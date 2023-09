By

Apple e boetse e tobane le ho nyatsuoa ka lebaka la ho ba kotsing ea software ea eona, joalo ka ha bafuputsi ba sibollotse phoso e 'ngoe ea matsatsi a zero ho iMessage. Ts'ebetso ena e ncha e lumella ho tlisoa ha spyware ea Pegasus, sesebelisoa sa ho beha leihlo khoebong se ntlafalitsoeng ke NSO Group, k'hamphani ea Isiraele. Bafuputsi ba Citizen Lab, ba fumaneng bofokoli bona, ba tlalehile hore Pegasus e ntse e sebelisoa ka mafolofolo ho lebisa bahanyetsi ba litokelo tsa botho.

Pegasus e khona ho ikenya fonong ea mosebelisi ntle le ho hloka tšebelisano efe kapa efe ea mosebelisi kapa ho tobetsa sehokelo. Ha e se e kentsoe, e fa mohatelli monyetla oa ho fihlella mohala ka botlalo, ho kenyelletsa le litaba tsa eona, lik'hamera le maekrofono. Sehlopha sa NSO se bolela hore se rekisa li-spyware tsa sona feela ho mekhatlo ea mmuso ka tumello ea mmuso oa Isiraele mme e hana liqoso tsa ho lebisa bahanyetsi ba litokelo tsa botho.

Apple e lokolotse ntlafatso ea ts'ireletso, iOS 16.6.1, e khothalletsa basebelisi ho ntlafatsa lisebelisoa tsa bona hang-hang. Ntlafatso ena e kenyelletsa likhechana tsa bofokoli ba matsatsi a mabeli tse ileng tsa sebelisoa khahlano le setho sa mokhatlo oa sechaba Washington, DC Ho ile ha sibolloa bofokoli ha ho ntse ho etsoa lipatlisiso ka tlatsetso ea pele. Apple's Op-in Lockdown Mode, e etselitsoeng ho ntlafatsa likarolo tsa ts'ireletso le ho thibela litlhaselo tse lebisitsoeng, e ka be e thibetse liketso tsena tse khethehileng.

Ketane ea tlhekefetso, e tsejoang ka hore ke BLASTPASS, e ne e kenyelletsa ho romella lihokelo tsa PassKit tse nang le litšoantšo tse mpe ho tsoa akhaonteng ea mohlaseli ea iMessage ho motho ea hlasetsoeng. Apple e fane ka li-CVE tse peli tse amanang le ketane ena ea tlhekefetso, CVE-2023-41064 le CVE-2023-41061. Bofokoli bona bo lumella batšoantšisi ba litšokelo ho sebelisa khoutu e sa lebelloang.

Leha ho na le boiteko ba Apple ba ho lokisa bofokoli ba matsatsi a zero, ba belaelang ba pheha khang ea hore software ea k'hamphani, haholoholo iMessage, e ntse e tsoela pele ho tobana le mathata a ts'ireletso. Apple e lokisitse kakaretso ea matsatsi a 13 a zero ka 2023, ho kenyelletsa le litaba tse ngata tsa buffer le netefatso. Ho kopanngoa ha li-iMessages, melaetsa ea mongolo ea SMS, le lengolo-tsoibila ho thatafalitse mohopolo le boitšoaro ba sethala, se lebisang pherekanong le bofokoling bo ka bang teng.

Ho sibolloa ha morao tjena ha ts'ebetso ea matsatsi a zero le ts'ebeliso ea spyware ea Pegasus ho tobile baitseki ba litokelo tsa botho e totobatsa tlhoko ea ho tsoela pele ho falimeha ho sebetsana le bofokoli ba software. Karabelo e potlakileng ea Apple ea ho etsa lipatlisiso le ho tšoaea bofokoli bona e ea babatseha, empa e boetse e totobatsa taba ea hore liketso tse tsoetseng pele le lihloela li ntse li tsoela pele ho beha likotsi sechabeng.

