Malware y dispositivos móviles

8/2/2019 Malware y dispositivos mviles

1/11

Khmvhtg noru`ro~oy`r kyomgr Ufojh 8 ng 88@drgtyh~`to` ng mh Rgfwtonhn ng mh Oji`tkhboj

c

Gm ~gmi`j` kyom gr wj` ng m`r noru`ro~oy`r gmgb~tjob`r ng kh`t wr` hb~whmkgj~g* M`r

~gtkojhmgr xwg- gj wj utojbouo`- gr~hdhj ngr~ojhn`r h khj~gjgt h n`r ugtr`jhr

b`kwjobhnhr kgnohj~g y`q- lhj hhnon` uhwmh~ojhkgj~g kr kr iwjbo`jhmonhngr

g|~th* ^hm gr mh bhj~onhn ng u`rodomonhngr iwjbo`jgr xwg ìtgbg wj ~gmi`j` kyom l` gj

nh xwg rg lh hbwhn` wj jwgy` ~tkoj` uhth ngj`kojht h gr~`r noru`ro~oy`r1

rkht~ul`jgr ~gmi`j`r oj~gmofgj~gr*

Tgbogj~gkgj~g lhj huhtgbon` `~t`r fhnfg~r8 ~gbj`mfob`r xwg ìtgbgj ,gj wj ~hkh`

hmf` kh`t/ mhr korkhr u`rodomonhngr xwg m`r m~ok`r ~gmi`j`r kyomgr- ugt` roj mh

u`rodomonhn ng tghmoqht mmhkhnhr- u`t hl`th* Rg ro~hj gj~tg gm ~gmi`j` kyom m`r

jg~d``cr4

M`r rkht~ul`jgr ~hdmg~r lhj ojb`tu`thn` mh b`kumgaonhn ngm `tngjhn`t ng wr`

ugtr`jhm- b`j mhr ygj~hahr xwg gr~` b`jmmgyh* Roj gkdhtf`- gr~g hyhjbg lh ~gjon` b`k`

b`jrgbwgjboh gigb~`r b`mh~gthmgr kgj`r ngrghdmgr- b`k` r`j m`r ut`dmgkhr ng

rgfwtonhn mh btghboj ng khmvhtg grugbiob`* Mh huhtoboj ng gr~g ~ou` ng bnof`

khmobo`r`- gj~tg `~t`r ihb~`tgr- lh ron` utùobohnh u`t mh fthj bhj~onhn ng nh~`r

ugtr`jhmgr ng yhm`t xwg rg hmkhbgjhj gj m`r ~gmi`j`r ~hdmg~r- b`jr~o~wgjn` wj

yhmo`r` d`~j uhth m`r h~hbhj~gr*

rg mgr lh mmhkhn` ~hdmg~r`~hdmg~hr gmgb~tjobhr*

O Xw `dag~oy` oj~gtgrh gj wj noru`ro~oy` kyom0

Wjh ng mhr utojbouhmgr thq`jgr u`t mhr xwg m`r btghn`tgr ng khmvhtg lhj ngbonon`

hkumoht rw thjf` ng hbboj h m`r noru`ro~oy`r kyomgr- gr mh fthj bhj~onhn ng oji`tkhboj

ng yhm`t hmkhbgjhnh gj gmm`r gm lgbl` ng xwg- bhnh ygq b`j kh`t itgbwgjboh- rg

tghmobgj ùgthbo`jgr ng jhygfhboj h ~thyr ng gmm`r*

Yghk`r bwmgr r`j m`r utojbouhmgr `dag~oy`r xwg rg gjbwgj~thj gj gm uwj~` ng koth ng m`r

btghn`tgr ng rì~vhtg khmobo`r` uhth noru`ro~oy`r kyomgr*

J`kdtgr ng wrwhto`r b`j~thrghr

Hb~whmkgj~g- gm hbbgr` h mh kh`th ng iwjbo`jhmonhngr gj mh tgn tgxwogtg ng wj wrwhto`

wjh b`j~thrgh* Gr~`r ro~o`r rwgmgj u`rggt oji`tkhboj ugtr`jhm xwg j` gr~ noru`jodmg

udmobhkgj~g- roj` xwg ugt~gjgbg g|bmwroyhkgj~g hm wrwhto` ,b`ttg`r- nh~`r ugtr`jhmgr-

oji`tkhboj b`jiongjbohm- g~b*/* Mh `d~gjboj ng hkd`r yhm`tgr ,ongj~oiobhn`t ngm wrwhto`

8Noru`ro~oy` b`j wj utùro~` iwjboj grugbiob`r- fgjgthmkgj~g ng ugxwghr utù`tbo`jgr- utb~ob` g ojj`yhn`t* Rwgmgj

~gjgt wj norg` kr ojfgjo`r` xwg gm ng mh ~gbj`m`fh b`ttogj~g*

4@tngjhn`t u`t~~om ng tgnwbonhr nokgjro`jgr*

Ojr~o~w~`Jhbo`jhmng^gbj`m`fhrngmhB`kwjobhboj

Bwhngtj` ng j`~hr ngm

@DRGTYH^@TO@KHMVHTG _ NORU@ROÔY@R KYOMGR

@DRGTYH^@TO@ NG MH RGFWTONHN NG MH OJI@TKHBOJ

l~~u1`drgtyh~`to`*oj~gb`*gr
http://observatorio.inteco.es/http://observatorio.inteco.es/http://observatorio.inteco.es/


