Key Takeaways
- Cov kws tshawb nrhiav kev nyab xeeb tab tom taug qab kev hloov pauv ntawm lub txhab nyiaj mobile malware uas tam sim no tuaj yeem nkag mus rau hauv cov khoom siv mobile.
- Cov kws paub txog kev nyab xeeb ntseeg tias smartphones nyiam ntau dua los ntawm cov neeg nyiag nkas vim lawv tau dhau los ua ib feem tseem ceeb ntawm peb lub neej digital.
-
Lawv qhia rau tib neeg kom ceev faj ntxiv thaum siv cov apps, tshwj xeeb tshaj yog cov uas tuav nyiaj xws li cov tuam txhab nyiaj txiag.
Raws li kev lag luam hauv lub xov tooj smartphone tsis txaus ntshai, cov kws tshawb nrhiav kev nyab xeeb tau qhia cov ntsiab lus ntawm Android banking malware uas tau coj los ntawm qee qhov tsis zoo "tus yam ntxwv tshiab."
Cov kws tshuaj ntsuam hem ntawm lub tuam txhab kev ruaj ntseg mobile Cleafy tau taug qab kev txhim kho ntawm Sova malware thiab tshaj tawm tias nws tau hloov zuj zus sai hauv ob peb lub hlis dhau los. Tam sim no nws tuaj yeem ua raws li ntau dua 200 daim ntawv thov nyiaj txiag thiab kev them nyiaj thiab txawm tias nkag mus rau cov khoom siv mobile nrog ransomware.
"Tus ransomware feature yog qhov nthuav heev vim nws tseem tsis tau muaj ib qho hauv Android banking trojans toj roob hauv pes," sau Cleafy. "Nws tau siv zog rau lub sijhawm [uas tshwm sim] nyob rau xyoo tas los no, raws li cov khoom siv txawb tau los ua, rau cov neeg feem coob, lub hauv paus cia rau tus kheej thiab cov ntaub ntawv lag luam."
Txhob Cia Siab
Raws li Cleafy, Sova tau tshaj tawm hauv cov rooj sib tham hacker thaum lub Cuaj Hlis 2021, nrog rau cov phiaj xwm kev txhim kho yav tom ntej, uas tam sim ntawd ntes tus kws tshawb fawb saib xyuas. Hmoov tsis zoo rau peb, Sova cov kws sau ntawv tau pom meej tias lawv tau cog lus tseg, thiab cov malware, tam sim no ntawm version 5, tau hloov zuj zus los ua qhov kev hem thawj loj heev.
"Raws li cov xov tooj smartphones txuas ntxiv mus ntxiv thiab hloov zuj zus, cov ntawv thov los ua kom peb lub neej niaj hnub yooj yim tau hloov kho nrog lawv," Chuck Everette, Tus Thawj Coj ntawm Cybersecurity Advocacy ntawm Deep Instinct, hais rau Lifewire hauv email. "Qhov no qhia txog txoj kev tawm tsam tshiab thiab thaj chaw muaj kev hem thawj loj dua rau cov neeg ua phem hem thawj coj kom zoo dua."
Cov lus qhia tseem ceeb ntawm no tsuas yog txhim kho cov ntawv thov paub zoo thiab muaj npe nrov.
Txhawm rau pab kom tsis txhob poob raug tsim txom rau Sova, lossis ib qho malware mobile, Lorri Janssen-Anessi, Tus Thawj Coj ntawm Sab Nraud Cybersecurity Assessments ntawm BlueVoyant, qhia cov neeg siv nyiaj hauv txhab nyiaj nrog cov xov tooj smartphones ceev faj.
"Hnub ntawm kev nias 'ok' lossis 'Kuv pom zoo' yuav tsum yog yav dhau los, tshwj xeeb tshaj yog thaum nws los txog kev siv nyiaj hauv tuam txhab, " Janssen-Anessi hais rau Lifewire hauv email. "Ua raws li koj qhov kev txiav txim siab los rub tawm thiab siv daim ntawv thov nyiaj txiag zoo li koj yuav xaiv lub txhab nyiaj tiag tiag. Nws qhia tias tib neeg yuav tsum xyuas kom meej tias lawv cov tsev txhab nyiaj muaj kev ntseeg siab hauv txhua yam ntawm lawv cov kev pabcuam online raws li lawv nyob hauv lawv cov kev pabcuam hauv tus kheej."
