I-Microsoft Ixwayisa Nge-Critical Office Zero-Day, I-Google Pixel Devices Ithunyelwa Ngengozi Ebucayi: I-Cybersecurity Roundup Yakho

Isibhengezo sezindaba ze-Cybersecurity ezinsongweni zezinsuku eziyiziro nokuba sengozini kwedivayisi.

I-Microsoft Ixwayisa Nge-Critical Office Zero-Day

I-Microsoft ikhalise i-alamu ngobungozi obukhulu kuhlelo lwayo lwesoftware yeHhovisi elingase livumele abahlaseli ukuthi bantshontshe izinto ezizwelayo. Imininingwane. Iphutha losuku oluyiziro, eliqokiwe i-CVE-2024-38200, lithinta izinguqulo eziningi zeHhovisi, okuhlanganisa ukuphindaphinda okusetshenziswe kabanzi njenge-Office 2016, i-Office LTSC 2021, i-Microsoft 365 Apps for Enterprise, ne-Office 2019.

Ukusebenzisa lobu bungozi kungase kuvumele abalingisi abanonya ukuthi benze amafayela aklanywe ngokukhethekile okuthi, lapho evulwa abasebenzisi abangaqaphile, anikeze ukufinyelela okungagunyaziwe kudatha ebucayi. Nakuba i-Microsoft isivele isebenzise ukulungiswa kwesikhashana futhi ilungiselela isiqeshana esiphelele ukuze sikhishwe ngo-Agasti 13, inkampani igcizelela ukubaluleka kokubuyekeza isofthiwe ye-Office ngokushesha ngangokunokwenzeka.

Ukuba sengozini kugqamisa izinselelo eziqhubekayo izinhlangano ezibhekana nazo ekugcineni ziqinile Ukuphepha kwe-cyber ukuzivikela, njengoba abahlaseli beqhubeka befuna izindlela ezintsha zokuthi bayekethise izinhlelo.

I-Ransomware Gang Leverages Aveziwe .env Amafayela Okuhlasela Okukhulu

Iqembu eliyinkimbinkimbi le-ransomware liqole ngempumelelo izinhlangano eziningi ngokusebenzisa amafayela e-.env afinyeleleka esidlangalaleni aqukethe imininingwane ebucayi. Abahlaseli basebenzise uchungechunge lwezinyathelo ezingalungile zokuphepha, okuhlanganisa ukuvezwa kwezinto eziguquguqukayo zendawo, ukusetshenziswa kwemininingwane ephile isikhathi eside, kanye nokuphathwa kwelungelo okwanele.

Ngokungena endaweni ye-AWS yezisulu, abalingisi abasabisayo baqalise umsebenzi wokuskena omkhulu oqondise izizinda ezingaphezu kwezigidi ezingu-230 futhi onakalise izinkulungwane zamafayela e-.env. Lawa mafayela aqukethe izifakazelo ezibalulekile zamasevisi amafu nama-akhawunti enkundla yezokuxhumana, enikeza abahlaseli ithuba lokweba idatha ebucayi futhi bafune izinkokhelo zesihlengo.

Impumelelo yomkhankaso igqamisa ukubaluleka okubalulekile kwezinqubo zokuphepha eziqinile, okuhlanganisa ukuvikela ulwazi olubucayi nokusebenzisa izilawuli zokufinyelela eziqinile. Izinhlangano kufanele zibeke phambili ukuvikela amafayela e-.env namanye amafayela okulungiselela ukuze kuvinjelwe ukufinyelela okungagunyaziwe.

I-Google Pixel Devices Ithunyelwa Ngengozi Ebucayi

Kutholwe iphutha elibalulekile lokuvikela kuhlelo lokusebenza olufakwe kuqala ezigidini zamadivayisi e-Google Pixel. Uhlelo lokusebenza, “Showcase.apk,” oludizayinelwe amademo esitolo se-Verizon, kutholwe ukuthi liqukethe ubungozi obungase buvumele abahlaseli ukuthi bakhiphe ikhodi bekude futhi bafake uhlelo olungayilungele ikhompuyutha.

Inkinga isuka kumalungelo esistimu eyeqile kanye nokuthembela kwayo ekuxhumekeni okungavikelekile kwe-HTTP ukuze ulande amafayela okulungiselela. Le nhlanganisela idala indlela yokuthi abalingisi abanonya bavimbe futhi balungise ifayela lokucushwa, okungase kube sengozini idivayisi.

Yize abukho ubufakazi bokuthi ubungozi buxhashazwa endle, imiphumela engaba khona mibi. Iphutha lingavumela abahlaseli ukuthi balawule idivayisi, bantshontshe idatha ebucayi, noma bafake i-spyware.

I-Google iyivumile inkinga futhi isebenzela ukususa uhlelo lokusebenza kuwo wonke amadivayisi asekelwayo e-Pixel. Kodwa-ke, ukutholwa kugqamisa ukubaluleka kokuhlolwa kokuphepha okuphelele, ngisho nakusoftware efakwe ngaphambilini.

I-FBI Iphazamisa Ukusebenza Kweqembu Elifufusayo Le-Ransomware, i-Radar/I-Dispossessor

Ekunqobeni okubalulekile ngokumelene kubugebengu obuku-intanethi, I-Federal Bureau of Investigation (FBI) imemezele ukuphazamiseka kwengqalasizinda ye-inthanethi ebalulekile yeqembu le-ransomware esafufusa, i-Radar/Dispossessor. Lokhu kwehliswa kusebenza njengentuthuko enhle empini engapheli yokunqanda usongo lwe-ransomware yomhlaba wonke.

I-Radar/Dispossessor, okukholakala ukuthi iholwa "Ubuchopho" be-inthanethi, yavela ngo-Agasti 2023 futhi yazinza ngokushesha njengosongo kumabhizinisi amancane naphakathi nendawo (ama-SMB) emikhakheni eyahlukene emhlabeni jikelele. Iqembu lisebenzisa iqhinga elivamile manje “lokukhwabanisa kabili”, libhala ngemfihlo idatha yezisulu futhi lisabisa ngokuyikhulula esidlangalaleni ngaphandle uma kuhlangatshezwana nesidingo sesihlengo. Uphenyo luphakamisa ukuxhumana okungaba khona phakathi kwe-Radar/Dispossessor kanye namalungu angaphambili eqembu elidume kabi le-LockBit ransomware.

Ukusebenza kwe-FBI kuthathe ngempumelelo ukulawula amaseva atholakala e-United States, United Kingdom, naseJalimane ayebalulekile ekusebenzeni kweqembu. Ukwengeza, izizinda zobugebengu eziyisishiyagalombili ezibhaliswe e-US kanye nesisodwa eJalimane esihlotshaniswa ne-Radar/Dispossessor zikhutshaziwe.

Lokhu kwehliswa kugcizelela ukubambisana kwamazwe ngamazwe okukhulayo phakathi kwezikhungo zomthetho ekulweni ne-ransomware. Impumelelo ye-FBI ibonisa ukuthambekela okubanzi kokukhula kokubambisana nokwabelana ngezisetshenziswa okuhloswe ukuphazamisa imisebenzi ye-ransomware. Nokho, ukulwa nobugebengu bamakhompuyutha kusalokhu kuyinkimbinkimbi futhi kuvela njalo.