- 239 maapplication akashata paGoogle Play uye anopfuura mamirioni makumi mana nemaviri ekudhawunirodha akaonekwa neZscaler
- Mishandirapamwe mitsva: trojan yekubhengi ine akafukidzira, "Landfall" spyware, uye NFC hutsotsi neNGate.
- Mobile malware inokura 67% gore negore; adware inotonga (69%) uye Europe inonyoresa yepamusoro-soro munyika dzakaita seItari
- Gwaro redziviriro: mvumo, zvigadziriso, Play Dzivirira, kuongororwa kweapp, uye kuongorora account
Mafoni eAndroid anoramba ari munzvimbo inotaridzika, uye zvinoenderana netsvagiridzo yazvino, Maonero haana kunyatsodzikama.. Pindai Banking Trojans iyo isina maakaundi, Spyware inoshandisa ngozi yemazuva-zero uye hutsotsi husina kuonanaNzvimbo yekurwisa inokura inoenderana nekutorwa kwedhijitari muEurope neSpain.
Mumavhiki apfuura Mishandirapamwe uye data zvabuda pachena zvinopenda mufananidzo wakaoma: 239 maapplication akashata paGoogle Play kuunganidza zvinopfuura 42 miriyoni downloads, a itsva banking Trojan ine mavhairirwo anokwanisa kutora kutonga kwemudziyo, spyware yakadanwa Kudonha kwemvura iyo inopinda nepakati DNG mifananidzo uye chirongwa che kadhi cloning kuburikidza neNFC (NGate) kubva kuEurope uye kuwedzera kuLatin America.
Mufananidzo wekusimuka kwe mobile malware pa Android
Chirevo chazvino cheZscaler chinoratidza kuti pakati paJune 2024 naMay 2025 Google Play yakabata 239 maapplication akashata iyo yakapfuura mamirioni makumi mana nemaviri ekuisa. Mobile malware chiitiko yakakura ne67% gore negore, ine huvepo hwakakosha muchikamu chezvishandiso uye chekugadzira, apo vanorwisa vanozviita sezvishandiso zvinoita sezviri pamutemo.
Kushanduka uku kunoshandura kuva shanduko yakajeka mumaitiro: Adware inoita 69% yekuonekwanepo mhuri yeJoker inowira ku23%. Nenyika, India (26%), United States (15%), neCanada (14%) inotungamira nhamba, asi muEurope, kuderera kwakaonekwa. makwikwi akakurumbira muItalynekuwedzera kwakapinza kwegore negore, uye nyevero pamusoro pekupararira kunobvira kwengozi kune imwe nyika yose.
Takatarisana nechiitiko ichi, Google yakasimbisa kutonga kwayo pamusoro peiyo developer ecosystem nayo mamwe matanho ekusimbisa chitupa yekushambadza paAndroid. Chinangwa ndechekusimudza bhawa yekupinda uye kuteedzera, kuderedza kugona kwema cybercriminals kugovera malware kuburikidza nezvitoro zviri pamutemo.
Pamusoro pevhoriyamu, kuomarara kunetseka: Zscaler inosimbisa mhuri dzinoshanda, pakati pavo Anatsa (banking Trojan), Android Void/Vo1d (backdoor mumidziyo ine legacy AOSP, ine anopfuura miriyoni 1,6 zvishandiso zvakakanganiswa) uye XnoticeRAT yakagadzirirwa kuba zvitupa uye 2FA makodhi. MuEurope, masangano emari nevashandisi vemabhengi enhare Vanopa ngozi yakajeka.
Vanamazvikokota vanonongedza kuchinjika kubva kuhutsotsi hwekare hwekadhi rechikwereti kuenda mafoni ekubhadhara uye matekinoroji emagariro (phishing, smishing uye SIM swapping), izvo zvinoda kusimudza hutsanana hwemadhijitari ekupedzisira mushandisi uye kusimbisa kuchengetedzwa kwemasangano 'nharembozha.
Android/BankBot-YNRK: Kufukidzira, Kuwanika, uye Kubiwa kweBhangi
Vatsvakurudzi veCyfirma vakanyora a banking trojan ye Android Yakadanwa kuti "Android/BankBot‑YNRK", yakagadzirirwa kutevedzera zviri pamutemo maapplication obva amisa Accessibility Services ye. kuwana kutonga kwakazara yemudziyo. Hunhu hwayo kurwisa kwepamusoro: inogadzira fake login screens nezve chaiyo yekubhengi uye crypto apps kutora zvitupa.
