{"id":174339,"date":"2023-12-31T22:18:00","date_gmt":"2023-12-31T20:18:00","guid":{"rendered":"https:\/\/life.karpat.in.ua\/?p=174339"},"modified":"2023-12-31T05:21:25","modified_gmt":"2023-12-31T03:21:25","slug":"a-bankszamlajahoz-tartozo-belepesi-adatokat-lopja-el-a-kameleon","status":"publish","type":"post","link":"https:\/\/life.karpat.in.ua\/?p=174339&lang=hu","title":{"rendered":"A banksz\u00e1ml\u00e1j\u00e1hoz tartoz\u00f3 bel\u00e9p\u00e9si adatokat lopja el a Kam\u00e9leon"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><strong>Kam\u00e9leon (Chameleon): a kedvesnek t\u0171n\u0151 n\u00e9v m\u00f6g\u00f6tt igaz\u00e1b\u00f3l egy vesz\u00e9lyes androidos k\u00e1rtev\u0151 \u00e1ll, mely cseles technik\u00e1kkal igyekszik ir\u00e1ny\u00edt\u00e1st szerezni a k\u00e9sz\u00fcl\u00e9k\u00fcnk felett. A c\u00e9l a banki adatok megszerz\u00e9se, de sok m\u00e1sra is k\u00e9pes lehet, ha nem figyel az ember.<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A Kam\u00e9leon nem nevezhet\u0151 teljesen \u00fajnak, a kor\u00e1bbi verzi\u00f3it ugyanis m\u00e1r \u00e1prilisban is \u00e9szlelt\u00e9k \u2013 akkor ausztr\u00e1l korm\u00e1nyzati int\u00e9zm\u00e9nyeknek, bankoknak, kriptovaluta-keresked\u0151knek adt\u00e1k ki magukat a t\u00e1mad\u00e1s m\u00f6g\u00f6tt \u00e1ll\u00f3 felek, \u00e9s k\u00fcl\u00f6nf\u00e9le adatokat, p\u00e9ld\u00e1ul SMS-eket loptak a megfert\u0151z\u00f6tt eszk\u00f6z\u00f6kr\u0151l.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"560\" height=\"315\" src=\"https:\/\/life.karpat.in.ua\/wp-content\/uploads\/2023\/12\/android.jpg\" alt=\"\" class=\"wp-image-174340\" style=\"width:752px;height:auto\" srcset=\"https:\/\/life.karpat.in.ua\/wp-content\/uploads\/2023\/12\/android.jpg 560w, https:\/\/life.karpat.in.ua\/wp-content\/uploads\/2023\/12\/android-300x169.jpg 300w\" sizes=\"auto, (max-width: 560px) 100vw, 560px\" \/><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\">A k\u00e1rtev\u0151 leg\u00fajabb mut\u00e1ci\u00f3j\u00e1t a ThreatFabric kutat\u00f3i \u00edrt\u00e1k le, akik egy ideje m\u00e1r k\u00f6vetik a Kam\u00e9leont. Mint kifejtik, jelenleg egy Zombinderen terjesztik a k\u00e1rtev\u0151t \u2013 ez egy olyan platform, ami legitimnek t\u0171n\u0151 androidos alkalmaz\u00e1sokhoz \u201eragaszt\u201d k\u00e1rtev\u0151ket.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Ennek az a vesz\u00e9lye, hogy az ilyen, fert\u0151z\u00f6tt appok alapvet\u0151en \u00fagy m\u0171k\u00f6dnek felhaszn\u00e1l\u00f3i szemsz\u00f6gb\u0151l, ahogyan az elv\u00e1rhat\u00f3 \u2013 mit sem sejtve a h\u00e1tt\u00e9rben fut\u00f3 k\u00e1ros k\u00f3dr\u00f3l. R\u00e1ad\u00e1sul annyira \u00fcgyesen teszik ezt, hogy a k\u00fcl\u00f6nb\u00f6z\u0151 v\u00e9delmi szolg\u00e1ltat\u00e1sok \u2013 Google Play Protect, v\u00edruskeres\u0151k \u2013 el\u0151tt is rejtve tudnak maradni.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">De visszakanyarodva a Kam\u00e9leonhoz: ez\u00fattal legitimnek t\u0171n\u0151 Chrome b\u00f6ng\u00e9sz\u0151vel terjesztik, \u00e9s az Android 13 \u00e9s 14 rendszereket lehet t\u00e1madni vele. A Play \u00c1ruh\u00e1zon k\u00edv\u00fclr\u0151l telep\u00edtett, fert\u0151z\u00f6tt Chrome els\u0151 ind\u00edt\u00e1sakor enged\u00e9lyt k\u00e9r a kiseg\u00edt\u0151 szolg\u00e1ltat\u00e1sokhoz, \u00edgy megker\u00fclve a rendszer v\u00e9delmi vonalait.