FalseGuide, masu binciken barazanar wayar hannu sun gano sabon nau'in kwayar cuta a Check Point. Ya kamu da miliyoyin na'urorin Android, wannan sabon botnet malware, wanda aka yiwa laƙabi da FalseGuide an ɓoye shi a cikin aikace-aikacen jagora sama da 40 don wasanni a cikin Google Play Store.
Kusan 2 Million Android Masu Amfani da cutar:
Da farko ana tunanin masu amfani da 600,000 ne, adadin masu amfani da Android da suka sanya malware a kan na’urorin su daga Google Play Store ya kai Miliyan 2 kawo yanzu.
A cewar Check Point, FalseGuide ya kirkiri “botnet mara kyau daga cikin cututtukan da ke dauke da cutar” don isar da adware ta wayoyin hannu da kuma samar da kudaden shiga na tallace-tallace ga masu aikata laifuka ta hanyar intanet. (Botnet rukuni ne na na'urori waɗanda masu fashin kwamfuta ke sarrafa su ba tare da sanin masu su ba). The malware nema wani sabon izini a kan shigarwa watau, izinin mai gudanarwa na na'urar don haka don kauce wa share ta mai amfani, wani aiki wanda yawanci yana nuna wani mummunan nufi. Bayan haka sai malware tayi rajista da kanta zuwa Firebase Cloud Messaging - sabis na saƙon giciye wanda ke bawa masu haɓaka aikace-aikace damar aika saƙonni da sanarwa.
Da zarar an yi rijista da sabis ɗin, FalseGuide na iya ba maharan damar aika saƙonnin da ke ƙunshe da hanyoyin haɗi zuwa ƙarin kayayyaki da zazzage su zuwa na'urar da ke dauke da cutar, ta ba maharan damar nuna tallace-tallace na ɓatattun hanyoyin ɓoye daga mahallin. Dogaro da manufofin maharan, waɗannan rukunin suna iya ƙunsar lambar ɓarna mai ƙarfi da aka tsara don tushen na'urar, gudanar da harin DDoS, ko ma shiga cikin hanyoyin sadarwa masu zaman kansu.
“Nwayoyin botnet suna daɗa haɓaka tun farkon shekarar da ta gabata, suna haɓaka cikin wayewar kai da isa. Wannan nau'in malware yana sarrafawa don kutsawa cikin Google Play saboda yanayin rashin cutarwa na kayan aikin farko, wanda kawai yake sauke ainihin lambar cutarwa. Bai kamata masu amfani su dogara ga shagunan app don kariyar su ba, da kuma aiwatar da ƙarin matakan tsaro akan na'urar su ta hannu, kamar yadda suke amfani da irin wannan maganin akan kwamfutocin su. ”
“An loda manhajojin ne zuwa shagon sayar da manhajojin tun a farkon watan Nuwamba na shekarar 2016, ma’ana sun buya cikin nasara har tsawon watanni biyar, suna tara abubuwa da yawa na zazzagewa. Kimanin da aka sabunta yanzu ya hada da kusan masu amfani miliyan 2 da suka kamu da cutar, ”kamar yadda masu binciken Check Point suka rubuta a shafin yanar gizo.
Check Point ya lissafa duk wasannin da suke dauke da sabon FalseGuide malware - Jagora ko FIFA Mobile, Jagora don LEGO Nexo Knights, Jagora don mirgina sama, Jagora don Terraria, Jagora don Pokemon GO, Jagora mai ban mamaki Spider-Man 2, ProGuide LEGO Marvel Superhero , Guide Dream League Soccer, LEGUIDE LEGO City Undercover, LEGUIDE LEGO City My City, Jagorar Rolling Sky, Jagoran Wasannin Ninjago, Jagorar Duniyar Yunwar Shark, Jagora Ga FIFA 17, Jagorar Mortal Kombat X, Jagorar Inuwar fada 3 da 2 da yawa da yawa.
Masu binciken Check Point sun sanar da Google game da FalseGuide a cikin watan Fabrairu, bayan haka kuma kamfanin yayi shiru cire malware apps daga Play Store.
Amma duk da cewa an cire su, har ila yau, mummunan ayyukan har yanzu suna aiki a kan wasu na'urori, suna barin masu amfani da Android a bude don kai hare-hare ta hanyar yanar gizo.
Matakan da za a bi don zama ba a shafe su ba:
- Hanya guda daya tak da za a iya kiyaye na'urarka daga wadannan kasada shine a kula da aikace-aikacen da muka yanke shawarar girkawa, kuma a koda yaushe a tabbatar da izinin aikace-aikacen kafin girka: idan akwai wata tantama, zai fi kyau a gare ka ka watsar da shigarwar.
- Koyaushe zazzage aikace-aikacen waɗanda suka fito daga amintattu kuma waɗanda aka tabbatar da su.
- Yi hankali da ƙa'idodin da suke neman haƙƙin gudanarwa. Hakkokin gudanarwa suna da ƙarfi kuma suna iya ba app cikakken ikon sarrafa na'urarka.
