Key Takeaways
- Tus kws tshawb fawb txog kev nyab xeeb tau pom tias ob qho tib si Facebook thiab Instagram apps ntawm iOS ntxig ib txoj cai kev cai thaum qhib kev sib txuas hauv lawv cov browser hauv app.
- Tus lej hla dhau Apple txoj kev tiv thaiv ntiag tug thiab tuaj yeem siv los taug qab koj ntawm cov vev xaib thib peb ib yam nkaus.
- Lwm tus kws tshaj lij kev nyab xeeb qhia kom zam kev siv cov browser hauv app thiab cia siab tias Apple yuav ua cov kauj ruam los tshem tawm qhov kev daws teeb meem no.
Kev tshawb fawb tshiab tau qhia tias feem ntau cov apps tsis siv lub xov tooj smartphone lub vev xaib lub vev xaib los qhib kev sib txuas, uas tuaj yeem cuam tshuam kev khiav hauj lwm kev ruaj ntseg thiab kev ceev ntiag tug nta.
Tus kws tshawb fawb txog kev nyab xeeb, Felix Krause, tau qhia tias Meta's Instagram thiab Facebook apps ntawm iOS ntxiv qee qhov JavaScript code rau cov vev xaib thib peb thaum koj mus ntsib lawv siv cov kev cai hauv app browser. Hauv-app browsers tso cai rau tib neeg tuaj xyuas cov vev xaib yam tsis tau tso lawv cov apps. Cov ntawv tso cai tso cai rau cov apps uas muaj peev xwm taug qab txhua yam koj cuam tshuam nrog cov vev xaib sab nraud, hla iOS 'App Tracking Transparency (ATT) feature. Apple ntxiv ATT tshwj xeeb los yuam cov neeg tsim khoom kom tau txais kev pom zoo ntawm tib neeg ua ntej taug qab cov ntaub ntawv tsim los ntawm peb tog.
"Instagram qhov kev ua haujlwm tsis yog qhov xav tsis thoob," Lior Yaari, CEO thiab tus tsim ntawm cybersecurity startup Grip Security, hais rau Lifewire hauv email. "Apple cov kev txwv tsis pub muaj kev hem thawj ntawm lub tuam txhab tus qauv kev lag luam, yog li nws yog ib qho teeb meem ntawm kev hloov [kom] ciaj sia."
Meta tau lees paub tias ATT feature tau raug nqi txog $ 10 nphom hauv ib xyoos hauv cov nyiaj tau los tshaj tawm.
Thaum nws tshawb fawb, Krause pom tias thaum tus neeg siv iOS no ntawm Facebook thiab Instagram apps nyem qhov txuas hauv cov kev sib raug zoo no, lawv tau qhib rau hauv app browser.
Yam tsawg kawg, tib neeg yuav tsum tsis txhob siv cov browsers hauv app nkag mus rau cov ntaub ntawv rhiab lossis tsis pub lwm tus paub.
Nws tau ceeb toom tias kev cai JavaScript code hauv-app browser tso cai rau ob qho tib si apps los taug qab txhua qhov kev cuam tshuam nrog lwm lub vev xaib, suav nrog txhua yam koj ntaus rau hauv lub thawv ntawv xws li passwords thiab chaw nyob.
"Nrog 1 billion tus neeg siv Instagram nquag, cov ntaub ntawv Instagram tuaj yeem sau los ntawm txhaj cov lej taug qab mus rau txhua lub vev xaib thib peb tau qhib los ntawm Instagram & Facebook app yog qhov tsis txaus ntseeg," sau Krause.
Qhov kev tshawb pom tsis ua rau George Gerchow, Tus Thawj Saib Xyuas Kev Ruaj Ntseg thiab Tus Lwm Thawj Coj ntawm IT ntawm Sumo Logic.
Hais lus rau Lifewire dhau email, Gerchow tau hais tias kev sib raug zoo xov xwm muaj qee qhov kev txawj ntse tshaj plaws thiab kev kawm tshuab algorithms hauv ntiaj teb, uas, thaum ua ke nrog lawv txoj kev sim mus ib txhis kom tib neeg nyob hauv lawv lub platform, dhau los ua qhov txaus ntshai tiag tiag.
"Kuv ntseeg siab tias Apple tau paub txog qhov no tab sis tsis xav kom tshaj tawm," hais Gercho, ntxiv, "[Apple's] Safari tsis yog qhov nyab xeeb tshaj plaws ntawm browsers ib yam."
Cia Game Pib
Thaum Krause tsis tuaj yeem tshuaj xyuas tus lej txhawm rau txheeb xyuas nws lub hom phiaj tiag tiag, nws tau qhia tias cov apps tuaj yeem ua haujlwm li cas nyob ib puag ncig ATT txwv. Yaari xav tias qhov no yuav tsum ua rau Apple sawv, ceeb toom, thiab tej zaum txawm siv cov kev txwv ntxiv los txwv kev taug qab los ntawm cov browser hauv app.
"Nws yog qhov pib ntawm miv thiab nas game ob lub tuam txhab yuav ua si, nrog rau qhov tshwm sim muaj kev lag luam loj loj," said Yaari.
Tom Garrubba, Tus Thawj Coj, Tus Thawj Saib Xyuas Kev Nyab Xeeb Thib Peb ntawm Echelon Risk + Cyber , ntseeg tias Apple zoo li tau txhim kho nws cov duab ntawm kev hais txog kev ceev ntiag tug tsis yog hauv kev nkag siab tab sis hauv kev nqis tes los ntawm nws coding thiab xa mus.
"Tej zaum nws yuav raug foob hauv chav kawm, PR tsis zoo, thiab / lossis raug nplua hnyav rau kev ua txhaum cai ntiag tug rau cov neeg tsim daim ntawv thov kom sawv [rau qhov tseeb] tias lawv yuav tsum tau ci 'kev ceev ntiag tug los ntawm kev tsim' rau hauv txhua yam ntawm kev txhim kho code thiab kev pabcuam, "Garrubba hais rau Lifewire dhau email. "Kuv kwv yees qhov tsis ua haujlwm los ntawm kev siv thev naus laus zis loj yuav ua rau qhov no mus rau kev foob lossis kev nplua hnyav tos kom tshwm sim."
Lub sijhawm no, txhawm rau tiv thaiv koj tus kheej ntiag tug, Krause qhia tawm ntawm qhov browser hauv app thiab tsuas yog luam-muab qhov URL qhib rau lwm qhov browser sab nraud.
"Tsawg kawg, tib neeg yuav tsum tsis txhob siv cov browsers hauv app nkag rau cov ntaub ntawv rhiab lossis tsis pub lwm tus paub," qhia Yaari.
Txawm li cas los xij, peb cov kws tshaj lij lees paub tias nws tsis zoo li ntau tus neeg yuav hloov pauv lawv tus cwj pwm vim qhov no tuaj yeem ua rau cov neeg siv khoom tsis yooj yim dua.
"Tsawg kawg, txij li 99.9% ntawm tib neeg raug kev txom nyem los ntawm qhov xav tau 'kev txaus siab tam sim ntawd,' lawv yuav hla cov kauj ruam no thiab qhib nws txoj cai hauv lawv qhov browser ua ntej," Garrubba hais. "Qhov no yog qhov tseeb tias cov thev naus laus zis loj xav tau, thiab lawv feem ntau yuav tau txais cov ntaub ntawv lawv xav tau."