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A dolog ezut\u00e1n kezd komolyra fordulni: a k\u00e1rtev\u0151 a kiseg\u00edt\u0151 lehet\u0151s\u00e9gek r\u00e9v\u00e9n le\u00e1ll\u00edtja a biometrikus (ujjlenyomat- vagy arcalap\u00fa) azonos\u00edt\u00e1si m\u00f3dszereket. Ezzel megk\u00f6veteli, hogy a felhaszn\u00e1l\u00f3 a jelk\u00f3dos vagy a jelsz\u00f3alap\u00fa azonos\u00edt\u00e1sra t\u00e9rjen \u00e1t, \u00e9s az els\u0151 be\u00edr\u00e1sakor el is lopja ezeket a be\u00edrt hiteles\u00edt\u0151 adatokat \u2013 \u00edrja a \/Bleeping Computer.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A Kam\u00e9leon k\u00e9s\u0151bb a megszerzett adatokkal \u00f6nk\u00e9nyesen feloldhatja az eszk\u00f6zt, vagy \u00edgy leplezze a k\u00e1rt\u00e9kony t\u00e9nyked\u00e9s\u00e9t. \u00dcgyes m\u00f3dszerekkel sz\u00e1mos dolgot el tud v\u00e9gezni a h\u00e1tt\u00e9rben, \u00e9s t\u00e9nyleg szinte b\u00e1rmihez hozz\u00e1f\u00e9r \u2013 tal\u00e1n mondanunk sem kell, hogy a banki adatainkra ez mekkora vesz\u00e9lyt jelent.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A vesz\u00e9ly elker\u00fcl\u00e9se ugyanakkor nagyon egyszer\u0171: aki nem \u00e9rt komolyabban a technol\u00f3gi\u00e1hoz \u00e9s nem biztos mag\u00e1ban, soha ne telep\u00edtsen alkalmaz\u00e1sokat a Play \u00c1ruh\u00e1zon k\u00edv\u00fcli forr\u00e1sb\u00f3l, ugyanis sosem tudni, milyen k\u00e1rtev\u0151ket juttat vele a k\u00e9sz\u00fcl\u00e9k\u00e9re.<\/p>\n\n\n\n<p class=\"has-text-align-right wp-block-paragraph\"><strong><a href=\"https:\/\/m.hvg.hu\/tudomany\/20231228_kameleon_androidos_kartevo_virus_banki_trojai_alkalmazas_fertozott_chrome_bongeszo_apk_fajl_adatok_ellopasa_biometrikus_azonositas_kikapcsolasa\" target=\"_blank\" rel=\"noreferrer noopener\">(hvg.hu)<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kam\u00e9leon (Chameleon): a kedvesnek t\u0171n\u0151 n\u00e9v m\u00f6g\u00f6tt igaz\u00e1b\u00f3l egy vesz\u00e9lyes androidos k\u00e1rtev\u0151 \u00e1ll, mely cseles technik\u00e1kkal igyekszik ir\u00e1ny\u00edt\u00e1st szerezni a k\u00e9sz\u00fcl\u00e9k\u00fcnk felett. A c\u00e9l a banki adatok megszerz\u00e9se, de sok m\u00e1sra is k\u00e9pes lehet, ha nem figyel az ember.<\/p>\n","protected":false},"author":12,"featured_media":174340,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[41,596,590,11,592,39],"tags":[717575,717577,717574,28463,1128],"class_list":["post-174339","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cikkek","category-erdekes","category-it-hu","category-kiemelt-tema","category-tarsadalom","category-vilag","tag-bankszamlaadatok","tag-belepesi-adatok","tag-kameleon","tag-lopas","tag-virus-2"],"_links":{"self":[{"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/174339","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=174339"}],"version-history":[{"count":1,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/174339\/revisions"}],"predecessor-version":[{"id":174341,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/174339\/revisions\/174341"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=\/wp\/v2\/media\/174340"}],"wp:attachment":[{"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=174339"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=174339"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/life.karpat.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=174339"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}