Apple bɛ iOS san tan kɔrɔlenw patch zeru-day, n’a sɔrɔla a bɛ baara kɛ ni jagokɛla ka spyware ye

Apple ye lakanasɛbɛn kɔrɔtɔlen dɔ bɔ min bɛ iOS zeru-don gɛlɛya jugu dɔ ɲɛnabɔ, lakana ɲininikɛlaw dalen b’a la ko a bɛ san tan ɲɔgɔn bɔ, wa a bɛ se ka kɛ ko a kɛra marifa ye kosɛbɛ jagokɛlaw fɛ. Nin fili in, n’a bɛ sɛgɛsɛgɛ sisan iOS, iPadOS ani macOS kɔnɔ, o bɛ mobili lakanani ko nafama dɔ jira kɔsa in na hakili la, min bɛ ɲininkali kɔrɔtɔlenw lawuli minɛnw lakanani kan mɔgɔ kelen-kelen bɛɛ ni jagokɛlaw bɛɛ bolo.

iOS Zero-Day Vulnerability Apple tun ye mun tigitigi kɛ ka patɔrɔn dɔrɔn ?

O gɛlɛya in, min tugura CVE taamasiyɛn kura dɔ kɔnɔ, o tun sigilen bɛ iOS ka CoreAudio ni WebKit yɔrɔw kɔnɔ kosɛbɛ — binkanni yɔrɔ fila minnu tun ka di tariku kɔnɔ bagabagalikɛla ŋanaw fɛ. Lakanali sɛgɛsɛgɛlikɛlaw minnu bɛ Citizen Lab ani Kaspersky ka diɲɛ ɲinini ni sɛgɛsɛgɛli jɛkulu (GReAT) la, olu ye cakɛda sikɛlenw jira minnu bɛ baara kɛ ni fɛnw ye minnu bɛ bɛn jagokɛla ka sɛgɛsɛgɛlikɛlan dɔntaw ma, k’a jira ko n’a sɔrɔla o fili in bilala senkan kunnafonidilaw, walekɛlaw, politikitɔnw ani jago ɲɛmɔgɔw kan.

Min bɛ nin sɔrɔli in kɛ kɛrɛnkɛrɛnnenya la, o ye waatibolodacogo ye. Forensic sɛgɛsɛgɛli b’a jira ko nin buguri min bɛ o kɔnɔ, o donna iOS codebase kɔnɔ san 2016 lamini na, o kɔrɔ ye ko a bɛ se ka kɛ ko a tora a makun na porogaramu kura kɛmɛ caman kɔnɔ, minɛnw bɔnsɔn, ani minɛn miliyari caman baara la. Apple y’a jira a ka lakana ladilikan kɔnɔ ko a “bɛ kunnafoni dɔ dɔn min b’a jira ko nin ko in bɛ se ka kɛ nafa ye kosɛbɛ,” kan min bɛ a ka baarakɛda bolo, o dɔrɔn de bɛ kɛ fɛnw ye minnu bɛ se ka kɛ ni nafabɔ daliluw ye minnu sɛgɛsɛgɛra walima minnu bɛ se ka da u kan kosɛbɛ.

jagokɛlaw ka sɛgɛsɛgɛlikɛlanw bɛ iOS zeru-donw nafa cogo di i n' a fɔ nin ?

Jagokɛlaw ka sɛgɛsɛgɛlikɛlanw — tɔn minnu bɛ i n’a fɔ NSO Group (Pegasus dilannikɛlaw), Intellexa (Predator), ani dɔwɛrɛ minnu bɛ baara kɛ sariya siratigɛ la yɔrɔ grisw kɔnɔ — olu ye jagokɛyɔrɔw jɔ minnu bɛ nafa caman lase nin danfara sugu in tigitigi lamini na. U ka baarakɛcogo misali bɛ bɔ zeru-kliki walima digi kelen-kelen-ko-fɛɛrɛw la minnu bɛ minɛn dɔ tiɲɛ u makun na k’a sɔrɔ laɲini ma wale sikɛlen si kɛ.

