Enyakatho yamasampuli angu-1,000 eTrojan yasebhange yeselula yakwa-Godfather azungeza emazweni amaningi emhlabeni jikelele, eqondise amakhulu ezinhlelo zokusebenza zamabhange.
Itholwe okokuqala ngo-2022, i-Godfather - ekwazi ukuqopha izikrini nokuchofoza izinkinobho, ibambe izingcingo nemibhalo yokuqinisekiswa kwezinto ezimbili (2FA), iqale ukudluliselwa kwebhange, nokunye okwengeziwe - isiphenduke enye yezinhlelo ezisetshenziswa kakhulu ezisetshenziswa yi-malware-as-a-service. ubugebengu be-inthanethi, ikakhulukazi ubugebengu be-inthanethi obuphathwayo. Ngokusho kweZimperium 2023 “Mobile Banking Heists Report,” kusukela ngasekupheleni konyaka odlule, u-Godfather wayeqondise izinhlelo zokusebenza zebhange ezingu-237 ezisabalele emazweni angu-57. Izinkampani ezisebenzisana nazo zikhiphe imininingwane yezezimali entshontshiwe okungenani emazweni ayisishiyagalolunye, ikakhulukazi e-Europe kanye ne-US.
Yonke leyo mpumelelo yadonsa amehlo, ngakho-ke, ukuze kuvinjelwe isofthiwe yezokuvikela ukuthi yonakalise iphathi, abathuthukisi be-Godfather bebekhiqizela amakhasimende abo amasampula amasha ngokuzenzakalela esikalini esiseduze sezimboni.
Abanye abathuthukisi bohlelo olungayilungele ikhompuyutha eselula yonkana sebeqalile ukwenza into efanayo. "Esikubonayo ukuthi imikhankaso ye-malware isiqala ukuba nkulu kakhulu," kuxwayisa uNico Chiaraviglio, usosayensi omkhulu eZimperium, ozobamba. iseshini kulokhu namanye amathrendi ohlelo olungayilungele ikhompuyutha eRSAC ngoMeyi.
Ngaphandle kuka-Godfather neminye imindeni eyaziwayo, i-Chiaraviglio ilandelela umndeni wohlelo olungayilungele ikhompuyutha ongaphezu kuka-100,000 ohlukile endle. Uthi: “Kuyahlanya lokho. “Asikaze silibone lelo nani lamasampuli kuhlelo olungayilungele ikhompuyutha eyodwa ngaphambilini. Nakanjani lokhu kuwumkhuba.”
I-Banking Trojans Izalela Amakhulu Amasampuli
Ukuphepha kweselula kakade kusasele emuva kakhulu ekuvikelekeni kwamadeskithophu. “Ngawo-90s, akekho owayesebenzisa i-antivirus kumakhompiyutha edeskithophu, futhi uhlobo lwalapho esikhona manje. Namuhla, umsebenzisi oyedwa kuphela kwabane abasebenzisa uhlobo oluthile lokuvikela lweselula. Amaphesenti angamashumi amabili nanhlanu wamadivayisi awavikelekile ngokuphelele, uma kuqhathaniswa nedeskithophu, ku-85%,” kukhala uChiaraviglio.
Izinsongo zamaselula, okwamanje, zikhuphuka ngokushesha. Enye indlela akwenza ngayo lokho iwukwenza iziphindaphindo eziningi ezihlukene kangangokuthi izinhlelo zokulwa namagciwane - okuyiphrofayili ye-malware ngamasignesha azo ahlukile - zibe nenkinga yokuhlobanisa ukutheleleka okukodwa nokulandelayo.
Cabanga ukuthi ngesikhathi sokutholwa kwayo okokuqala ngo-2022, ngokusho kukaChiaraviglio, kwakukhona amasampula angaphansi kwe-10 ka-Godfather endle. Ekupheleni konyaka odlule, lelo nani lase likhuphuke ngokuphindwe kayikhulu.
Onjiniyela bayo ngokusobala bebekhiqiza ngokuzenzakalelayo amasampuli ahlukile kumakhasimende ukuze awasize agweme ukutholwa. "Kungenzeka ukuthi babhala yonke into - lokho kungaba yindlela yokuyenza ngokuzenzakalela. Enye indlela kungaba sebenzisa izibonelo zolimi ezinkulu, njengoba usizo lwekhodi lungasheshisa ngempela inqubo yentuthuko,” kusho u-Chiaraviglio.
Abanye abathuthukisi beTrojan yasebhange balandele indlela efanayo, uma ngezinga elincane. NgoZibandlela, iZimperium yenza amasampula angama-498 oqhudelana naye oseduze ka-Godfather, Nexus, 300 amasampula Saderat, futhi 123 of I-PixPirate.
Ingabe Isoftware Yokuphepha Ingaqhubeka?
Izixazululo zokuphepha ezimaka uhlelo olungayilungele ikhompuyutha ngokusayina zizothola ubunzima bokugcina umkhondo wamakhulu nezinkulungwane zamasampuli ngomndeni ngamunye.
"Mhlawumbe kunokuningi ukusetshenziswa kabusha kwekhodi phakathi kwamasampuli ahlukene," kusho u-Chiaraviglio, okuthile aphakamisa ukuthi izixazululo eziguquguqukayo zingase zisetshenziswe ukuhlobanisa uhlelo olungayilungele ikhompuyutha oluhlobene namasignesha ahlukene. Kungenjalo, esikhundleni sekhodi ngokwayo, abavikeli bangasebenzisa ubuhlakani bokwenziwa (AI) ukuze bagxile ekuziphatheni kohlelo olungayilungele ikhompuyutha. Ngemodeli engenza lokho, u-Chiaraviglio uthi, "akunandaba ukuthi uyishintsha kangakanani ikhodi noma indlela uhlelo lokusebenza olubukeka ngayo, sisazokwazi ukuyibona."
Kodwa, uyavuma, “ngesikhathi esifanayo, lokhu kuhlale kuwumjaho. Senza okuthile [ukuze silungise], bese umhlaseli enze okuthile ukuze aguqukele ekuqaguleni kwethu. [Isibonelo], bangacela [imodeli yolimi enkulu] ukuthi baguqule ikhodi yabo ngokusemandleni abo. Lokhu kungaba indawo ye-polymorphic malware, okungeyona into eyenzekayo kakhulu kumakhalekhukhwini, kodwa singase siqale ukubona okuningi kwalokho. ”
- I-SEO Powered Content & PR Distribution. Khuliswa Namuhla.
- I-PlatoData.Network Vertical Generative Ai. Zinike Amandla. Finyelela Lapha.
- I-PlatoAiStream. I-Web3 Intelligence. Ulwazi Lukhulisiwe. Finyelela Lapha.
- I-PlatoESG. Ikhabhoni, I-CleanTech, Amandla, Environment, Ilanga, Ukuphathwa Kwemfucuza. Finyelela Lapha.
- I-PlatoHealth. I-Biotech kanye ne-Clinical Trials Intelligence. Finyelela Lapha.
- Source: https://www.darkreading.com/endpoint-security/godfather-banking-trojan-spawns-1k-samples-57-countries