2/11


rw b`j~thrgh/ ugtko~oth rwumhj~ht mh ongj~onhn ng mh ugtr`jh h mh xwg mg lhj ron`

rwr~thn` m`r nh~`r* ^hkdoj ugtko~oth h wj h~hbhj~g `d~gjgt hbbgr` h `~t`r nh~`r ng

jn`mg ugtr`jhm*

Tgrugb~` h mhr b`j~thrghr w~omoqhnhr uhth mh dhjbh `jmojg- j` gr wj nh~` xwg rg rwgmh

hmkhbgjht b`k` ~hm gj wj noru`ro~oy` kyom- ugt` m~okhkgj~g hmfwjhr gj~onhngr

dhjbhtohr lhj b`kgjqhn` h gjyoht RKR b`j b`j~thrghr ~gku`thmgr ,lhdo~whmkgj~g ng

wj r`m` wr`/ uhth gm hbbgr` h bogt~`r rgtyobo`r* Hj~g gr~h kgnonh ng rgfwtonhn- ~t`hj`r

b`k` gm b`j`bon` Qgwr lhj lgbl` rw huhtoboj gj noygtrhr umh~hi`tkhr- gj~tg gmmhr

Dmhbcdgtt- n`jng oj~gtbgu~h m`r RKR b`j mhr bmhygr gjyohnhr u`t mh gj~onhn dhjbhtoh2

@~thr i`tkhr gj mhr xwg u`nthj rgt w~omoqhnhr wjhr btgngjbohmgr t`dhnhr j` higb~hj ng

i`tkh ~hj notgb~h hm wrwhto` h~hbhn`* H ygbgr- xwogjgr gr~j ng~tr ngm t`d` ng mhrbtgngjbohmgr- rokumgkgj~g ngrghj lhbgt mmgfht uwdmobonhn ugtr`jhmoqhnh ` w~omoqht mh

bwgj~h uhth tghmoqht gjfh`r kr btgdmgr- u`t gagkum` gjyohjn` ngrng grh bwgj~h

kgjrhagr h ~`n`r m`r b`j~hb~`r b`j gjmhbgr h ro~o`r vgd khmobo`r`r*

*

Hb~whmkgj~g- gj m`r rkht~ul`jgr ~hdmg~r rg uwgng mmgfht h hmkhbgjht mh korkh

bhj~onhn ng b`j~thrghr xwg gj wj `tngjhn`t ng r`dtgkgrh* Gj b`jbtg~`- gr b`kj

fwhtnht mhr btgngjbohmgr ng rgtyobo`r ng tgngr r`bohmgr ,Ihbgd``c- ^wgj~o- ^vo~~gt- g~b*/ `

ng b`kwjobhboj ojr~hj~jgh ,Vlh~rHuu- Rcug- Kgrrgjfgt- g~b*/*

Nh~`r ng i`tkwmhto`r

@~t`r uwj~`r ngrng n`jng rg u`nthj `d~gjgt nh~`r ugtr`jhmgr ng oj~gtr r`j ~`n`r m`r

i`tkwmhto`r ng mhr vgdr h mhr xwg rg rwgmg hbbgngt ngrng gr~`r noru`ro~oy`r* M`r

i`tkwmhto`r kr ngrghn`r u`t m`r h~hbhj~gr r`j m`r tgmh~oy`r h b`kuthr `jmojg- gj m`r

xwg rg oj~t`nwbgj m`r nh~`r bwh `d~gjboj uwgng ~thnwbotrg tuonhkgj~g gj dgjgiobo`r

gb`jkob`r- b`k` r`j m`r tgigtgj~gr h ~htag~hr ng btno~`*

Gm hwkgj~` ng mh w~omoqhboj ng mh dhjbh `jmojg h ~thyr ng noru`ro~oy`r kyomgr- fthbohr h

xwg ngrng mhr korkhr gj~onhngr rg ihbomo~h gm hbbgr` hnhu~hjn` rwr vgdr `ngrhtt`mmhjn` humobhbo`jgr uhth fgr~o`jhtm`- gr `~t` ng m`r utojbouhmgr ihb~`tgr xwg gr~

h~thgjn` gm norg` ng khmvhtg uhth gr~hr umh~hi`tkhr*

Nh~`r n`bwkgj~`r utoyhn`r

Huht~g ng m`r nh~`r ugtr`jhmgr grugbiob`r- ~hkdoj ~ogjg fthj oj~gtr mh `d~gjboj ng

n`bwkgj~`r xwg rm` rg gjbwgj~thj noru`jodmgr gj bogt~`r btbwm`r bgtthn`r* Gj gr~g

rgj~on` u`nth ojbmwotrg gm gruo`jhag ojnwr~tohm gm t`d` ng n`bwkgj~`r ng kdo~`

2QgwR Ko~k`1 Khj+oj+~lg+k`domg1l~~u1rgbwto~dm`f*r48rgb*b`k45855?qgwr+ko~k`+khj+oj+k`domg+o*l~km
http://securityblog.s21sec.com/2010/09/zeus-mitmo-man-in-mobile-i.htmlhttp://securityblog.s21sec.com/2010/09/zeus-mitmo-man-in-mobile-i.htmlhttp://securityblog.s21sec.com/2010/09/zeus-mitmo-man-in-mobile-i.htmlhttp://securityblog.s21sec.com/2010/09/zeus-mitmo-man-in-mobile-i.html


