBadPower inokulungiswa kwinqanaba le-firmware. Ukuthintela uhlaselo, abavelisi beetshaja ezinengxaki bacelwa ukuba bomeleze ukhuseleko ngokuchasene nokuguqulwa okungagunyaziswanga kwe-firmware, kunye nabavelisi bezixhobo zabathengi ukuba bongeze iindlela zokulawula ukulayisha ngaphezulu. Abasebenzisi abakhuthazwa ukuba basebenzise iiadaptha ezino-Type-C ukudibanisa izixhobo zokutshaja ngokukhawuleza kwii-smartphones ezingaxhasi le modi, kuba iimodeli ezinjalo zikhuselwe kancinci ekugqithiseni okunokwenzeka.
umthombo: opennet.ru