I-Kaspersky Lab ifumene i-cyberattack enobunkunkqele obunokuthi ijolise phantse kwisigidi sabasebenzisi beelaptop ze-ASUS kunye neekhompyuter zedesktop.
Uphando lubonise ukuba abaphuli be-intanethi bongeze ikhowudi engalunganga kwi-ASUS Live Update utility, ehambisa i-BIOS, i-UEFI kunye nohlaziyo lwesoftware. Emva koko, abahlaseli baququzelele ukusasazwa kwe-utility elungisiweyo ngokusebenzisa amajelo asemthethweni.
"Into esetyenziswayo, eguqulwe yaba yiTrojan, yasayinwa ngesatifikethi esisemthethweni kwaye yabekwa kwiseva esemthethweni yohlaziyo ye-ASUS, eyayivumela ukuba ihlale ingabonwa ixesha elide. Abaphuli-mthetho bade baqinisekisa ukuba ubungakanani bento engendawo iyafana neyokwenyani, utshilo uKaspersky Lab.
Mhlawumbi, iqela le-ShadowHammer, eliququzelela uhlaselo olujoliswe kuyo (APT), lisemva kweli phulo le-cyber. Inyani kukuba, nangona inani lilonke lamaxhoba linokufikelela kwisigidi, abahlaseli babenomdla kwiidilesi ezithile ze-MAC ze-600, ii-hashes eziye zafakwa kwiinguqulelo ezahlukeneyo zoncedo.
βNgelixa sisenza uphando ngohlaselo, sifumanise ukuba kwa iindlela ezifanayo zasetyenziswa ukosulela isoftware kwabanye abathengisi abathathu. Ewe kunjalo, sazisa kwangoko i-ASUS kunye nezinye iinkampani malunga nohlaselo, βzitsho iingcali.
Iinkcukacha ze-cyberattack ziya kutyhilwa kwiNkomfa yoKhuseleko ye-SAS 2019, eqala ngo-Aprili 8 eSingapore.
umthombo: 3dnews.ru