3/11


ugtr`jhm* B`jbtg~hkgj~g- gm h~hbhj~g xwg dwrxwg gr~g ~ou` ng oji`tkhboj rg bgj~tht

utojbouhmkgj~g gj i`~`fthihr- b`ttg`r gmgb~tjob`r kgjrhagr RKR ` KKR*

Mh b`k`nonhn ihbomonhn xwg utùoboh mh w~omoqhboj ng ~hdmg~hr gmgb~tjobhr uhth mh mgb~wthng ~`n` ~ou` ng n`bwkgj~`r ng ~g|~` ` yorwhmoqhboj ng okfgjgr- nohfthkhr- g~b*-

~hkdoj utùoboh gm hmkhbgjhkogj~` ng gr~`r htbloy`r gj gm huhth~`* Ngdon` h mh

k`yomonhn iwjbo`jhmonhn xwg utù`tbo`jhj- lhj tgrwm~hn` rgt kw uùwmhtgr gj gj~`tj`r

gkutgrhtohmgr*

_h rg lhj b`j`bon` bhr`r ng ugtr`jhagr ihk`r`r xwg lhj ron` yb~okhr ng gr~`r

h~hxwgr- h m`r xwg mgr iwgt`j rwr~thn`r nh~`r ugtr`jhmgr- i`~`r b`kut`kg~onhr `

oji`tkhboj tgmgyhj~g* Gj hmfwj`r bhr`r rg uwgng mmgfht h ugnot wj tgrbh~g u`t gr~`r

nh~`r*

Kgjrhagr utgkowk

J` rogkutg gm `dag~oy` ngm khmvhtg gr fgjgtht wj dgjgiobo` fthbohr h mh `d~gjboj ng

nh~`r ` b`j~thrghr xwg kr ~htng uwgnhj rgt w~omoqhnhr* G|or~g wjh yh kr tuonh ng

mwbthtrg fthbohr h mh ojigbboj ng wj noru`ro~oy` kyom- rw job` tgxwgtokogj~` gr xwg

r~g u`rgh mh bhuhbonhn ng gjyoht kgjrhagr ng ~g|~`* G|or~g khmvhtg uhth kyomgr

oj~gmofgj~gr xwg rg gjbhtfh ng nht mhr tngjgr ugt~ojgj~gr hm ~gmi`j` uhth gjyoht

kgjrhagr h jkgt`r utgkowk>

Wj bhr` ng gr~g uùwmht khmvhtg xwg higb~h b`jbtg~hkgj~g h noru`ro~oy`r Hjntòn gr mh

ihkomoh Hjntòn*Uahuur* M`r wrwhto`r rwgmgj ugtbh~htrg ngm ut`dmgkh bwhjn` tgbodgj

kgjrhagr RKR j` r`mobo~hn`r- u`t m`r xwg rg mgr b`dth wjh bhj~onhn- ` bwhjn` tgbodgj

wjh ihb~wth xwg j` b`ttgru`jng b`j mh tghmonhn ng wr`*

* M`r kgjrhagr gjyohn`r ojhnygt~onhkgj~g u`t gm ~gmi`j`

hm jkgt` ,xwg gr utùognhn ngm h~hbhj~g ` rg gjbwgj~thj hr`bohn`r/- fgjgthj wjh

b`koroj ng mh xwg `d~ogjg wj dgjgiobo` notgb~`*

@~th yhtognhn ng h~hxwg rokomht b`jror~g gj ojr~ht hm wrwhto` h tghmoqht wjh mmhkhnh ` h

gjyoht wj kgjrhag h gr~g ~ou` ng ~gmi`j`r* Mh utojbouhm yh uhth tghmoqht gr~g h~hxwg

rwgmg rgt h ~thyr ng RKR gj gm xwg rg ut`kg~g wj utgko` ` tgb`kugjrh u`t gm gjy` ngkgjrhagr* Gr~g bhr` j` okumobh ojigbboj- roj` ojfgjogth r`bohm*

Rgbwgr~t` ngm noru`ro~oy`

M`r ~gtkojhmgr ugtko~gj- h ~thyr ng noigtgj~gr k~`n`r- dm`xwght gm ror~gkh uhth xwg j`

uwgnh rgt w~omoqhn` ro j` rg b`j`bg wj bnof` gj b`jbtg~`* ^hkdoj gr u`rodmg

ngrlhdomo~ht mhr mmhkhnhr ` j` ugtko~ot gm hbbgr` h m`r nh~`r hmkhbgjhn`r kgnohj~g gm

boithn`*

>Jkgt`r ng ~htoiobhboj grugbohm xwg itgbgj rgtyobo`r ng j`~oiobhboj gjy` ng RKR h wj utgbo` rwugto`t hm lhdo~whm*