Kugovera kunobatanidza iyo Play Store (mumasaisai anonzvenga mafirita) ane mapeji ehutsotsi anopa maAPK, achishandisa mazita epasuru nemazita anoteedzera masevhisi ane mukurumbira. Pakati pezvakaonekwa zvehunyanzvi zvitupa pane akati wandei SHA-256 hashes uye zvinofungidzirwa kuti oparesheni ichashanda pasi Malware-se-a-Sevhisi, iyo inofambisa kuwedzera kwayo kunyika dzakasiyana, kusanganisira Spain.
Kana yangopinda mukati, inomanikidza mvumo yekuwanikwa, inozviwedzera semugadziri wemudziyo, uye inoverenga zvinoonekwa pachiratidziri. dzvanya mabhatani chaiwo uye zadza mafomuInogona zvakare kubata 2FA makodhi, kushandura zviziviso, uye otomatiki kutamiswazvose pasina kumutsa kunyumwira kupi nokupi kunooneka.
Vaongorori vanobatanidza kutyisidzira uku kuBankBot/Anubis mhuri, inoshanda kubva 2016, ine akawanda akasiyana ayo Ivo vanoshanduka kunzvenga antivirus software uye zvidzoreso zvezvitoro. Mishandirapamwe iyi inowanzo kunanga kune anoshandiswa zvakanyanya mari maapplication, ayo anowedzera mhedzisiro inogona kuitika kana ikasaonekwa nenguva.
Kune vashandisi nemabhizinesi muEU, kurudziro ndeyekusimbisa mvumo yekutongaOngorora zvigadziriso zvekuwanikwa uye tarisa maitiro emaapps emari. Kana usina chokwadi, zviri nani kubvisa, kuongorora mudziyo wako, uye shandura magwaro mukubatana nesangano.
Kudonha: Chinyararire espionage uchishandisa DNG mifananidzo uye zero-zuva glitches
Imwe ongororo, inotungamirwa neUnit 42 yePalo Alto Networks, yakafumura a spyware ye Android akadanwa Kudonha kwemvura iyo yakashandisa njodzi yemazuva-zero muraibhurari yekugadzira mifananidzo (libimagecodec.quram.so) kuita kodhi kana decode DNG mafairaZvaiva zvakwana. gamuchira mufananidzo kuburikidza nekutumira mameseji kuitira kuti kurwiswa kuitwe pasina kupindirana.
Zviratidzo zvekutanga zvakatanga muna Chikunguru 2024 uye mutongo wakaiswa muchikamu se CVE‑2025‑21042 (nekuwedzera kururamisa CVE-2025-21043 mwedzi gare gare). Mushandirapamwe uyu wakanangana nekunyanya kukoshesa Samsung Galaxy zvishandiso uye yakave nekukanganisa kukuru muMiddle East, kunyangwe nyanzvi dzichiyambira nezvekuti maoparesheni aya anogona kukura zviri nyore sei munzvimbo.
Kamwe wazvipira, Landfall yakabvumira kubviswa mafoto pasina kuaisa kune goremameseji, kutaurirana, uye kufona matandakuwedzera kune shandisa maikorofoni pachivandeIko modularity ye spyware uye kuenderera kwayo kwerinenge gore pasina kuonekwa kunosimbisa svetuka muhunyoro izvo zviri kupihwa ne advanced mobile kutyisidzira.
Kuti uderedze njodzi, zvakakosha Isa zvigadziriso zvekuchengetedza zvemugadziri, ganhurira kuratidzwa kune mafaera anogamuchirwa kubva kune asina kusimbiswa mabatiro, uye chengetedza masisitimu ekudzivirira achishanda., zvese mumateshi ekushandisa ega uye muzvikwata zvemakambani.
Ngate: NFC kadhi cloning, kubva kuCzech Republic kuenda kuBrazil
Iyo cybersecurity nharaunda yakatarisa zvakare NGAte, UN Android malware yakagadzirirwa hutsotsi hwemari hunokanganisa NFC nokuti kopi kadhi data uye vatevedzere pane mumwe mudziyo. Mishandirapamwe yakanyorwa muCentral Europe (Czech Republic) inosanganisira kutevedzera mabhanga emuno uye shanduko yakatevera ine chinangwa che vashandisi muBrazil.
