{"id":12495,"date":"2026-03-07T11:32:13","date_gmt":"2026-03-07T11:32:13","guid":{"rendered":"https:\/\/www.europesays.com\/sk\/12495\/"},"modified":"2026-03-07T11:32:13","modified_gmt":"2026-03-07T11:32:13","slug":"pred-naskenovanim-qr-kodu-sa-radsej-zastav-analytici-odhalili-vlnu-utokov-ktore-kradnu-ucty-peniaze-aj-data-vosveteit-sk","status":"publish","type":"post","link":"https:\/\/www.europesays.com\/sk\/12495\/","title":{"rendered":"Pred naskenovan\u00edm QR k\u00f3du sa rad\u0161ej zastav. Analytici odhalili vlnu \u00fatokov, ktor\u00e9 kradn\u00fa \u00fa\u010dty, peniaze aj d\u00e1ta | Vosveteit.sk"},"content":{"rendered":"

QR k\u00f3dy sa stali be\u017enou s\u00fa\u010das\u0165ou ka\u017edodenn\u00e9ho \u017eivota. Zaplat\u00ed\u0161 nimi \u00fa\u010det v re\u0161taur\u00e1cii, otvor\u00ed\u0161 menu alebo sa prihl\u00e1si\u0161 do slu\u017eby. Pr\u00e1ve t\u00e1to jednoduchos\u0165 v\u0161ak vytvorila priestor pre nov\u00fd typ podvodu. Bezpe\u010dnostn\u00ed analytici z Unit 42<\/a>\u00a0upozornili, \u017ee \u00fato\u010dn\u00edci za\u010dali t\u00fato met\u00f3du \u00fatoku vo ve\u013ekom zneu\u017e\u00edva\u0165 na phishing a \u0161\u00edrenie \u0161kodliv\u00e9ho softv\u00e9ru.<\/p>\n

Anal\u00fdza uk\u00e1zala pomerne zauj\u00edmav\u00e9 \u010d\u00edsla. Bezpe\u010dnostn\u00e9 syst\u00e9my zaznamenali viac ne\u017e 11-tis\u00edc \u0161kodliv\u00fdch QR k\u00f3dov<\/a> denne. \u00dato\u010dn\u00edci pritom pou\u017e\u00edvaj\u00fa viacero techn\u00edk, od skr\u00e1ten\u00fdch odkazov a\u017e po prepojenie s mobiln\u00fdmi aplik\u00e1ciami.<\/p>\n

<\/p>\n

<\/p>\n

Odoberaj Vosveteit.sk cez Telegram a prihl\u00e1s sa k odberu spr\u00e1v
\n <\/a><\/p>\n

\u201eQR k\u00f3dy dnes dok\u00e1\u017eu spusti\u0165 ove\u013ea viac ne\u017e len otvorenie webovej str\u00e1nky,\u201c vysvet\u013euj\u00fa autori \u0161t\u00fadie: \u201eM\u00f4\u017eu aktivova\u0165 funkcie aplik\u00e1ci\u00ed alebo presmerova\u0165 pou\u017e\u00edvate\u013ea na \u00faplne in\u00e9 miesto, ne\u017e o\u010dak\u00e1va.\u201c<\/p>\n

QR k\u00f3dy u\u017e pou\u017e\u00edvaj\u00fa aj skr\u00e1ten\u00e9 odkazy, podobne ako pri phishingov\u00fdch linkoch<\/p>\n

Jedna z naj\u010dastej\u0161\u00edch takt\u00edk vyu\u017e\u00edva slu\u017eby na skracovanie QR k\u00f3dov. Tie funguj\u00fa podobne ako klasick\u00e9 skracova\u010de webov\u00fdch adries.<\/p>\n

\"Bezpe\u010dnostn\u00ed\"Bezpe\u010dnostn\u00edZdroj: Unit 42<\/a><\/p>\n

\u00dato\u010dn\u00edk vytvor\u00ed QR k\u00f3d, ktor\u00fd najsk\u00f4r vedie na legit\u00edmne vyzeraj\u00facu slu\u017ebu. T\u00e1 n\u00e1sledne presmeruje obe\u0165 na phishingov\u00fa str\u00e1nku. V\u00fdhodou pre \u00fato\u010dn\u00edka zost\u00e1va mo\u017enos\u0165 kedyko\u013evek zmeni\u0165 cie\u013eov\u00fa adresu. Tak\u00fdto mechanizmus v\u00fdrazne komplikuje kontrolu odkazu. Aj \u010dlovek, ktor\u00fd si pozrie n\u00e1h\u013ead URL, \u010dasto neuvid\u00ed kone\u010dn\u00fa str\u00e1nku.<\/p>\n