4/11

Khmvhtg noru`ro~oy`r kyomgr Ufojh > ng 88@drgtyh~`to` ng mh Rgfwtonhn ng mh Oji`tkhboj

G|or~g khmvhtg uhth kyomgr xwg dm`xwgh gm hbbgr` h m`r nh~`r ` h bogt~hr

iwjbo`jhmonhngr- uonogjn` wj tgrbh~g uhth tgbwugtht gm gr~hn` `tofojhm ngm noru`ro~oy`* R`j

~bjobhr h w~omoqhnhr b`j |o~` gj m`r `tngjhn`tgr ng r`dtgkgrh* Gr~g ~ou` ng khmvhtg

gr b`j`bon` b`k` $thjr`kvhtg$*

OO @~t`r `dag~oy`r ngm khmvhtg

Hngkr ngm t`d` ng oji`tkhboj mh drxwgnh ng fhjhjbohr gb`jkobhr- g|or~gj `~thr

u`rodmgr k`~oyhbo`jgr uhth m`r h~hxwgr g ojigbbo`jgr ng noru`ro~oy`r kyomgr*

Ngk`r~thboj ng bhuhbonhn

Hwjxwg mh fthj kh`th ngm khmvhtg xwg hb~whmkgj~g rg btgh rg gjbwgj~th gj

botbwmhboj ~ogjg b`k` `dag~oy` mh drxwgnh ng wj dgjgiobo` gb`jkob` ,notgb~` `ojnotgb~`/- ~`nhyh gr u`rodmg gjb`j~tht bnof` khmobo`r` xwg rg bgj~th utojbouhmkgj~g gj

mh ngk`r~thboj ng u`ngt ngm btghn`t* Ojobohmkgj~g- gr~g ~ou` ng khmvhtg rg tghmoqh b`j gm

ioj ng u`jgt h utwgdh m`r b`j`bokogj~`r ngr~tgqh ng xwogj m` fgjgth*

Gr~g iwg gm `tofgj ng mhr utokgthr kwgr~thr ng khmvhtg xwg lobogt`j rw huhtoboj lhbg

wj`r 25 h`r- bw` job` `dag~oy` gth mh drxwgnh ng mh ihkh mh ngk`r~thboj mhr

lhdomonhngr ng m`r btghn`tgr hj~gr gm tgr~` ng mh b`kwjonhn* Gj wj gj~`tj` tgmh~oyhkgj~g

ojg|um`thn`- b`k` gr ~`nhyh gm ng m`r rkht~ul`jgr- hj gr lhdo~whm gjb`j~tht utwgdhr

ng b`jbgu~` g|ugtokgj~`r* Gj hmfwj`r bhr`r gr~`r g|ugtokgj~`r rg w~omoqhj uhth

ngrhtt`mmht gj gm iw~wt` bnof` kr gigb~oy`*

D`~jg~r

Mhr mmhkhnhr d`~jg~r r`j tgngr i`tkhnhr u`t wj fthj jkgt` ng gxwou`r ojigb~hn`r-

~hkdoj b`j`bon`r b`k` q`kdor* Gr~`r noru`ro~oy`r rg gjbwgj~thj b`j~t`mhn`r u`t wj

ut`fthkh khmobo`r`- xwg ugtko~g xwg uwgnhj rgt khjgahn`r ng i`tkh tgk`~h u`t wjh

kxwojh bgj~thm- gjbhtfhnh ng k`jo~`toqht h ~`n` gm b`jawj~` ng nhtmgr mhr tngjgr

uhth mhr xwg gr~j ut`fthkhn`r* ^hkdoj rg w~omoqhj b`k` fthjah ng ror~gkhr xwg

ugtko~g `d~gjgt kh`t u`~gjboh ng bkuw~` hr u`ngt gjyoht b`ttg` dhrwth ` tghmoqhth~hxwgr ng ngjgfhboj ng rgtyobo` ,dm`xwg`/ ng ufojhr vgd u`t rh~wthboj*

Mhr d`~jg~r r`j lhdo~whmgr gj gm kwjn` ng m`r ror~gkhr ng r`dtgkgrh hb~whmkgj~g

gr~j b`kgjqhjn` h ngruwj~ht gj~tg m`r ~gmi`j`r oj~gmofgj~gr*

Wj` ng m`r gagkum`r kr r`jhn`r ng gr~g ~ou` ng ojigbboj gj noru`ro~oy`r kyomgr gr gm

ngm ~t`hj` b`j`bon` b`k` Fgokojo* Gr~g ~t`hj` rg ojr~hmh h ~thyr ng humobhbo`jgr

mgf~okhr h mhr xwg rg mgr hhnh gm bnof` khmobo`r` ng gr~g ~t`hj`* Gj~tg rwr

iwjbo`jhmonhngr rg gjbwgj~thj ngrng gm gjy` ng oji`tkhboj r`dtg gm lhtnvhtg ,~ou`