Kunyengedza kunobatanidza smishing, social engineering, uye kushandiswa kwe PWA/WebAPK uye mawebhusaiti anotevedzera Google Play kufambisa kuisirwa. Kamwe mukati, inotungamira munhu akabatwa kuti avhure NFC uye aise iyo PIN, inobata kuchinjanisa, uye inodzosera iyo uchishandisa zvishandiso senge. NFCGate, kubvumira kubviswa kwemari kumaATM uye kusingabatike POS kubhadhara.
Various suppliers Vanoona zvakasiyana pasi pema tag akadai seAndroid/Spy.NGate.B uye Trojan-Banker heuristicsKunyangwe pasina humbowo hweveruzhinji hwemishandirapamwe inoshanda muSpain, matekiniki anoshandiswa ndeaya inogona kutamiswa kune chero dunhu ine yakagamuchirwa yakawanda contactless banking.
Nzira yekudzikisa njodzi: maitiro akanaka
Usati waisa, tora masekondi mashoma kuti utarise iyo mupepeti, ratings uye zuva yeapp. Ngwarira zvikumbiro zvemvumo zvisingaenderane nebasa rataurwa. (kunyanya Accessibility uye Administration of mudziyo).
Chengetedza sisitimu nemaapplication yakagadziridzwa nguva dzoseActivate Google Play Dzivirira uye ita ma scan nguva dzose. Munzvimbo dzemakambani, zvinokurudzirwa kuita zvirongwa zveMDM. block zvinyorwa uye kuongororwa kwekukanganiswa kwezvikepe.
Regedza kudhawunirodha maAPK kubva kune zvinongedzo muSMS mameseji, pasocial media, kana maemail, uye bvisa ... mapeji anotevedzera Google PlayKana app yekubhengi ichikumbira PIN yekadhi rako kana kukukumbira kubata kadhi rako pedyo nefoni yako, nyumwira uye tarisa kubhangi rako.
Kana iwe ukaona zviratidzo zvehutachiona (data isina kujairika kana kushandiswa kwebhatiri, zviziviso zvinoshamisa(masikirini anopindirana), bvisa data, bvisa maapps anofungidzirwa, tarisa mudziyo wako, uye shandura zvitupa. Bata nebhengi rako kana wazviona mafambiro asina kutenderwa.
Muchikamu chehunyanzvi, Inosanganisira maIoCs akaburitswa nevaongorori (madomain, hashes, uye mapaketi akacherechedzwa) kune ako blocklists, uye kuronga mhinduro nechikamu CSIRTs kucheka. tambo dzinobvira yeutachiona.
Iyo Android ecosystem iri kuenda nepakati pechikamu chekudzvinyirirwa kwakanyanya kubva kucybercrime: kubva zvirongwa zvakashata muzvitoro zvepamutemo Izvi zvinosanganisira maTrojans ekubhengi ane akaturikidzana, spyware inoshandisa mifananidzo yeDNG, uye hutsotsi hweNFC nekutevedzera kadhi. Nezvigadziriso zvezvino-zvino, kungwarira panguva yekumisikidza, uye nekutarisa kunoshanda kwemvumo uye kutengeserana kwebhangi, zvinokwanisika kuvadzivirira. kuderedza zvakanyanya kuratidzwa vese vashandisi vega uye masangano muSpain uye neEurope yese.
Ini ndiri anofarira tekinoroji akashandura zvaanofarira zve "geek" kuita basa. Ndapedza makore anopfuura gumi ehupenyu hwangu ndichishandisa tekinoroji yekucheka-kumucheto uye kutamba nemhando dzese dzezvirongwa kunze kwekuda kuziva. Iye zvino ndava nyanzvi mune zvekombiyuta uye mitambo yemavhidhiyo. Izvi zvinodaro nekuti kweanopfuura makore 10 ndanga ndichishanda kunyora kune akasiyana mawebhusaiti pane tekinoroji nemitambo yemavhidhiyo, ndichigadzira zvinyorwa zvinotsvaga kukupa ruzivo rwaunoda mumutauro unonzwisisika nemunhu wese.
Kana iwe uine chero mibvunzo, ruzivo rwangu rwunobva kune zvese zvine chekuita neWindows inoshanda sisitimu pamwe ne Android yenharembozha. Uye kuzvipira kwangu kuri kwauri, ndinogara ndakagadzirira kushandisa maminetsi mashoma uye kukubatsira kugadzirisa chero mibvunzo yaungave unayo munyika ino yeinternet.