Hacker News

I-7zip.com ibonelela ngeMalware

I-7zip.com ibonelela ngeMalware Olu hlahlelo lubanzi lwe-7zip lubonelela ngovavanyo oluneenkcukacha lwamacandelo ayo aphambili kunye neziphumo ezibanzi. Imiba ePhambili yokuGxininisa Ingxoxo igxile koku: Iindlela eziphambili kunye neenkqubo ...

6 min read Via www.malwarebytes.com

Mewayz Team

Editorial Team

Hacker News

7zip.com inceda ngokusebenzayo i-malware kubasebenzisi abangalindelanga abachwetheza gwenxa i-7-Zip esemthethweni yokukhuphela i-URL. Ukuba wena okanye nabani na kumbutho wakho usandul’ ukundwendwela i-7zip.com ejonga into eluncedo yocinezelo lwefayile, iisistim zakho zisenokuphazamiseka kwaye kufuneka inyathelo elikhawulezileyo.

Yintoni Kanye Kanye eyenzekayo kwi-7zip.com?

I-software ye-7-Zip esemthethweni — enye yezona zixhobo zisetyenziswa kakhulu ezivulelekileyo zokugcina iifayili kwihlabathi — isasazwa ngokusemthethweni nge7-zip.org, hayi i-7zip.com. Abaphandi be-Cybersecurity baqinisekisile ukuba i-7zip.com yi-typosquatting domain, indawo enobungozi eyenzelwe ukubamba abasebenzisi abalahla i-hyphen xa bebhala i-URL yokwenyani.

Xa iindwendwe zifika ku-7zip.com, zinikwa umfanekiso oqinisekileyo wewebhusayithi ye-7-Zip esemthethweni. Iphepha lilinganisa uyilo loqobo, uphawu, kunye namaqhosha okukhuphela ngokuchaneka okothusayo. Nangona kunjalo, iifayile ezisasazwayo ukusuka kwesi sizinda ayisiso isifakeli se-7-Zip sokwenyani - zizinto eziphunyeziweyo ezihlanganiswe ne-malware ehlawulwayo equka ulwazi-ababiwayo, iitrojans zokufikelela kude (RATs), kunye nesoftware yokuvuna.

Uhlaselo luyingozi kakhulu kuba lusebenzisa ukuthembela komsebenzisi kwi-software eyaziwayo, ethembekileyo. Uninzi lwabasebenzisi alunakuba nasizathu sokujongisisa i-URL xa bekhuphela isoftwe abayisebenzisileyo ngokukhuselekileyo iminyaka.

Lusebenza Njani Olu hlaselo lweMalware?

Indlela yobugcisa esemva kohlaselo lwe-7zip.com ilandela incwadi yokudlala ebhalwe kakuhle, kodwa enemigangatho emininzi ephucukileyo eyenza ukuba isebenze ngokukodwa:

  1. Ubhaliso lweDomain: Abahlaseli babhalisa 7zip.com — ukupela kakubi okuqhelekileyo kwe-7-zip.org esemthethweni — kwaye bakhe i-pixel-perfect clone yesiza soqobo.
  2. SEO poisoning: I-domain enobungozi ilungiselelwe ukurenkishwa kwiziphumo zophendlo lwemibuzo efana ne "khuphela i-7zip" okanye "ukhuphelo lwasimahla lwe-7zip," inyusa i-organic traffic esuka kwi-injini zophendlo.
  3. Unikezelo lwesifakeli seTrojanized: Ukucofa naliphi na iqhosha lokukhuphela kwisiza kuzisa into ephunyeziweyo equlathe zombini isifakeli sokwenyani se-7-Zip (ukunqanda ukurhaneleka) kunye nezixhobo ezifihlakeleyo zemalware.
  4. Ukwenziwa komthwalo othe cwaka: Nje ukuba iqhutywe, i-malware iseka ukuzingisa kwisistim, ihlala iqhuba iinkqubo zangasemva ezikhupha amagama ayimfihlo agciniweyo, i-browser ye-browser, i-cryptocurrency wallet data, kunye neziqinisekiso zenkampani.
  5. Umyalelo nolawulo lonxibelelwano: Iifowuni ze-malware ekhaya kwiiseva ezilawulwa ngabahlaseli, ezivumela ukufikelela kude koomatshini abosulelekileyo ixesha elide emva kokuthotyelwa kokuqala.