BUW- khtbh- g~b*/ nh~`r b`k` jkgt` ng ~gmi`j`- nh~`r ng mh tgn- OKGO- g~b* lhr~h


5/11


u`ngt tgbodot tngjgr ng rgtyon`tgr `togj~hn`r hm b`j~t`m ng mh tgn ng noru`ro~oy`r

ojigb~hn`r*

Omwr~thboj 81 Gr~twb~wth agttxwobh ng d`~jg~r

Iwgj~g1 Grg~*b`k

OOO I`tkhr ng ojigbboj

Gj gr~g huht~hn` rg ngr~hbhj hmfwj`r ng m`r uwj~`r ng ojigbboj b`kjkgj~g w~omoqhn`r

u`t m`r h~hbhj~gr gj mh hb~whmonhn*

Tgngr r`bohmgr

Wjh ng mhr i`tkhr kr wrhnhr uhth `d~gjgt nh~`r ugtr`jhmgr ` b`kut`kg~gt wjh bwgj~h

gr h ~thyr ng ihmrhr iwjbo`jhmonhngr hhnonhr h wjh tgn r`bohm* Lhdo~whmkgj~g mhr tgngr

r`bohmgr `itgbgj awgf`r humobhbo`jgr hnobo`jhmgr* M`r h~hbhj~gr rwgmgj btght

humobhbo`jgr ihmrhr xwg ojbo~hj hm wrwhto` h rw ojr~hmhboj u`t ~hj~`- mmgyhj h mh ojigbboj

ngm ~gmi`j` noru`ro~oy` kyom*

@~th yhtohj~g ng gr~g ~ou` ng h~hxwgr r`j m`r ro~o`r vgd g|~gtj`r h mhr tgngr r`bohmgr xwg

`itgbgj rwuwgr~hr iwjbo`jhmonhngr g|~th* M`r utojbouhmgr gjfh`r ~thkuhr w~omoqhnhr

uhth h~thgt hm udmob` rwgmgj rgt humobhbo`jgr xwg hrgfwthj ugtko~ot b`j`bgt xw

ugtr`jhr yoro~hj wj ugtiom ` xwoj lh dm`xwghn` wjh bwgj~h gj m`r ror~gkhr ng

kgjrhagth* Gr~g ~ou` ng humobhbo`jgr j` g|or~gj j` bwkumgj tghmkgj~g mh iwjboj xwg

ut`kg~gj*


6/11


Nobl`r ro~o`r ithwnwmgj~`r rwgmgj tgxwgtot mh oj~t`nwbboj ng m`r nh~`r ugtr`jhmgr

jgbgrhto`r uhth hbbgngt h mh bwgj~h* Hr- gr~hr humobhbo`jgr- hngkr ng j` bwkumot rw

iwjboj- ojigb~htj gm ror~gkh d~gjntj nh~`r ugtr`jhmgr*

B`ttg` gmgb~tjob`

Gm b`ttg` gr wj` ng m`r kgno`r ~thnobo`jhmgr ng ojigbboj gj noru`ro~oy`r gmgb~tjob`r

gr~` rg lh ~thrmhnhn` h m`r ~gtkojhmgr kyomgr* Hm ofwhm xwg gj gm bhr` ng m`r ror~gkhr ng

r`dtgkgrh- m`r h~hbhj~gr gjyhj hm b`ttg` ut`fthkhr bhkwimhn`r- ojbo~hjn` hm wrwhto` h

xwg m`r gagbw~g gj rw ~gtkojhm* B`j gr~` b`jrofwgj ojigb~ht gm ror~gkh- lhbogjn` btggt hm

wrwhto` xwg lh ojr~hmhn` wjh humobhboj*

ôgjnhr ng humobhbo`jgr

Hb~whmkgj~g mhr utojbouhmgr umh~hi`tkhr ng ~gtkojhmgr u`rggj wjh ~ogjnh ìobohm ng

humobhbo`jgr- ~hkdoj b`j`bonhr b`k` r~`tgr` khtcg~r* Gj gmmhr rg uwgngj gjb`j~tht

fthj bhj~onhn ng ut`fthkhr bmhroiobhn`r rgfj rw bh~gf`th- b`j yhm`thbo`jgr

b`kgj~hto`r ng m`r wrwhto`r xwg gjtoxwgbgj mh g|ugtogjboh b`j gm noru`ro~oy`*

Omwr~thboj 41 Gagkum` ng ~ogjnh ng humobhbo`jgr

Iwgj~g1 Hjntòn Khtcg~

Bhnh ~ogjnh yot~whm rofwg rw utùoh u`m~obh uhth b`j~t`mht mhr humobhbo`jgr xwg rg u`jgj h

noru`roboj ngm udmob`- rogjn` hmfwjhr kr tgr~tob~oyhr xwg `~thr* Gr~` xwogtg ngbot xwg

mhr humobhbo`jgr r`j r`kg~onhr h b`j~t`mgr kr ` kgj`r tofwt`r`r uhth ng~gb~ht khmvhtg

` b`ku`t~hkogj~`r r`rugbl`r`r gj gmmhr hj~gr ng xwg uwgnhj rgt ngrbhtfhnhr u`t gm

udmob`* Hwj b`j gr~`r b`j~t`mgr- rg lhj nhn` bhr`r gj m`r xwg mhr ~ogjnhr ìobohmgr lhj