V\u00fdskumn\u00edci zaznamenali aj rast pou\u017e\u00edvania t\u00fdchto slu\u017eieb. Prev\u00e1dzka QR skracova\u010dov vzr\u00e1stla o 55 % medzi rokmi 2023 a 2024 a o \u010fal\u0161\u00edch 44 % v roku 2025.<\/p>\n

Neprehliadni
\n <\/p>\n

\"Tvoje\"Tvoje <\/p>\n

\n\t\t\t\t\tPopul\u00e1rna spravodajsk\u00e1 aplik\u00e1cia pre iOS a Android dostala ve\u013ek\u00fa aktualiz\u00e1ciu. Pribudlo mno\u017estvo nov\u00fdch funkci\u00ed, ktor\u00e9 mus\u00ed\u0161 vysk\u00fa\u0161a\u0165 <\/p>\n

<\/a><\/p>\n

Naj\u010dastej\u0161ie zneu\u017e\u00edvan\u00e9 slu\u017eby zah\u0155\u0148aj\u00fa napr\u00edklad:<\/p>\n

Najviac zasiahnut\u00fdm odvetv\u00edm sa stali finan\u010dn\u00e9 slu\u017eby. Takmer 29 % \u00fatokov smerovalo pr\u00e1ve na banky alebo finan\u010dn\u00e9 platformy.<\/p>\n

Touto cestou m\u00f4\u017eu hackeri ovl\u00e1dnu\u0165 aj aplik\u00e1ciu v tvojom smartf\u00f3ne<\/p>\n

Druh\u00fd typ \u00fatoku vyu\u017e\u00edva takzvan\u00e9 deep linky. Ide o \u0161peci\u00e1lne odkazy, ktor\u00e9 otvoria konkr\u00e9tnu funkciu priamo v mobilnej aplik\u00e1cii.<\/p>\n

\u00dato\u010dn\u00edk napr\u00edklad vytvor\u00ed QR k\u00f3d, ktor\u00fd po naskenovan\u00ed spust\u00ed proces prihl\u00e1senia do aplik\u00e1cie. Obe\u0165 tak m\u00f4\u017ee nevedomky povoli\u0165 pr\u00edstup k svojmu \u00fa\u010dtu.<\/p>\n

\"Bezpe\u010dnostn\u00ed\"Bezpe\u010dnostn\u00edZdroj: Unit 42<\/a><\/p>\n

V\u00fdskumn\u00edci zaznamenali tis\u00edce tak\u00fdchto pr\u00edpadov. Naj\u010dastej\u0161ie sa objavili odkazy pre komunika\u010dn\u00e9 aplik\u00e1cie.<\/p>\n

\u201ePribli\u017ene jeden z piatich Telegram QR k\u00f3dov s prihlasovac\u00edm odkazom smeruje na \u0161kodliv\u00fa str\u00e1nku,\u201c uviedli autori anal\u00fdzy.<\/p>\n

\u00datoky sa zamerali najm\u00e4 na tieto slu\u017eby:<\/p>\n

Telegram
\nSignal
\nWhatsApp
\nLine<\/p>\n

Po pripojen\u00ed nov\u00e9ho zariadenia k \u00fa\u010dtu z\u00edskal \u00fato\u010dn\u00edk pr\u00edstup k spr\u00e1vam a \u010fal\u0161\u00edm \u00fadajom. Niektor\u00e9 kampane sa dokonca zamerali na konkr\u00e9tne regi\u00f3ny. Bezpe\u010dnostn\u00e9 t\u00edmy zaznamenali oper\u00e1cie, ktor\u00e9 cielili na pou\u017e\u00edvate\u013eov Signal v Ukrajine.<\/p>\n

\u00dato\u010dn\u00edci cez QR k\u00f3dy in\u0161talovali aj \u0161kodliv\u00e9 aplik\u00e1cie<\/p>\n

\u010eal\u0161\u00ed typ \u00fatoku obi\u0161iel kontrolu ofici\u00e1lnych obchodov s aplik\u00e1ciami. \u00dato\u010dn\u00edci vytvorili QR k\u00f3d, ktor\u00fd presmeroval pou\u017e\u00edvate\u013ea priamo na stiahnutie s\u00faboru APK pre Android.<\/p>\n

Tak\u00fdto s\u00fabor sa nain\u0161taluje mimo Google Play<\/a> a bezpe\u010dnostn\u00e9 kontroly ho nezachytia.<\/p>\n