    6. Le ndlela yokujongana nezigaba ezininzi ithetha ukuba nabasebenzisi abaqaphela into engaqhelekanga emva kofakelo banokungazi ukuba ucango olungemva lusekiwe kwinkqubo yabo.

    Ngubani Oyena Usemngciphekweni we-7zip.com kwiPhulo loMalware?

    Ngelixa nawuphi na umsebenzisi esemngciphekweni, isoyikiso sibukhali kakhulu kumashishini kunye nemibutho. Abalawuli benkqubo, abaphuhlisi, kunye neengcali ze-IT zihlala zikhuphela izinto eziluncedo ezifana ne-7-Zip koomatshini bomsebenzi, iiseva, kunye neemeko ekwabelwana ngazo. Indawo enye eyosulelekileyo ngaphakathi kuthungelwano lwenkampani inokusebenza njengentloko yolwandle yentshukumo esecaleni, ukusasazwa kweransomware, okanye ukukhutshwa kwedatha okuchaphazela umbutho uphela.

    "Typosquatting attack kwi-software ethembekileyo domains imele enye yezona zigrogrisi ezingacingelwanga kukhuseleko lweshishini. I-URL enye engachwethezwanga kakuhle inokonakalisa uthungelwano lombutho uphela kwiiyure nje."

    Amashishini amancinci kunye nabaqalayo basemngciphekweni kakhulu kuba bahlala beswele amaqela okhuseleko azinikeleyo okubeka iliso kwizalathi zokulala. Abasebenza ngokuzimeleyo, abasebenzi abakude, kunye nabani na olawula izixhobo ezininzi koomatshini abaninzi - ngokuchanekileyo uhlobo lwabasebenzisi abagxile kwimveliso abaxhomekeke kwizinto eziluncedo ezifana ne-7-Zip yonke imihla - ubuso obuphezulu bokuvezwa.

    💡 DID YOU KNOW?

    Mewayz replaces 8+ business tools in one platform

    CRM · Invoicing · HR · Projects · Booking · eCommerce · POS · Analytics. Free forever plan available.

    Start Free →

    Ungalikhusela njani ishishini lakho kwiTyposquatting Malware?

    Ukukhuselwa kuhlaselo olufana nephulo le-7zip.com lifuna indibaniselwano yolawulo lobugcisa kunye nokwazisa kwabantu. La manyathelo alandelayo anciphisa kakhulu ukubonakala kombutho wakho:

    • Soloko uqinisekisa ii-URLs phambi kokukhuphela isoftwe. Bookmark imithombo esemthethweni. I-7-Zip yokwenyani ifumaneka kwa-7-zip.org kuphela.
    • Sebenzisa izisombululo zokucoca i-DNS ezivala iindawo ezinobungozi ezaziwayo kwinqanaba lenethiwekhi ngaphambi kokuba abasebenzisi balayishe iphepha.
    • Vula izixhobo zokubona kunye nempendulo ye-endpoint (EDR) ezinokubonisa ukuziphatha kwenkqubo engaqhelekanga okubangelwa ngabafaki betrojanized.
    • Ukuqhuba uqeqesho lokwazisa ngokhuseleko rhoqo ukuze ilungu ngalinye leqela liqonde umngcipheko wokuchwetheza kwaye liyazi indlela yokuqinisekisa imithombo yokukhuphela.
    • Uphicotho lwesoftware esanda kufakwa kuzo zonke iindawo zokuphela. Ukuba kukho nabani na kwiqela lakho okhe wandwendwela i-7zip.com, baphathe abo matshini njengabanokuchaphazeleka kwaye uqalise iinkqubo zokuphendula izehlo ngoko nangoko.

    Ngaphaya kwemilinganiselo esebenzayo, ukwakha inkcubeko yokhuseleko-yokuqala ukucinga kuwo wonke umbutho wakho lolona khuselo luhlala luhleli ngokuchasene nobunjineli basekuhlaleni kunye nohlaselo lwe-spoofing lwesizinda.

    Kufuneka wenze ntoni xa undwendwela i-7zip.com?