Raws li ntau Android malware, Sova suav nrog, raug xa los ntawm cov apps cuav, Chris Hauk, tus neeg siv khoom ntiag tug tus yeej ntawm Pixel Privacy, qhia cov tib neeg ib txwm tshawb xyuas lawv lub txhab nyiaj lub vev xaib kom txuas ncaj qha rau lawv cov app official.
"Tshaj tawm lub sijhawm los xyuas kom meej tias ib qho app tau tsim los ntawm tus tsim tawm tiag," Hauk hais rau Lifewire dhau email. "Tsuas yog vim tias ib qho app muaj lub logo Chrome, lossis lub logo ntawm koj lub txhab nyiaj lossis lwm lub tuam txhab, tsis txhais tau tias lub app yog qhov tseeb."
Kev Nyab Xeeb Kev Nyab Xeeb Zoo
Txawm hais tias tsis txhob rub tawm ib qho app los ntawm qhov txuas muab los ntawm tog tsis tau lees paub, Hauk tau hais kom cov neeg tseem nyob twj ywm ntawm qhov txuas lossis txuas hauv email lossis cov lus tsis txaus siab.
"Cov lus qhia tseem ceeb ntawm no tsuas yog txhawm rau txhim kho cov ntawv thov uas paub zoo thiab muaj npe nrov," pom zoo Everette, ntxiv, "tsis txhob ua qhov muag tsis pom kev lees paub, thiab tsis txhob nyem rau ntawm kev tshaj tawm lossis kev ceeb toom kev nyab xeeb uas tshwm rau ntawm koj lub cuab yeej."
Raws li Janssen-Anessi, txoj hauv kev zoo tshaj plaws kom tsis txhob txhim kho lub siab phem app yog qhov kev tshawb fawb zoo. "Qhov zoo tshaj plaws ntawm cov neeg siv internet yog tias lawv zoo siab los qhia lawv cov kev paub tsis zoo, yog li saib seb lwm tus neeg siv tau ntsib dab tsi ua ntej koj nyem rau nruab."
Thiab yog tias koj lub txhab nyiaj tsis muab ib qho app, Janssen-Anessi qhia tias nws yog qhov zoo tshaj plaws tsis yog lub txhab nyiaj siv lub vev xaib mobile, vim lawv tuaj nrog lawv tus kheej cov teeb meem kev nyab xeeb.
Ntxiv rau kev paub tseeb tias koj siv koj lub txhab nyiaj tiag tiag app, Melissa Bischoping, Endpoint Security Research Specialist ntawm Tanium, hais tias tib neeg yuav tsum tau txais tus cwj pwm ntawm kev tswj xyuas kev nyab xeeb zoo, tshwj xeeb tshaj yog thaum siv smartphone.
"Ua kom koj siv ob qhov kev lees paub tseeb, zoo dua los ntawm lwm yam uas tsis yog koj lub xov tooj ntawm tes / lwm lub xov tooj ntawm tes yog tias koj lub txhab nyiaj muab nws," Bischoping hais rau Lifewire dhau email. Nws kuj pom zoo kom siv tus neeg saib xyuas tus password zoo nrog cov chaw ruaj ntseg txaus, xws li lub peev xwm los kaw tus neeg saib xyuas tus password tom qab txhua qhov siv.
Pom zoo nrog nws cov phooj ywg, Stephen Gates, Kev Ruaj Ntseg Evangelist ntawm Checkmarx, hais tias ib tus neeg tsis tuaj yeem ceev faj heev thaum siv cov apps uas tswj nyiaj tiag tiag.
"Thaum kuv tsis tau tso siab ntau rau hauv mobile banking apps, ib txhia hais tias kuv ceev faj heev," Gates hais rau Lifewire hauv email. "Tab sis thaum koj soj ntsuam lub peev xwm ntawm Sova, kuv xav tias kuv qhov kev txhawj xeeb tau yooj yim ncaj ncees."