Anal\u00fdza zaznamenala 59-tis\u00edc str\u00e1nok, ktor\u00e9 distribuovali aplik\u00e1cie t\u00fdmto sp\u00f4sobom. V\u00fdskumn\u00edci identifikovali 1 457 r\u00f4znych APK s\u00faborov.<\/p>\n

Mnoh\u00e9 z t\u00fdchto APK s\u00faborov sa tv\u00e1rili ako \u00faplne be\u017en\u00e9 aplik\u00e1cie, ktor\u00e9 by si si stiahol aj leg\u00e1lne. \u010cast\u00fd trik s\u00fa kas\u00ednov\u00e9 hry a st\u00e1vkov\u00e9 appky, preto\u017ee pri nich \u013eudia o\u010dak\u00e1vaj\u00fa \u201er\u00fdchlu registr\u00e1ciu\u201c a \u010dasto im neprek\u00e1\u017ea ani to, \u017ee sa \u0161\u00edria mimo ofici\u00e1lnych obchodov. \u00dato\u010dn\u00edk vie navy\u0161e vyu\u017ei\u0165 tlak na impulz\u00edvne spr\u00e1vanie, napr\u00edklad s\u013eubuje bonus za prv\u00fd vklad alebo v\u00fdhodu \u201elen dnes\u201c, a QR k\u00f3d p\u00f4sob\u00ed ako jednoduch\u00e1 skratka k stiahnutiu.<\/p>\n

\"Bezpe\u010dnostn\u00ed\"Bezpe\u010dnostn\u00edZdroj: Unit 42<\/a><\/p>\n

\u010eal\u0161ia popul\u00e1rna maska s\u00fa \u201eoptimaliza\u010dn\u00e9\u201c aplik\u00e1cie pre telef\u00f3n (\u010disti\u010de, zr\u00fdch\u013eova\u010de, spr\u00e1vcovia bat\u00e9rie) a r\u00f4zne soci\u00e1lne siete \u010di komunitn\u00e9 platformy. Tento typ appiek \u010dasto \u017eiada ve\u013ea opr\u00e1vnen\u00ed u\u017e z princ\u00edpu (\u00falo\u017eisko, kontakty, kamera, notifik\u00e1cie), tak\u017ee podozriv\u00e9 po\u017eiadavky nep\u00f4sobia tak n\u00e1padne. St\u00e1le plat\u00ed, \u017ee ak aplik\u00e1cia z\u00edskava pr\u00edstup k s\u00faborom, fotk\u00e1m alebo dokonca mikrof\u00f3nu, \u00fato\u010dn\u00edk dost\u00e1va priestor na zber citliv\u00fdch \u00fadajov, agres\u00edvnu reklamu alebo \u010fal\u0161ie \u201edoin\u0161talovanie\u201c vec\u00ed, ktor\u00e9 si nep\u00fdtal.<\/p>\n

Tieto aplik\u00e1cie \u010dasto po\u017eiadali o \u0161irok\u00e9 opr\u00e1vnenia, napr\u00edklad pr\u00edstup ku kamere, polohe alebo \u00falo\u017eisku zariadenia.<\/p>\n

Bezpe\u010dnostn\u00ed analytici upozornili, \u017ee podobn\u00e9 aplik\u00e1cie \u010dasto zobrazuj\u00fa agres\u00edvnu reklamu alebo zhroma\u017e\u010fuj\u00fa citliv\u00e9 \u00fadaje.<\/p>\n

\u0160kodliv\u00e9 QR k\u00f3dy nemusia vyzera\u0165 ako jednoduch\u00e9 \u010diernobiele k\u00f3dy<\/p>\n

Nov\u0161\u00ed trend vyu\u017e\u00edva vizu\u00e1lne upraven\u00e9 QR k\u00f3dy. V\u010faka n\u00e1strojom umelej inteligencie vznikaj\u00fa k\u00f3dy, ktor\u00e9 vyzeraj\u00fa ako grafika alebo logo firmy.<\/p>\n

Tak\u00e9to QR k\u00f3dy nep\u00f4sobia ako technick\u00fd prvok, ale sk\u00f4r ako s\u00fa\u010das\u0165 dizajnu plag\u00e1tu alebo reklamy. Be\u017en\u00fd \u010dlovek preto nem\u00e1 d\u00f4vod spozornie\u0165.<\/p>\n

Grafick\u00e9 \u00fapravy navy\u0161e komplikuj\u00fa anal\u00fdzu bezpe\u010dnostn\u00fdm n\u00e1strojom, ktor\u00e9 sa sna\u017eia z k\u00f3du extrahova\u0165 skryt\u00fd odkaz.<\/p>\n

