2025-01-28 01:06:12|Myriagame |source:minecraft skins
"Another problem with a problem." Police Officer Bao of the Xunan Branch of the Xuhui Public Security Bureau recorded the name of the mobile phone software and his "black" symptoms.
This is an experiment done by Police Officer Bao and colleagues: they choose a mobile phone software APP with a certain influence, and use various software on the Internet for testing. As a result, at least 10%of mobile software has security problems.
Since the end of last year, Xuhui.com has successively reported many cases involving mobile software.The investigators found that these cases were very similar, and hackers used the "backdoor" of various types of attack software on the Internet.
Fans break the link to release Hong Kong dramas in advance
In May of this year, a well -known TV drama in Hong Kong in the Mainland copyright publisher found that the TV series that could only be broadcast on the computer and mobile phones on the computer and mobile phone at 8 pm, and actually released it online in the afternoon.According to traditional cases, the suspect is likely to be the inner ghost who has the exclusive resources.But the final investigation results were surprising. The suspect turned out to be two "enthusiasts" who were keen to chase online.
Generally speaking, the TV station will upload the content of the TV series to the server during the day. Mainland companies will link in advance. When the TV station broadcasts at night, the video will be launched simultaneously.The two suspects found that there was a vulnerability in mobile phone playback, and the video link format was analyzed through hackers.Through the rules, 20 offline lines were generated, and some new dramas that were not played were successfully played.
Lottery proxy website was maliciously transferred by hackers
In January this year, a lottery agent website found that the background was maliciously transferred in the background of 1.4 million yuan.Officer Bao and colleagues investigated found that the problem lies with the company's network payment mobile port.Hackers recharge 1 yuan after registering accounts on the lottery proxy website, and then use technical means to tampering the account amount to 100,000 yuan.Officer Bao introduced that at the time, the group of people tamped with 7 backstage data on the APP of the lottery website, the first 5,000 yuan, and the last one was 880,000 yuan.A week later, the lottery website was noticed.
In an investigation of criminal suspects, Xuhui Public Security found that the victim was more than this lottery website.A well -known movie ticket agency website has also been adopted by this group of criminals to deceive more than 1.6 million yuan of movie tickets.Police also found that some mobile software that controlled the national line resources also had risks, so the situation was given to the relevant company in time.
The first person in charge of APP security performance is enterprise
After contacting some mobile software development and operation companies, Police Officer Bao believes that the key point is that the corporate security awareness is not strong.In a mobile game extortion case, Police Officer Bao and colleagues asked the company for internal security testing.The other party responded: "In order to seize the market, only the operating issues are considered, and the safety issues are not considered."
Liu Na, who has participated in several APP development and is starting its own business, told reporters that at the beginning of the design of the APP, everyone mainly considers user needs and experiences, as well as risk investment that may be obtained after the popularity accumulation.As for the security performance of the APP, it rarely analyzes and proposes countermeasures.However, Liu Na believes that if you calm down to make a product that can withstand time, you should actually excel in each link.
From the perspective of the legal profession, the first responsible person of the APP security performance is the enterprise, and then the regulatory authorities.As the "last person", Police Officer Bao believes: "The front end is better than the back end." He said that with the development of Internet technology, the difficulty and cost of this crime will become higher and higher.
Can the government provide basic security testing services
Where does the safety hazard of mobile phone software come from? Analysis of the industry, on the one hand, there are systematic reasons, such as the source code of the Android system is public; on the other hand, the reasons for developers, such as some code writing irregularities, etc., so that illegal illegal writing is made to make illegal illegal illegal writing.The molecules have the opportunity to take advantage of it.In addition, there are hundreds of app stores in the Android system. These app stores have different review standards on the app apps, resulting in different quality of mobile phone software.
Some people suggest that at the national level, we should formulate a unified review standard for mobile software, and use security performance as one of the important indicators.There are also people in the industry that government departments can provide relevant enterprises with APP basic security performance testing by purchasing services.
However, some developers do not agree with this.从事APP开发的杨青认为:“手机软件正处于'野蛮生长'阶段,用'标准'来限制不利于发展,不如让市场发挥淘汰作用。”在知名网络公司工作的技术人员周晴则认为,Mobile phone software technology is thousands of miles a day, and it is not realistic to protect security with unified standards.
Reporter
The boundaries of "hackers" and "celebrity"
On the Internet, similar hacking software is easy to find. People in the industry call it test software.It is developed by some professional companies or technicians, which is publicly published to the Internet for free, and some also have a tutorial.From the perspective of the legal profession, this emerging software is in a gray area and is difficult to accurately determine it.The original intention of software development is to provide low security testing tools for mobile phone software companies, but if the use of criminals, it may become a tool for crime.People who are keen to use these software also have a delicate identity.Generally, those "great gods" that can break through well -known websites will become idols.Most of these "great gods" disdain illegally profit after breaking the APP, and they care more about their reputation on the Internet.Some "great gods" will even informed the software vulnerabilities and solutions after breaking through the well -known APP.Such actions also won the name of "Red Passenger" for them.
In the suspects arrested by the public security department, almost everyone claimed that there was a "red customer" dream.At the end of last year, the Xuhui Public Security Bureau received a report from a mobile game company. As soon as the game was launched, someone contacted the customer service staff, claiming that it had mastered multiple programs vulnerabilities of this mobile game, and took the initiative to provide two vulnerabilities for verification.At the beginning, the other party said that the company gave some test fees, but later the price was getting higher and higher, from 5,000 yuan to tens of thousands of yuan, and even threatened "to sell vulnerabilities to others without paying money."
In January of this year, Xuhui police arrested eight suspects involved in the case.One of the main suspects, Li, usually worked as a small worker in a car repair shop. In his spare time, he liked to study mobile games."Test it."Li said that he had studied hundreds of mobile games, "99%found loopholes."
Most of these suspects are post -90s, and they study themselves with interest.At the beginning, they all held the attitude of "trying to break".But when "change the number to become money", they shaken!
Between red and black, the boundary does not seem obvious.If there are legal ways to lead these young people to the right way from the beginning, they may become "red customers".
National Service DNF Dark Ni
2025-01-28 09:19:27
The new screenshot of the be
2025-01-28 09:18:57
The 15th anniversary wallpap
2025-01-28 09:18:27
3DM Xuanyuan Sinicization Gr
2025-01-28 09:17:57
French magazine is the first
2025-01-28 09:17:27
The sneak game "Republic" wi
2025-01-28 09:16:57
The story between humans and
2025-01-28 09:16:27
Capture "Trinity 3: Artifact
2025-01-28 09:15:27
Wind direction change "Myste
2025-01-28 09:14:57
DICE's new project "Dream" w
2025-01-28 09:14:27
Pirate Minecraft Skins
Minecraft Skins
2024-12-10 04:11:27
Pirate Minecraft Skins
Minecraft Skins
2024-12-10 04:11:26
Master Minecraft Skins
Minecraft Skins
2024-12-10 04:11:25
King Minecraft Skins
Minecraft Skins
2024-12-10 04:11:25
Guide Minecraft Skins
Minecraft Skins
2024-12-10 04:11:24
Dark Knight Minecraft Skins
Minecraft Skins
2024-12-10 04:11:23
Sparta Minecraft Skins
Minecraft Skins
2024-12-10 04:11:23
Moncraft Skins of the War
Minecraft Skins
2024-12-10 04:11:22
Red Witch Minecraft Skins
Minecraft Skins
2024-12-10 04:11:22
Golden Cavaliers Minecraft S
Minecraft Skins
2024-12-10 04:11:22