banakisɛ cakɛda min bɛ nin nafabɔ suguya in na, a ka c' a la, o bɛ tugu cogo la min bɛ se ka fɔ ka ɲɛ :

• Fɔlɔ doncogo vektɔri : iMessage, SMS, walima navigatɛri juguman dɔ bɛ o gɛlɛya in daminɛ k’a sɔrɔ baarakɛlaw ka jɛɲɔgɔnya si ma kɛ.
• Nafa camanba : sɛgɛsɛgɛlikɛlan bɛ nafa filanan dɔ kɛ kernel-level flaw la walasa ka root sɔrɔli sɔrɔ , ka iOS ka sandbox lakananiw tɛmɛn pewu .
• Persistence and data exfiltration: Once elevated, the implant harvests messages, emails, call logs, location data, microphone audio, and camera feeds in real time.
• Sonyali fɛɛrɛw : sɛgɛsɛgɛlikɛlan kɔrɔlenw b' a yɛrɛ dogo kosɛbɛ minɛnw sɛbɛnw na, batiri baarakɛcogo sɛbɛnw na, ani mɔgɔ sabananw ka lakana sɛgɛsɛgɛliw la.
• cikan ni kɔrɔsili kumaɲɔgɔnya : Kunnafoni bɛ bila sira kan ni fɛnsɔrɔsiraw ye minnu tɔgɔ ma fɔ , tuma caman na , u bɛ sankaba baarakɛlaw ka taama sariyalenw ladege walasa ka u yɛrɛ tanga ɛntɛrinɛti kɔlɔsili ma .

Jagokɛlaw ka spyware sugu — min jate bɛ se miliyari 12 ni kɔ ma sisan diɲɛ kɔnɔ — bɛ yiriwa bawo o baarakɛminɛn ninnu bɛ sariya siratigɛ la u bɔyɔrɔ jamanaw na, wa u bɛ feere gɔfɛrɛnamanw ma i n’a fɔ sariya siratigɛ la, mɔgɔw minɛyɔrɔw Tiɲɛ ye ko tɔɲɔli ko minnu sɛbɛnnen don, olu bɛ to ka bilali jira laɲiniw kan minnu tɛ bagabagali lakika ye.

Jɔn de bɛ faratiba la nin iOS ka bɔnɛ suguya in na ?

k'a sɔrɔ Apple ka patɔrɔn bɛ sɔrɔ sisan baarakɛlaw bɛɛ bolo , farati jatebɔ bɛ danfaraba la ka da i ka kunnafoni kan . Laɲini minnu nafa ka bon — i n’a fɔ C-suite ɲɛmɔgɔw, sariyatigiw, kunnafonidilaw minnu bɛ bugɔli sensitifw ɲɛfɔ, ani mɔgɔ o mɔgɔ sen bɛ jɛkafɔw la, ka fɛnw sɔrɔ, walima ka kumaɲɔgɔnya sɛgɛsɛgɛlenw kɛ — olu de bɛ ɲɔgɔn sɔrɔ kosɛbɛ jagokɛlaw ka sɛgɛsɛgɛlikɛlanw bolo minnu bɛ se ka tile zeru sɔrɔ sara sɔrɔ, a fɔra ko a bɛ daminɛ miliyɔn kelen na ka se miliyɔn 8 ma, nafabɔ cakɛda kelen-kelen bɛɛ la.

ye

"Tile zeru min bɛ balo san tan kɔnɔ kungo kɔnɔ, o tɛ yiriwali dɛsɛ ye — o ye hakililata ye. Sannikɛla ɲuman y'a sɔrɔ waati min na, a bɛ kɛ marifa ye min jatebɔlan nafama tɛ fo ka se a jirali ma."(p> — Bagabagali kunnafonidilaw ɲɛmɔgɔba, Kaspersky GReAT