\"Bezpe\u010dnostn\u00ed\"Bezpe\u010dnostn\u00edZdroj: Unit 42<\/a>
\nPozor, nejde len o internetov\u00fa hrozbu<\/p>\n

QR phishing sa ne\u0161\u00edri len na internete. \u00dato\u010dn\u00edci vyu\u017e\u00edvaj\u00fa aj ve\u013emi jednoduch\u00fd trik, prelepovanie legit\u00edmnych QR k\u00f3dov n\u00e1lepkami. Tento scen\u00e1r sa objavuje napr\u00edklad na parkovisk\u00e1ch, pri nab\u00edja\u010dk\u00e1ch elektromobilov, na verejn\u00fdch informa\u010dn\u00fdch tabuliach alebo v re\u0161taur\u00e1ci\u00e1ch. <\/p>\n

\u00dato\u010dn\u00edk nalep\u00ed vlastn\u00fd QR k\u00f3d priamo na existuj\u00facu tabu\u013eu, tak\u017ee \u010dlovek m\u00e1 pocit, \u017ee skenuje ofici\u00e1lny k\u00f3d mesta alebo prev\u00e1dzky. V skuto\u010dnosti sa v\u0161ak otvor\u00ed phishingov\u00e1 str\u00e1nka, ktor\u00e1 m\u00f4\u017ee vyzera\u0165 \u00faplne d\u00f4veryhodne.<\/p>\n

V\u00fdskumn\u00edci preto odpor\u00fa\u010daj\u00fa jednoduch\u00e9 pravidl, ku QR k\u00f3dom pristupova\u0165 rovnako opatrne ako k podozriv\u00fdm odkazom v e-mailoch. Riziko rastie najm\u00e4 vtedy, ke\u010f sa k\u00f3d objav\u00ed v ne\u010dakanej spr\u00e1ve, str\u00e1nka po naskenovan\u00ed vy\u017eiada prihl\u00e1senie do aplik\u00e1cie alebo pon\u00fakne stiahnutie aplik\u00e1cie mimo ofici\u00e1lneho obchodu. Pozornos\u0165 si zasl\u00fa\u017eia aj k\u00f3dy, ktor\u00e9 vyzeraj\u00fa ako dodato\u010dne nalepen\u00e9 n\u00e1lepky. <\/p>\n

Pou\u017e\u00edvatelia \u010dasto o\u010dak\u00e1vaj\u00fa, \u017ee QR k\u00f3d otvor\u00ed oby\u010dajn\u00fa str\u00e1nku, upozor\u0148uj\u00fa bezpe\u010dnostn\u00ed analytici. V skuto\u010dnosti v\u0161ak m\u00f4\u017ee aktivova\u0165 r\u00f4zne funkcie zariadenia alebo aplik\u00e1ci\u00ed.<\/p>\n


\n
\n
\n
\n
\n
\n P\u00e1\u010dil sa v\u00e1m \u010dl\u00e1nok? Sledujte n\u00e1s na Facebooku
\n
\n <\/a> <\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"QR k\u00f3dy sa stali be\u017enou s\u00fa\u010das\u0165ou ka\u017edodenn\u00e9ho \u017eivota. Zaplat\u00ed\u0161 nimi \u00fa\u010det v re\u0161taur\u00e1cii, otvor\u00ed\u0161 menu alebo sa prihl\u00e1si\u0161…\n","protected":false},"author":2,"featured_media":12496,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[15],"tags":[501,70,6402,4724,1928,838,6403,6404,6405,6406,43,40,39,42,41,6407,6408,6360,71],"class_list":{"0":"post-12495","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-zabava","8":"tag-aplikacie","9":"tag-entertainment","10":"tag-falosne-stranky","11":"tag-hackeri","12":"tag-hrozba","13":"tag-internet","14":"tag-ochrana","15":"tag-phishing","16":"tag-qr-kod","17":"tag-quishing","18":"tag-sk","19":"tag-slovak","20":"tag-slovakia","21":"tag-slovencina","22":"tag-slovensko","23":"tag-stranka","24":"tag-utocnici","25":"tag-uzivatelia","26":"tag-zabava"},"share_on_mastodon":{"url":"https:\/\/pubeurope.com\/@sk\/116187676283577152","error":""},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts\/12495","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/comments?post=12495"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts\/12495\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/media\/12496"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/media?parent=12495"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/categories?post=12495"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/tags?post=12495"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}