{"id":8336,"date":"2025-02-06T20:20:10","date_gmt":"2025-02-06T20:20:10","guid":{"rendered":"https:\/\/howtogeek.blog\/cs\/?p=8336"},"modified":"2025-02-06T20:20:10","modified_gmt":"2025-02-06T20:20:10","slug":"first-instances-of-malwareinfected-ios-apps-with-screen-reading-capabilities-discovered-in-app-store","status":"publish","type":"post","link":"https:\/\/howtogeek.blog\/cs\/first-instances-of-malwareinfected-ios-apps-with-screen-reading-capabilities-discovered-in-app-store\/","title":{"rendered":"Prvn\u00ed instance aplikac\u00ed pro iOS infikovan\u00fdch malwarem s mo\u017enostmi \u010dten\u00ed obrazovky objeven\u00fdmi v App Store"},"content":{"rendered":"

Vznikaj\u00edc\u00ed hrozba: Malware objeven v aplikac\u00edch pro iOS z Apple App Store a Google Play Store<\/h2>\n

V\u011bt\u0161ina u\u017eivatel\u016f iPhon\u016f v\u011b\u0159\u00ed, \u017ee jejich za\u0159\u00edzen\u00ed si p\u0159i stahov\u00e1n\u00ed aplikac\u00ed udr\u017e\u00ed robustn\u00ed \u0161t\u00edt proti malwaru. Historicky to bylo podporov\u00e1no p\u0159\u00edsn\u00fdm procesem prov\u011b\u0159ov\u00e1n\u00ed aplikac\u00ed spole\u010dnosti Apple. Ned\u00e1vn\u00e1 zpr\u00e1va spole\u010dnosti Kaspersky v\u0161ak odhaluje znepokojiv\u00fd pr\u016flom v zabezpe\u010den\u00ed mobiln\u00edch za\u0159\u00edzen\u00ed: v App Store se poprv\u00e9 objevily instance malwaru iOS, kter\u00fd obsahuje technologii OCR zam\u011b\u0159enou na extrahov\u00e1n\u00ed citliv\u00fdch informac\u00ed ze sn\u00edmk\u016f obrazovky u\u017eivatel\u016f.<\/p>\n

Pochopen\u00ed malwaru SparkCat<\/h2>\n

Podle zji\u0161t\u011bn\u00ed spole\u010dnosti Kaspersky je tento malware \u2013 p\u0159ezd\u00edvan\u00fd \u201eSparkCat\u201c aktivn\u00ed od b\u0159ezna 2024 a byl identifikov\u00e1n v n\u011bkolika aplikac\u00edch v Apple App Store a Google Play Store. Tento sofistikovan\u00fd malware vyu\u017e\u00edv\u00e1 plugin OCR odvozen\u00fd z knihovny ML Kit spole\u010dnosti Google, kter\u00fd mu umo\u017e\u0148uje skenovat a \u010d\u00edst text extrahovan\u00fd ze sn\u00edmk\u016f obrazovky ulo\u017een\u00fdch ve fotogalerii za\u0159\u00edzen\u00ed.<\/p>\n

Prim\u00e1rn\u00ed hrozba: Zabezpe\u010den\u00ed pen\u011b\u017eenky kryptom\u011bn<\/h2>\n

Prim\u00e1rn\u00ed c\u00edl malwaru SparkCat je alarmuj\u00edc\u00ed: vyhled\u00e1v\u00e1 fr\u00e1ze pro obnoven\u00ed pro kryptopen\u011b\u017eenky ulo\u017een\u00e9 jako obr\u00e1zky. Jakmile jsou tyto obnovovac\u00ed fr\u00e1ze identifikov\u00e1ny, mohou b\u00fdt p\u0159ed\u00e1ny \u00fato\u010dn\u00edkovi, kter\u00fd pak m\u016f\u017ee p\u0159evz\u00edt kontrolu nad kryptopen\u011b\u017eenkou, co\u017e vede k potenci\u00e1ln\u00ed kr\u00e1de\u017ei cenn\u00fdch kryptom\u011bn. Pro u\u017eivatele, kte\u0159\u00ed jsou zvykl\u00ed na zabezpe\u010den\u00ed sv\u00fdch pen\u011b\u017eenek, je t\u0159eba poznamenat, \u017ee d\u016fvtipn\u00ed jedinci obvykle vid\u00ed obnovovac\u00ed nebo po\u010d\u00e1te\u010dn\u00ed fr\u00e1zi pouze jednou b\u011bhem vytv\u00e1\u0159en\u00ed pen\u011b\u017eenky a d\u016frazn\u011b se doporu\u010duje uchov\u00e1vat tyto d\u016fle\u017eit\u00e9 informace na bezpe\u010dn\u00e9m offline m\u00edst\u011b, nikoli jako sn\u00edmek obrazovky.<\/p>\n

\u0160ir\u0161\u00ed d\u016fsledky pro bezpe\u010dnost dat<\/h3>\n

Zat\u00edmco zac\u00edlen\u00ed na fr\u00e1ze kryptopen\u011b\u017eenky je prim\u00e1rn\u00edm c\u00edlem, kapacita malwaru p\u0159esahuje kryptom\u011bny. Dok\u00e1\u017ee tak\u00e9 vyhled\u00e1vat a zachycovat dal\u0161\u00ed citliv\u00e1 hesla, \u010d\u00edm\u017e vytv\u00e1\u0159\u00ed \u0161ir\u0161\u00ed riziko pro zabezpe\u010den\u00ed u\u017eivatelsk\u00fdch dat nap\u0159\u00ed\u010d r\u016fzn\u00fdmi platformami.<\/p>\n

Dot\u010den\u00e9 aplikace: Na co si d\u00e1t pozor<\/h2>\n

Mezi aplikacemi kompromitovan\u00fdmi t\u00edmto malwarem jsou:<\/p>\n