Malware cusub oo xatooyo ah ayaa ka soo muuqday goobta informace oo taas samaynaysa ka faa'iidaysanaysa barta dhamaadka Google OAuth aan la shaacin ee loo yaqaan MultiLogin si loo cusboonaysiiyo cookies-ka xaqiijinta ee dhacay oo ay gasho akoonnada isticmaalaha xitaa haddii furaha akoontiga dib loo dajiyay. Mareegta BleepingComputer ayaa ka warbixisay arrintaas.
Dhamaadkii bishii Nofembar ee sannadkii hore, BleepingComputer ayaa ka warbixisay spyware la yiraahdo Lumma oo soo celin kara cookies-ka aqoonsiga Google ee dhacay weerarrada internetka. Faylashani waxay u oggolaanayaan dambiilayaasha internetka inay galaangal aan la oggolayn ku galaan akoonnada Google xitaa ka dib marka milkiilayaashooda ka baxaan, dib u dejiyaan furahooda sirta ah, ama uu dhaco fadhigooda. Ku xidhida warbixinta server-ka CloudSEK, degelka ayaa hadda sharaxay sida uu u shaqeeyo weerarkan maalinta eber ah.
Marka la soo koobo, cilladdu waxay asal ahaan u ogolaataa malware-ka in lagu rakibo kumbuyuutarka desktop-ka si loo "soo saaro oo u qeexo aqoonsiga ku jira xogta Google Chrome ee maxalliga ah." CloudSEK ayaa heshay fayras cusub kaas oo bartilmaameedsada isticmaalayaasha Chrome-ka si ay u galaan akoonnada Google-ka. Malware-kan khatarta ah wuxuu ku tiirsan yahay raad-raacayaasha buskudka.
Sababta ay tani u dhici karto iyada oo aan isticmaalayaashu ogaanin sababtoo ah spyware-ka kor ku xusan ayaa awood u siinaya. Waxay dib u soo celin kartaa cookies Google ee dhacay iyadoo la adeegsanayo furaha API-ga weydiinta ee dhowaan la helay. Waxaa taas ka sii daran, dembiilayaasha internetka waxay isticmaali karaan hal mar oo kale si ay u galaan akoonkaaga xitaa haddii aad dib u dejisay eraygaaga sirta ah ee akoonkaaga Google.
Waxaa laga yaabaa inaad xiisaynayso
Sida laga soo xigtay BleepingComputer, wuxuu dhowr jeer kala xiriiray Google arrintan Google-ka, laakiin wali wax jawaab ah kama helin.
