Malicious software tsim los rau kuv cryptocurrency tau kis thoob plaws ntau pua lub cuab yeej raws li qhov zoo li Google Txhais lus app.
Cov software phem, hu ua "Nitokod," tau tsim los ua ib qho kev pab cuam desktop rau Google Txhais lus thiab tau tsim los ntawm ib lub koom haum nyob rau hauv Qaib Cov Txwv, raws li Check Point Research (CPR) thaum Lub Yim Hli 29.
Nyob rau hauv qhov tsis muaj ib tus neeg siv khoom desktop rau Google cov kev pabcuam txhais lus, ntau tus neeg siv Google tau rub tawm qhov program no hauv lawv lub computer. Thaum qhov kev pab cuam no tau teeb tsa rau ntawm lub xov tooj smartphone, nws tam sim ntawd pib teeb tsa kev lag luam cryptocurrency mining lag luam ntawm lub cuab yeej ntawd.
Tom qab rub tawm daim ntawv thov siab phem no, cov txheej txheem ntawm kev txhim kho malware yog pib los ntawm kev siv lub sijhawm ua haujlwm. Nyob rau theem tom ntej, cov software siab phem no tau teeb tsa lub tshuab mining nyuaj rau Monero (XMR) cryptocurrency.
Mining software siv Cov Ntawv Pov Thawj Ua Haujlwm
Cov software mining yog ua raws li Cov Ntawv Pov Thawj Ua Haujlwm (PoW) mining tswvyim, uas siv ib tug loj npaum li cas ntawm hluav taws xob. Raws li qhov tshwm sim ntawm qhov no, nws muab tus tswj hwm ntawm qhov kev sib tw no zais cia nkag mus rau cov khoos phis tawj uas tau kis tus kab mob, tso cai rau lawv mus dag neeg thiab ua rau muaj kev puas tsuaj rau lub tshuab.
CPR tsab ntawv ceeb toom hais tias: "Tom qab cov malware raug tua, nws txuas rau nws C&C server kom tau txais kev teeb tsa rau XMRig crypto miner thiab pib ua haujlwm mining. Cov software tuaj yeem pom tau yooj yim hauv Google thaum cov neeg siv tshawb 'Google Txhais Desktop download'. Cov ntawv thov raug trojanised thiab muaj cov txheej txheem ncua sij hawm kom tsis txhob kis tus kab mob ntev ntev. "
Raws li cov lus ceeb toom, Nitrokod malware tau cuam tshuam cov tshuab hauv tsawg kawg 11 lub teb chaws txij li nws muab faib rau xyoo 2019. CPR kuj tau tweeted hloov tshiab thiab ceeb toom txog kev siv dag zog crypto txiaj.
Raws li Zscaler Threatlabz, tus kab mob Joker, lwm malware, kis 50 apps ntawm Google Play Store ua ntej xyoo no hauv txoj hauv kev zoo sib xws. Lawv tau raug tshem tawm sai sai ntawm Google lub khw app. Raws li pab pawg Zscaler ThreatLabz, Joker, Facestealer, thiab Coper malware tsev neeg tau pom tias yuav nthuav tawm ntawm daim ntawv thov.
Thaum pab pawg ThreatLabz tau ceeb toom tam sim rau Google Android Security pab pawg ntawm cov kev phom sij tshiab no, cov ntawv thov tsis zoo tau raug tshem tawm sai sai ntawm Google Play Store.
Txawm li cas los xij, txawm hais tias ntau tus neeg hauv crypto tau ntxhov siab txog cov lus ceeb toom txog kev dag ntxias, kev tshawb fawb tsis ntev los no tau pom tias cov nyiaj tau los ntawm kev dag ntxias cryptocurrency poob 65% thiab tau txo qis.
Tau qhov twg los: https://finbold.com/crypto-malware-impersonating-google-translate-app-infects-thousands-of-pcs/