Kama unatumia Apps hizi kwenye kifaa chako cha Android, ziondoe haraka. Ni hatari! | Xamalicious, a new dangerous Android 'copycat app'

Influenza

Influenza

JF-Expert Member
Jul 1, 2018
1,445
3,403
Wakati watumiaji wa Android walipoambiwa kuchungza vifaa vyao kwa programu (Apllications) zenye hatari kubwa ya kuwa na Wadudu (Malware) wa "SpyLoan" wasio salama, tishio jipya lilijitokeza kwa jina la "Xamalicious," mlango wa nyuma uligundulika hivi karibuni katika programu kadhaa kwenye Google Play Store. Ripoti ya McAfee inasema Trojans za Android/Xamalicious zinajifanya kuwa programu za afya, michezo, horoscope, na uzalishaji (Productivity Apps). Ingawa Google imeondoa programu hizi kutoka kwenye Play Store, McAfee inaonya kwamba nyingi bado zinapatikana kupitia majukwaa mengine (third-party).

1.jpeg

Programu hizi hutumia mbinu za udanganyifu kuwalazimisha watumiaji kutoa ruhusa za ufikiaji, na kuruhusu udhibiti wa kifaa kwenye vitu vinavyozuiwa. Hili ni jambo linalopaswa kuhofia zaidi miongoni mwa onyo lililotolewa katika ripoti hiyo.

Kuhusu Xamalicious, hapa chini ni programu za Google Play Store ambazo unapaswa kuziondoa mara moja—kumbuka, kuondolewa kwa programu na Google kutoka kwenye Play Store haimaanishi kuwa imetolewa kwenye kifaa chako. Ingawa idadi ya ku-download inabaki kwa mamia elfu badala ya mamilioni, hatari inaongezeka kwa wale wanao-download kwenye majukwaa mengine (third party).

Xamalicious Apps:
  • Essential Horoscope for Android
  • 3D Skin Editor for PE Minecraft
  • Logo Maker Pro
  • Auto Click Repeater
  • Count Easy Calorie Calculator
  • Sound Volume Extender
  • LetterLink
  • Numerology: Personal Horoscope & Number Predictions
  • Step Keeper: Easy Pedometer
  • Track Your Sleep
  • Sound Volume Booster
  • Astrological Navigator: Daily Horoscope & Tarot
  • Universal Calculator
Xamalicious inachukua njia ya moja kwa moja kupata ruhusa, ambayo kisha hutumia kuanzisha mawasiliano na seva yake ya amri na udhibiti. Mara baada ya kuwa-installed, Xamalicious hutoa taarifa zote muhimu za kifaa, ikiwa ni pamoja na maelezo ya vifaa, maelezo ya mfumo wa uendeshaji, programu (App) zilizokuwa downloaded, data ya eneo, na hali ya mtandao. Mambo hayo huwezesha Xamalicious kutathmini uwezekano wa mashambulizi kufanikiwa. Baadaye, hupokea maagizo ya kupakua na kusakinisha codes zenye nia mbaya, ikiruhusu kudhibiti kifaa au kutekeleza shughuli za nyuma ya pazia.

Kama Google inavyowaonya watumiaji wa Android, "programu zenye madhara zinaweza kuomba mabadiliko ya settings ambayo inaweza kuhatarisha kifaa au data yako. Baadhi ya settings ya kifaa inaweza kuzuiwa wakati wa ku-install programu ili kuzuia kutokana na vitisho kama hivyo. Settings hizi zilizozuiwa haziwezi kubadilishwa hadi utoe idhini."

Suluhisho hapa ni la moja kwa moja — kamwe usiruhusu ruhusa kama hizo kwa programu (App) YOYOTE isipokuwa inatokea kwenye chanzo kinachojulikana kama Apple, Google, au Microsoft na kama kweli inahitaji kutoa halali huo, ukizingatia uwezo wako mdogo wa kuzuia au uwezo wa kudhibiti madhara wakati wa kutumia programu hiyo.
******

As Android users were urged to inspect their devices for the perilous "SpyLoan" malware-infected apps, a new threat emerged as "Xamalicious," a backdoor recently found in several apps on Google's Play Store. McAfee reports that Android/Xamalicious trojans are masquerading as health, gaming, horoscope, and productivity apps. Although Google has removed these apps from its store, McAfee cautions that many are still accessible via third-party platforms.

These apps employ deceptive tactics to coerce users into granting accessibility privileges, allowing them to control device functions typically restricted. This aspect warrants the highest concern among the warnings issued in the report.

Regarding Xamalicious, below are the Play Store apps you should promptly remove—remember, Google's removal of an app from its store does not eliminate it from your device. While the number of downloads remains hundreds of thousands rather than millions, the risk is amplified for those who venture onto third-party platforms.

Xamalicious Apps:
  • Essential Horoscope for Android
  • 3D Skin Editor for PE Minecraft
  • Logo Maker Pro
  • Auto Click Repeater
  • Count Easy Calorie Calculator
  • Sound Volume Extender
  • LetterLink
  • Numerology: Personal Horoscope & Number Predictions
  • Step Keeper: Easy Pedometer
  • Track Your Sleep
  • Sound Volume Booster
  • Astrological Navigator: Daily Horoscope & Tarot
  • Universal Calculator
Xamalicious adopts a straightforward method to obtain privileges, which it then leverages to establish communication with its command-and-control server. Once installed, Xamalicious transmits all necessary device information, including hardware specifications, operating system details, installed applications, location data, and network status. This data allows the malware to assess the likelihood of a successful attack. Subsequently, it receives instructions to download and install malicious code, enabling it to assume device control or execute background operations.

As Google cautions Android users, "harmful apps may request changes to settings that jeopardize your device or data. Certain device settings may be restricted upon app installation to shield you from such threats. These restricted settings cannot be altered unless you grant permission."

The solution here is straightforward—never grant such privileges to ANY app unless it originates from a reputable source like Apple, Google, or Microsoft and genuinely requires such access for legitimate reasons, considering your limited mobility or sensory capabilities while using the app
 
Google wenyewe ndio wadukuzi nambari wani. Wawaache wenzao nao wajichotee taarifa wanazotaka
 
You must log in or register to reply here.

Similar Discussions

Back
Top Bottom
Forums
New posts
Post thread
Back