Jagokɛlaw fɛ, a nɔfɛkow bɛ tɛmɛ minɛn kelen-kelen bɛɛ ka bɛnkan kan. Minɛn kelen min bananen don jɛkulu kɔnɔ, o bɛ se ka kiliyanw ka kumaɲɔgɔnyaw, wariko jateminɛw, fɛn dilannenw siraw, ani baarakɛlaw kɔnɔna kunnafoniw bɔ kɛnɛ kan. O sariya tiɲɛni suguw nɔfɛkow tɔgɔladonni ni sariya siratigɛ la — kɛrɛnkɛrɛnnenya la GDPR, CCPA, ani seko ni dɔnko siratigɛ la, sariya labatoli siratigɛ la — o bɛ se ka tɛmɛ kosɛbɛ ko kɛlen yɛrɛ musaka tilennen kan.

jagokɛlaw ni mɔgɔ kelen-kelenw ka kan ka mun kɛ sisan yɛrɛ walasa k' u yɛrɛ tanga ?

Tɔni fɔlɔfɔlɔko ye tilennen ye : Apple ka minɛn bɛɛ kura ye ka kɛɲɛ ni a bɔcogo kura ye min bɛ sɔrɔ. Apple ka patch cadence for zero-days (zero-days) ka teli ka teliya ni fili dɔ Sɛmɛntiyalen don, nka finɛtiri min bɛ exploitation ni patching cɛ, o ye tiɲɛni bɛ kɛ yɔrɔ min na tigitigi. O yɔrɔnin bɛɛ patɔrɔn kɔfɛ, lakana jɔyɔrɔ layɛrɛlen nafa ka bon :

Lockdown Mode daminɛ iOS 16 kan ani o kɔfɛ ni e walima i ka jɛkulu kɔnɔmɔgɔw bɛ faratiba kuluw kɔnɔ. Nin fɛɛrɛ in bɛ binkanni yɔrɔw dantigɛ ni laɲini ye ni jɛgɛnsira ɲɛjiraliw, cikan gɛlɛnw nɔrɔlenw, ani JavaScript kɛcogo dɔw bali ye — seko minnu zeru-click bɛ baara kɛ ni minnu ye tuma bɛɛ. Aw bɛ to ka mɔgɔ sabananw ka porogaramuw ka yamaruyaw sɛgɛsɛgɛ, ka seereyaw wuli ka ɲɔgɔn falen-falen kumaɲɔgɔnya siraw kan, ani ka telefɔni selilɛriw ɲɛnabɔli (MDM) fɛɛrɛw jateminɛ minnu bɛ lakana basigiw labato aw ka jɛkulu ka minɛnw kulu bɛɛ kɔnɔ.

Nin ko in bɛ mobili lakanani cogoya bonya jira cogo di san 2026 kɔnɔ ?

O gɛlɛya in sabatili san tan ɲɔgɔn kɔnɔ, o bɛ sigikafɔ gɛlɛya dɔ jira bi porozɛw ka ɲɛnamaya kɛcogo la : gɛlɛya ye lakana jugu ye. iOS bonyalen don ka bɔ mobili baarakɛminɛn nɔgɔman na ka kɛ yɔrɔ ye min bɛ API 250.000 ni kɔ dɛmɛ, jatebɔ motɛriw waati yɛrɛ la, masin kalanni sigidaw, ani ɲɔgɔndan stacks minnu bɛ kɛ tuma bɛɛ. Seko ni dɔnko layini kelen-kelen bɛɛ bɛ binkanni-yɔrɔ kura don sen kan.