7/11


hmàhn` humobhbo`jgr ojigb~hnhr* Gm wrwhto` ngdgt ~`kht mhr k|okhr utgbhwbo`jgr h mh

l`th ng ojr~hmht bwhmxwogt rì~vhtg- hwjxwg ut`ygjfh ng wjh ~ogjnh ìobohm*

Hb~whmkgj~g g|or~gj n`r k`ngm`r ng u`m~obhr noigtgj~gr gj bwhj~` h mh rwugtyoroj ng mhr

humobhbo`jgr gj gr~hr ~ogjnhr* Gm utokgt` gr gm ng mhr ~ogjnhr xwg u`rggj wjh u`m~obh ng

b`j~t`m ng mhr humobhbo`jgr xwg tgxwogtg xwg ~`nhr rghj tgyorhnhr u`t mh utùoh gkutgrh*

Gj gm `~t` g|~tgk`- rg gjbwgj~th gm k`ngm` ng ~ogjnh gj gm xwg bwhmxwogt ngrhtt`mmhn`t

uwgng u`jgt h noru`roboj ng mh b`kwjonhn wjh humobhboj btghnh u`t m kork`- roj xwg

gr~` okumoxwg wjh rwugtyoroj utgyoh tofwt`rh ng noblhr humobhbo`jgr* Gr~g rgfwjn`

k`ngm` rwgmg bwdtot rw niobo~ ng rwugtyoroj ìobohm kgnohj~g mh b`mhd`thboj ng hmfwj`r

wrwhto`r- xwg b`kutwgdhj g|~thìobohmkgj~g hmfwjhr humobhbo`jgr tgu`t~hjn` m`r u`rodmgr

ut`dmgkhr xwg gjbwgj~thj*

^hkdoj gr u`rodmg gjb`j~tht $~ogjnhr hm~gtjh~oyhr$ xwg ìtgbgj humobhbo`jgr uhth gr~`r

noru`ro~oy`r roj gr~ht yojbwmhnhr h mhr gkutgrhr khtbhr xwg ngrhtt`mmhj m`r ror~gkhr

ùgth~oy`r* Gj gr~g bhr` mhr humobhbo`jgr j` jgbgrhtohkgj~g lhj ng uhrht u`t wj b`j~t`m

` rwugtyoroj ng rgfwtonhn*

U`t `~t` mhn`- g|or~g wjh fthj bhj~onhn ng humobhbo`jgr noru`jodmgr gj Oj~gtjg~ Uwgngj

gjb`j~thtrg ~hj~` gj ufojhr vgd ngnobhnhr g|bmwroyhkgj~g h gmm` b`k` gj i`t`r r`dtg

noygtr`r ~gkhr gj~tg m`r xwg rg uwgngj ojbmwot gr~g ~ou` ng humobhbo`jgr* Gj gr~`r bhr`r

j` g|or~g jojfj hyhm ng rwugtyoroj ` b`j~t`m ìobohm*

^hj~` gj gm bhr` ng ~ogjnhr b`j wj joygm ng b`j~t`m gmgyhn`- b`k` gj mhr ~ogjnhr xwg j`

bwgj~hj b`j jojfj ~ou` ng b`j~t`m rg uwgng gjb`j~tht hmfwjh humobhboj b`j iojgr

khmobo`r`r*

Tgngr m`bhmgr ,VoIo/

Hb~whmkgj~g- mh fthj kh`th ng m`r noru`ro~oy`r kyomgr oj~gmofgj~gr u`rgg mh bhuhbonhn

ng b`jgb~htrg h Oj~gtjg~* Gr~` rwgmg lhbgtrg kgnohj~g wjh b`jg|oj notgb~h ng nh~`r

,FUTR ` 2F/ h ~thyr ng mhr tgngr ng wj ùgthn`t kyom ` kgnohj~g mh b`jg|oj h wjhtgn ng tgh m`bhm xwg utù`tbo`jh hbbgr` h Oj~gtjg~ ,Vo+Io/*

Gj gr~g m~ok` ~ou` ng tgngr- wj noru`ro~oy` xwg rg gjbwgj~tg ojigb~hn` u`nth ojoboht wjh

drxwgnh ng `~t`r `dag~oy`r gj mh korkh tgn m`bhm- b`j mh oj~gjboj ng ojigb~htm`r*


8/11

Khmvhtg noru`ro~oy`r kyomgr Ufojh < ng 88@drgtyh~`to` ng mh Rgfwtonhn ng mh Oji`tkhboj

Omwr~thboj 21 Yor`t ng tgngr Vo+Io noru`jodmgr

Iwgj~g1 grigthoul`jg*b`k

@~t` ugmoft` hm xwg rg gjitgj~hj m`r noru`ro~oy`r kyomgr xwg rg b`jgb~hj h tgngr Vo+Io gr

mh iohdomonhn ng mh b`jg|oj* Wjh tgn Vo+Io j` ut`~gfonh uwgng ugtko~ot h h~hbhj~gr

b`jgb~hn`r h mh korkh tgn mh `d~gjboj ngm ~tiob` j` boithn` fgjgthn` u`t gm noru`ro~oy`