    Ukuba ukrokrela ukuba ukhuphele isoftwe kwi-7zip.com, yenza inyathelo ngoko nangoko. Nqamula umatshini ochaphazelekayo kumsebenzi womnatha wakho ukunqanda ukusasazeka kwecala. Yenza iskena esipheleleyo usebenzisa i-antivirus ethembekileyo kunye nesixhobo esichasene ne-malware. Guqula zonke iiphasiwedi ezigcinwe kwiziphequluli kumatshini ochaphazelekayo - beka phambili iibhanki, i-imeyile, kunye neeakhawunti zeshishini. Hlaziya iziqinisekiso ezigciniweyo zesikhangeli sakho kwaye wenze uqinisekiso lwezinto ezininzi kuzo zonke iiakhawunti ezibalulekileyo. Xela isiganeko kwi-IT yakho okanye iqela lokhuseleko kwaye ucinge ngokubandakanya inkonzo yempendulo yezehlo ukuba ngaba idata yeshishini enovakalelo ifunyenwe.

    Sukucinga ukuba ukukhupha ifayile ekhutshelweyo kusombulula ingxaki. Iintlawulo ezininzi ze-malware ziseka iindlela ezizingisileyo ezisinda ekususweni kwesoftware kunye nokuqalisa inkqubo.

    Imibuzo Ebuzwa Rhoqo

    Ngaba i-7-Zip ngokwayo iyinkqubo eyingozi?

    Hayi. Isoftware ye-7-Zip esemthethweni, efumaneka kwi-7-zip.org, yifayile ethembekileyo, evulekileyo yefayile enembali ende yokusetyenziswa ngokukhuselekileyo. Ingozi ilele ngokupheleleyo kwindawo yomgunyathi e-7zip.com, ehambisa iinguqulelo zomgunyathi zesifakeli esine-malware. Soloko ukhuphela i-7-Zip ngokukodwa kwi-domain esemthethweni edityanisiweyo: 7-zip.org.

    Ndazi njani ukuba i-malware evela ku-7zip.com isasebenza kwinkqubo yam?

    Imiqondiso eqhelekileyo iquka i-CPU engaqhelekanga okanye umsebenzi wothungelwano, iinkqubo ezintsha ezingaqhelekanga ezisebenza kuMphathi woMsebenzi, ukucotha kwebrawuza, ukuvalwa kweakhawunti okungalindelekanga, okanye izilumkiso ezisuka kwisoftware yakho yokulwa nentsholongwane. Nangona kunjalo, abaninzi ababiwayo bolwazi banamhlanje basebenza ngokuzolileyo. Ukuba ukhuphele kwi-7zip.com, phatha umatshini njengosengozini ngaphandle kweempawu ezibonakalayo kwaye wenze iscan epheleleyo.

    Ngaba ukusebenzisa iqonga lolawulo lweshishini kunokunceda ukunciphisa olu hlobo lomngcipheko wokhuseleko?

    Ewe. Amaqonga asebenza kumashishini aphakathi alawula ukuthengwa kwesoftware, ulawulo lofikelelo lwabasebenzi, kunye nomgangatho wokuhamba komsebenzi kunciphisa ukubakho kwabasebenzi abafumana izixhobo kwiindawo ezingavavanywanga zeqela lesithathu. Xa ukhuphelo lwesoftware kunye nolwamkelo kulawulwa yinkqubo esembindini enemigaqo-nkqubo yokhuseleko eyakhelwe-ngaphakathi, indawo yokuhlaselwa kwamaphulo okuchwetheza iyancipha kakhulu.

    Ukukhusela ishishini lakho kwizoyikiso ezifana nephulo le-malware ye-7zip.com kufuna izixhobo ezifanelekileyo, uqeqesho oluchanekileyo, kunye nesiseko esifanelekileyo sokusebenza. Mewayzinika iqela lakho inkqubo yokusebenza yeshishini elimanyeneyo, elikhuselekileyo - iimodyuli ezihlanganisiweyo ezingama-207 ezigubungela yonke into ukusuka kulawulo lweqela ukuya kwi-automation ye-workflow - ukuze uchithe ixesha elincinci lokuchwetheza ubuthathaka kunye nokwakha ixesha elininzi. Ngaphezulu kwe-138,000 yabasebenzisi bayayithemba iMewayz ukuba iqhube imisebenzi yabo ngokufanelekileyo nangokhuseleko.

    Qalisa uhambo lwakho lwe-Mewayz namhlanje e-app.mewayz.com — izicwangciso ziqala nje kwi-$19/ngenyanga.