Mu vumbulutso lokhudza chitetezo, ofufuza zachitetezo avumbulutsa makina apamwamba kwambiri olowera kumbuyo kwa macOS otchedwa RustDoor, omwe amadziwikanso kuti Trojan.MAC.RustDoor. Ikugwira ntchito kuyambira Novembara 2023, pulogalamu yoyipayi, yomwe idapezedwa ndi Bitdefender, imadzibisa ngati Microsoft Visual Studio update, kuyika chiwopsezo chachikulu kwa ogwiritsa ntchito pamapangidwe a Intel ndi Arm. Nkhaniyi ikufotokoza zovuta za RustDoor, ndikuwunika zochita zake, zotsatira zake, komanso kulumikizana kwake koyipa ndi magulu odziwika bwino a ransomware.
Kuyang'ana mu RustDoor macOS Backdoo aka Trojan.MAC.RustDoorr
Njira yofalitsira ya RustDoor imakhalabe yovuta, pomwe zopeza zoyambira zikuwonetsa kuti imafalikira kudzera pamabina a FAT okhala ndi mafayilo a Mach-O. Chomwe chikukulitsa nkhawa ndikuzindikira mitundu ingapo ya pulogalamu yaumbanda, zomwe zikuwonetsa zomwe zikuchitika. Kuyambira pa Novembara 2, 2023, zitsanzo zoyambirira zodziwika bwino zikuwonetsa kuopsa kopitilira muyeso.
Wokhala ndi malamulo osiyanasiyana, RustDoor imapatsa mphamvu owopseza kuti atulutse zidziwitso zodziwika bwino, kutsitsa mafayilo, ndikupeza zambiri zamakina omwe asokonezedwa. Kubwereza kwina kwa pulogalamu yaumbanda kumakhala ndi masinthidwe omwe mungasinthidwe, kufotokozera zomwe mungasonkhanitse, mafayilo owonjezera omwe akuwonjezedwa, mayendedwe owunikidwa, ndi maulozera osaphatikizidwa. Zomwe zabedwazo zimatumizidwa ku seva ya command-and-control (C2), kutanthauza kuti pali ntchito yogwirizana ya cybercriminal.
Mitundu Yambiri ya RustDoor Ikupezeka
Kumbuyo uku kumawonetsa kubwereza kosiyanasiyana, kugawana magwiridwe antchito ofanana ndi kusiyanasiyana pang'ono. Zalembedwa mkati dzimbiri, kachidindo kochokera kumawulula mayina afayilo apachiyambi pa kusanthula kwa binary. Mafotokozedwe apadera a Rust amabweretsa zovuta kwa ofufuza zachitetezo, zomwe zimapereka mwayi kwa olemba pulogalamu yaumbanda kuti apewe kuzindikira ndikuwunika mozama.
Bitdefender ikuwonetsa kugwirizana komwe kungathe pakati pa RustDoor ndi mabanja odziwika bwino a chiwombolo monga Black Basta ndi BlackCat, kutchula kufanana kwa zomangamanga za C2. Zotsirizirazi, zolembedwa ku Rust, zidadziwika bwino chifukwa chochita upainiya wabizinesi yomwe ikudumphira pagulu isanathedwe ndi boma la US mu Disembala 2023. Wofufuza zachitetezo Andrei Lapusneau akugogomezera zakusintha kwa ziwopsezo za chiwombolo, ndikugogomezera kufunika kokhala tcheru komanso njira zolimba zachitetezo cha pa intaneti pakati pawo. ogwiritsa macOS.
Zotsatira zake ndi Zowopsa Zamtsogolo
Kupezeka kwa RustDoor kumatsimikizira njira zomwe zikusintha zomwe zimagwiritsidwa ntchito ndi zigawenga zapaintaneti, makamaka zomwe zimalumikizidwa ndi ma ransomware. Kuthekera kwa kuba kwa data ndi kusokoneza dongosolo kumafunikira njira yokhazikika kuchokera kwa ogwiritsa ntchito ndi mabungwe omwe. Kumvetsetsa zomwe zingachitike ndikutsata njira zotetezedwa ndizofunikira kwambiri kuti muchepetse ziwopsezo zomwe zimakhudzidwa ndi zoopsa zotere.
Njira Zabwino Kwambiri Zopewera Matenda Amtsogolo
- Zosintha Zanthawi Zonse: Sungani makina anu ogwiritsira ntchito ndi mapulogalamu amakono kuti muchepetse zofooka mwachangu.
- Maphunziro Ogwiritsa Ntchito: Phunzitsani ogwiritsa ntchito za ziwopsezo zachinyengo komanso kufunika kopewa kutsitsa kokayikitsa.
- Network Monitoring: Khazikitsani zowunikira mwamphamvu pamaneti kuti muwone ndikuletsa zochitika zoyipa.
- Kusanthula Makhalidwe: Gwiritsani ntchito njira zachitetezo zomwe zimagwiritsa ntchito kusanthula kwamakhalidwe kuti muzindikire zochitika zachilendo.
- Kukonzekera Mayankho a Zochitika: Konzani ndikukonzekera dongosolo loyankhira zochitika kuti muchepetse zovuta zomwe zingachitike.
Kutsiliza
Zomwe a RustDoor adapeza ndi chikumbutso chodziwika bwino cha momwe ziwopsezo zapa cybersecurity zikuchulukira. Chidziwitso chowonjezereka, kukhala tcheru mosalekeza, ndi kukhazikitsidwa kwa njira zotetezera ndizofunikira kuti muyang'ane mawonekedwe odabwitsa a zitseko zakumbuyo zapamwamba ndi malumikizidwe awo ransomware machitidwe.