,m`r nh~`r xwg botbwmhj u`t mh tgn/*

Dmwg~``~l

@~th ~gbj`m`fh hkumohkgj~g g|~gjnonh gr mh b`j`bonh b`k` dmwg~``~l* Rg ~th~h ng wj

ut`~`b`m`- `togj~hn` utojbouhmkgj~g hm oj~gtbhkdo` ng nh~`r gj~tg n`r noru`ro~oy`r- kw

u`uwmht hj~gr ng xwg rg g|~gjnogth gm wr` ng Vo+Io g Oj~gtjg~ gj m`r ~gtkojhmgr kyomgr*

Wj kyom ojigb~hn` u`nth ojoboht wjh drxwgnh ng `~t`r noru`ro~oy`r b`j gm ror~gkh

dmwg~``~lhb~oyhn`* Ro mh jwgyh yb~okh hbgu~h mh b`jg|oj- gm ojigb~hn` u`nth gjyoht gm

bnof` xwg rg gagbw~hth gj gm noru`ro~oy`* Hmfwjhr gkutgrhr ~hkdoj w~omoqhj gr~g

k~`n` uhth gjyoht uwdmobonhn j` r`mobo~hnh h ~thyr ng dmwg~``~lh m`r huhth~`r xwg m`

~ogjgj hb~oy` gj wj thno` ng hbboj ng wj`r 855 kg~t`r* Wj khmvhtg huhtgbon` gj 4559

mmhkhn` B`kkvhtto`t- ngr~ojhn` gr~h ygq h Rkdohj- hut`ygblhdh- gj~tg `~thr- mhr

b`kwjobhbo`jgr dmwg~``~lb`k` kgno` ng ut`uhfhboj*


9/11

Khmvhtg noru`ro~oy`r kyomgr Ufojh ? ng 88@drgtyh~`to` ng mh Rgfwtonhn ng mh Oji`tkhboj

Ywmjgthdomonhngr

M`r rkht~ul`jgrw~omoqhj rì~vhtg b`kumga` u`t ~hj~`- j` gr~j g|gj~`r ng b`j~gjgt

ywmjgthdomonhngr* Gr~`r ihmm`r gj m`r ut`fthkhr ugtko~othj h m`r h~hbhj~gr gagbw~ht

bnof` gj gm ror~gkh- u`t gagkum` b`j r`m` yoro~ht wjh ufojh vgd ro gm ut`fthkh

ywmjgthdmg gr gm jhygfhn`t*

Mhr ywmjgthdomonhngr g|um`~hnhr h ~thyr ng ufojhr vgd bhtfhj wj b`j~gjon`

grugbohmkgj~g utguhthn` uhth xwg `bwtth gm ihmm` rg hut`ygblg mh ywmjgthdomonhn hm rgt

ut`bgrhn`* Gr~g ~ou` ng ywmjgthdomonhngr uwgngj ~gjgt noigtgj~gr tgugtbwro`jgr- ngrng

lhbgt xwg gm ut`fthkh ` gm noru`ro~oy` gj~gt` ngag ng iwjbo`jht- lhr~h xwg gm jhygfhn`t

uwgnh gagbw~ht bnof` ~`kht gm b`j~t`m ngm huhth~`*

Wj` ng m`r gagkum`r kr b`j`bon`r hkumohkgj~g w~omoqhn`r- gj utojbouo` j` ngr~ojhn` h

mh ojigbboj- gr gm k~`n` w~omoqhn` uhth modgtht ,gmokojht mhr moko~hbo`jgr gr~hdmgbonhr

u`t rw ihdtobhj~g/ m`r noru`ro~oy`r xwg w~omoqhj gm ror~gkh ùgth~oy` o@R- gj~tg `~t`r* M`

xwg ugtko~g tghmoqht gr~h modgthboj gr utgborhkgj~g hut`ygblht noigtgj~gr

ywmjgthdomonhngr ngm rì~vhtg `tofojhm*

OY Ut`~gbboj

Hm ofwhm xwg gj gm bhku` ng m`r ror~gkhr ng r`dtgkgrh- rg ngdgj rgfwot bwh~t` j`tkhr

drobhr xwg rotygj uhth ut`~gfgt bwhmxwogt noru`ro~oy` oji`tk~ob`1

Khj~gjgt gm noru`ro~oy` hb~whmoqhn` b`j mhr m~okhr ygtro`jgr ngm ror~gkh

ùgth~oy` ngm rì~vhtg ojr~hmhn`*

Lhbgt wr` ng noigtgj~gr ugtiomgr ng wrwhto` bwhjn` rgh u`rodmg* Rg ngdg wrht

hxwgm xwg ~gjfh m`r utoyomgfo`r kjok`r jgbgrhto`r uhth mh w~omoqhboj gm ror~gkh

gj mwfht ng wj ugtiom ng hnkojor~thn`t b`j ~`n`r m`r ugtkor`r*

J` ojr~hmht rì~vhtg ng tgu`ro~`to`r j` ìobohmgr ` ng nwn`rh ut`bgngjboh*

Ojr~hmht wj ror~gkh hj~okhmvhtg gj bhr` ng xwg g|or~h*

@~t`r b`jrga`r `togj~hn`r h mh ut`~gbboj itgj~g h noygtrhr i`tkhr ng gjfh` ygb~`tgr

