Apple Vision Pro Vulnerability Yavumbulutsidwa, 23andMe Ivomereza Kukhazikika Kwa $ 30 Miliyoni Pakuphwanya Kwa Data: Cybersecurity Roundup

Zithunzi za Cybersecurity zozungulira zomwe zili ndi Apple ndi 23andMe.

Apple Vision Pro Vulnerability Yavumbulutsidwa Zazinsinsi Zaogwiritsa

Chiwopsezo chachikulu pamutu wa Apple Vision Pro chikadalola owukirawo kuti asamavutike mudziwe posanthula mayendedwe a maso a ogwiritsa ntchito. Cholakwikacho, chomwe chimadziwika kuti GAZEploit, chidagwiritsidwa ntchito ndi ofufuza kuti apangenso zolemba zomwe zidalowetsedwa kudzera m'matayipi oyendetsedwa ndi maso.

Apple yathetsa vutoli mu visionOS 1.3, koma kusatetezeka kukuwonetsa zoopsa zomwe zingayambitse ukadaulo womwe ukubwera komanso kufunikira kwachitetezo champhamvu.

Ofufuzawo adawonetsa momwe wowukira angajambulire ndikusanthula makanema apa avatar kuti awononge makiyi akutali, zomwe zitha kusokoneza zinsinsi za ogwiritsa ntchito. Izi zitha kugwiritsidwa ntchito kuchotsa zinsinsi ngati mawu achinsinsi kapena zinsinsi zina.

Ngakhale Apple yachepetsa chiopsezochi, mabungwe ndi anthu omwe amagwiritsa ntchito mutu wa Vision Pro akuyenera kukhala tcheru ndikuwonetsetsa kuti ali ndi zosintha zaposachedwa kwambiri zomwe zayikidwa kuti ateteze ku zoopsa zomwe zingachitike.

23andMe Ivomereza Kuthetsa $30 Miliyoni Pakuphwanya Kwa Data

Chimphona choyesa DNA 23andMe chavomera kulipira ndalama zokwana $30 miliyoni kuti athetse mlandu womwe umachokera ku deta wakuswa zomwe zimavumbula zambiri zamakasitomala mamiliyoni ambiri.

Kuphwanya, komwe kunachitika mu 2023, kudakhudza kubera kuti azitha kupeza maakaunti amakasitomala pogwiritsa ntchito ziwopsezo zachinyengo. 23andMe yavomereza kuti zidziwitso za anthu 6.4 miliyoni okhala ku US zidasokonekera panthawiyi.

Monga gawo lachimaliziro, 23andMe ikhazikitsa njira zowonjezera chitetezo kuti zipewe kuphwanya mtsogolo komanso kupereka ndalama kwa makasitomala omwe akhudzidwa. Kampaniyo iyeneranso kuyendera pafupipafupi cybersecurity kufufuza ndi kukonza mapulogalamu ake ophunzitsira antchito.

Kukhazikikaku kukuwonetsa kufunikira kwa machitidwe amphamvu achitetezo a data kwamakampani omwe amatenga zidziwitso zachinsinsi.

Zida Zopitilira Miliyoni 1 za Android Zomwe Zili ndi Vo1d Malware

Zida zopitilira 1.3 miliyoni zochokera ku Android zakhala zikukhudzidwa ndi kampeni yayikulu yaumbanda, malinga ndi ofufuza a cybersecurity. Pulogalamu yaumbanda, yotchedwa Vo1d, imapatsa owukira mphamvu zonse pazida zomwe zili ndi kachilombo, kuyika pachiwopsezo chachinsinsi komanso chitetezo cha ogwiritsa ntchito.

Kampeniyi imayang'ana mabokosi otsika mtengo a TV omwe ali ndi mitundu yakale ya Android Open Source Project (AOSP). Ena mwa mayiko omwe akhudzidwa kwambiri ndi Brazil, Morocco, Pakistan, Saudi Arabia, ndi Russia. Pulogalamu yaumbanda ikakhudza chipangizocho, imasintha mafayilo ofunikira, ndikuwonetsetsa kulimbikira kwake ndikuyambitsa zokha pa boot. Zobisika m'mafayilo "wd" ndi "vo1d," pulogalamu yaumbanda imagwiritsa ntchito chigawo chimodzi kuwongolera china, kutsitsa zomwe zingachitike mukalangizidwa ndi seva yolamulira ndikuyang'anira maulalo ena kuti muyike mafayilo a APK omwe adapezeka.

Ofufuza a Dr.Web akuwonetsa kuti kusatetezeka kwa pulogalamu kwakanthawi kumatha kugwiritsidwa ntchito ndi Vo1d kuti apeze mwayi pazida zomwe zakhudzidwa. Kuphatikiza apo, mitundu ya firmware yosavomerezeka yokhala ndi mizu yoyikiratu imatha kukhala ngati vector ina yomwe ingayambitse matenda.

Kuti muchepetse chiwopsezochi, tikulimbikitsidwa kuti ogwiritsa ntchito asunge pulogalamu yawo yosinthira zida zamakono, kulumikiza zida pa intaneti ngati akukayikira kuti akugwiritsa ntchito kutali, ndikupewa kuyika mafayilo a APK kuchokera kwa anthu ena osadalirika. Makamaka, Google yafotokoza kuti zida zomwe zakhudzidwa ndi pulogalamu yaumbanda ya Vo1d sizimayendetsa Android TV koma m'malo mwake zimagwiritsa ntchito nsanja ya AOSP, yomwe ilibe satifiketi ya Play Protect - pulogalamu yachitetezo ya Google yomwe imatsimikizira chitetezo ndi mtundu wa zida.