Jagokɛlaw ka sɛgɛsɛgɛlikɛlanw ka baarakɛyɔrɔ ye izini kɛ kosɛbɛ o yɔrɔw sɔrɔli n' u musakabɔli la . Fo gɔfɛrɛnamanw ka jɛkafɔ kɛ cogo kɔrɔ la jagokɛlaw ka jagokow kɔlɔsili kan, jagokɛlaw ka jalakiw sigicogo kan, ani kunnafonidicogo wajibiyalenw kan, nin sugu in bɛna t’a fɛ ka wari di ɲininiw ma, minnu bɛ kɛ sababu ye ka fɛnw bila farati la, minnu bɛ baarakɛla gansanw bila farati la. Apple ka wari bilali daminɛ na porogaramukanw na minnu tɛ hakilijagabɔ ye, a ka cɛsiri ka baara kɛ minɛn kɔnɔ sankaba kan, ani a ka Transparency Report porogaramu min bɛ ka bonya, olu ye fɛɛrɛ kɔrɔw ye — nka u bɛ baara kɛ juguw kama ni nafolo nafamaw ye ani wariko dusudon barikamaw.

Ɲininkali minnu bɛ kɛ tuma caman na

Yala n ka iPhone lakananen don ni n ye iOS bɔko kura ladamu kaban wa ?

Ɔwɔ — Apple ka lakanako kura sigili bɛ gɛlɛya kɛrɛnkɛrɛnnenw labɛn minnu jirala nin ko in na. Nka, "safe from this exploit" ni "safe from all exploits" tɛ kelen ye. Kunnafoni kuraw marali, saniya ɲuman kɛli nizɛrikan na, ani ka baara kɛ ni dantigɛli barikama ye, o bɛ to wajibi ye, patɔrɔn kelen-kelen bɛɛ mana kɛ min o min ye.

yala jagokɛla ka spyware bɛ se ka sɔrɔ iPhone kan banakisɛ sɔrɔlen kɔfɛ wa ?

Kɔlɔsili ka gɛlɛn kosɛbɛ baarakɛla danmadɔ ma. Baarakɛminɛn minnu bɛ i n’a fɔ Amnesty International ka Mobile Verification Toolkit (MVT) olu bɛ se ka minɛnw labɛncogo sɛgɛsɛgɛ walasa ka bɛnkansɛbɛn dɔntaw sɔrɔ minnu bɛ tali kɛ spyware denbaya kɛrɛnkɛrɛnnenw na. Faratiba bɛ mɔgɔ minnu na, minɛn dafalen ko ani ka segin ka bɔ kɔpi saniyalen na, o de ka teli ka kɛ furakɛli fɛɛrɛ ye min ka fisa ni tɔw bɛɛ ye, banakisɛ sigalen kɔfɛ.

jagokɛlaw bɛ se ka kunnafoniko ni baarakɛcogo gɛlɛnw lakana cogo di ka bɔ nin ɲɔgɔnna bagabagali la ?

Minɛnw nivo patɔrɔnw kɔfɛ, jagokɛlaw bɛ nafa caman sɔrɔ u ka baarakɛminɛnw jɛli la sigidaw kan minnu bɛ dondaw kɔlɔsili, jatebɔ sɛbɛnni, ani sariya labatoli kɔlɔsili kɛ ɲɔgɔn cɛ. Ni i ye dɔ bɔ porogaramuw jɛnsɛnni na minnu ni ɲɔgɔn cɛ tɛ, o bɛ dɔ bɔ fɛnw jirayɔrɔw la ani ka baara kɛcogo juguw dɔnni nɔgɔya kosɛbɛ.

Jago lakanani, kumaɲɔgɔnya, sariya labatoli, ani baarakɛcogo ɲɛnabɔli baarakɛminɛn tan ni caman kɔnɔ minnu ni ɲɔgɔn cɛ tigɛlen don, o bɛ nɔgɔya suguya dɔ dilan tigitigi, binkannikɛla ŋanaw bɛ min laɲini. Mewayz consolidates 207 business functions — from team communications and CRM to project management and analytics — into a single, governed platform trusted by over 138,000 users. Aw bɛ dɔ bɔ aw ka binkanni yɔrɔ ni aw ka baarakɛcogo gɛlɛya la waati kelen na.

aw ka Mewayz baarakɛyɔrɔ daminɛ bi — labɛnw bɛ daminɛ $19/kalo la app.mewayz.com