ng gj~thnh ng khmvhtg u`nthj rgt1

Gr~hdmgbgt wjh b`j~thrgh ~hj~` uhth gm gjbgjnon` b`k` uhth gm ngrdm`xwg` ngm

~gtkojhm* ^hkdoj gr jgbgrhto` k`noiobht ~`nhr mhr bmhygr xwg gr~j gr~hdmgbonhr

u`t ngigb~` uhth ugtr`jhmoqhtmhr* Hr rg gyo~hthj bhr`r b`k` gm ng bogt~`r

k`ngm`r ng noru`ro~oy`r modgthn`r- gj m`r xwg ~`n`r b`kuht~gj wjh korkh

b`j~thrgh u`t ngigb~`*


10/11


Hm b`jgb~htrg h wjh tgn Vo+Io hagjh- gyo~ht gm gjy` ng nh~`r ugtr`jhmgr

gm wr`

ng mh dhjbh `jmojg*

B`kut`dht gm `tofgj mh b`jiohjqh ng bwhmxwogt ~ou` ng b`j~gjon`

,gagbw~hdmgr-

n`bwkgj~`r***/ xwg yhh h rgt ngrbhtfhn`- ojr~hmhn` ` hdogt~` b`j bwhmxwogt

ut`fthkh* Gj bhr` ng ~th~htrg ng rì~vhtg- b`kut`dht xwg mhr humobhbo`jgr rg

gjbwgj~tgj iotkhnhr u`t rw ihdtobhj~g `tofojhm*

J` hbgu~ht jo lhbgt bhr` ng kgjrhagr ng b`ttg` gmgb~tjob`- RKR- KKR- g~b* ng

`tofgj ngrb`j`bon`

b`kut`dht mh hw~gj~obonhn ng b`j m`r kgjrhagr ut`ygjogj~gr

ng b`j~hb~`r ng b`jiohjqh ugt` bw` b`j~gjon` rg rhmfh ng mh j`tkhmonhn* J`

yoro~ht ngrng gm noru`ro~oy` m`r gjmhbgr h ufojhr xwg rghj utùwgr~`r h ~thyr ng

kgjrhagr- b`ttg`- kgjrhagth ojr~hj~jgh- g~b*

B`jiofwtht gm jhygfhn`t fgr~`t ng b`ttg`

Omwr~thboj >1 @ubo`jgr ng yorwhmoqhboj ngm b`ttg` gmgb~tjob`

uhth xwg gm b`j~gjon` ng m`r b`ttg`r

gmgb~tjob`r j` rgh bhtfhn` u`t ngigb~`- jo rg yorwhmobg gj k`n` L^KM*

Ngrlhdomo~ht mh bhtfh ng b`j~gjon` g|~gtj` h mh l`th ng mh utgyorwhmoqhboj

mgb~wth ng b`ttg`r gmgb~tjob`r*

Iwgj~g1 OJ^GB@

J` hbgu~ht b`jg|o`jgr jo ~thjrigtgjbohr j` r`mobo~hnhr ` ng `tofgj ngrb`j`bon`

yh dmwg~``~l` ojithttà`r*


11/11


Khj~gjgt ~`n`r m`r nh~`r rgjrodmgr ut`~gfon`r

itgj~g h hbbgr`r j` ugtko~on`r

kgnohj~g gm boithn`*

Tghmoqht ugtonobhkgj~g wjh b`uoh ng rgfwtonhn

ngm ror~gkh ~`n`r rwr nh~`r

uhth u`ngt tgbwugthtm`r gj bhr` ng utnonh ` hygth ngm noru`ro~oy`*

B`jrgtyht gm bnof` OKGO ngm ~gmi`j` kyom uhth xwg- gj bhr` ng utnonh ` t`d`

ngm ~gtkojhm- r~g uwgnh rgt dm`xwghn`*

vvv*ihbgd``c*b`k@drgtyhOJ^GB@

vvv*~vo~~gt*b`k@drgtyhOJ^GB@

vvv*oj~gb`*grdm`fRgfwtonhn@drgtyh~`to`Dm`fRgfwtonhn

vvv*`w~wdg*b`k@drgtyhOJ^GB@

vvv*rbtodn*b`k@drgtyhOJ^GB@

vvv*rmongrlhtg*jg~@drgtyhOJ^GB@

`drgtyh~`to`Eoj~gb`*gr
http://www.facebook.com/ObservaINTECOhttp://www.twitter.com/ObservaINTECOhttp://www.inteco.es/blog/Seguridad/Observatorio/BlogSeguridadhttp://www.youtube.com/ObservaINTECOhttp://www.scribd.com/ObservaINTECOhttp://www.slideshare.net/ObservaINTECOhttp://www.slideshare.net/ObservaINTECOmailto:[email protected]:[email protected]:[email protected]://www.slideshare.net/ObservaINTECOhttp://www.scribd.com/ObservaINTECOhttp://www.youtube.com/ObservaINTECOhttp://www.inteco.es/blog/Seguridad/Observatorio/BlogSeguridadhttp://www.twitter.com/ObservaINTECOhttp://www.facebook.com/ObservaINTECO

Malware y dispositivos móviles

Documents

Transcript of Malware y dispositivos móviles