{"id":21775,"date":"2026-03-18T11:37:31","date_gmt":"2026-03-18T11:37:31","guid":{"rendered":"https:\/\/www.europesays.com\/sk\/21775\/"},"modified":"2026-03-18T11:37:31","modified_gmt":"2026-03-18T11:37:31","slug":"novy-bankovy-trojan-pixpirate-utoci-na-nase-penazenky-takto-si-pocka-na-tvoju-platbu-a-peniaze-presmeruje-inde-vosveteit-sk","status":"publish","type":"post","link":"https:\/\/www.europesays.com\/sk\/21775\/","title":{"rendered":"Nov\u00fd bankov\u00fd trojan PixPirate \u00fato\u010d\u00ed na na\u0161e pe\u0148a\u017eenky. Takto si po\u010dk\u00e1 na tvoju platbu a peniaze presmeruje inde | Vosveteit.sk"},"content":{"rendered":"

Kyberbezpe\u010dnostn\u00ed analytici zo Zimperium<\/a> upozornili na nov\u00fd typ bankov\u00e9ho malv\u00e9ru pre Android, ktor\u00fd s\u00edce vznikol v Braz\u00edlii, no odvtedy sa preniesol aj do Eur\u00f3py, vr\u00e1tane Slovenska. Nejde pritom o klasick\u00fd v\u00edrus, ktor\u00fd sa sna\u017e\u00ed potichu zbiera\u0165 \u00fadaje. Tento \u00fatok cieli na konkr\u00e9tny moment, chv\u00ed\u013eu, ke\u010f odosiela\u0161 peniaze<\/p>\n

Braz\u00edlsky syst\u00e9m PIX funguje podobne ako okam\u017eit\u00e9 SEPA platby, ktor\u00e9 funguj\u00fa u n\u00e1s. Peniaze sa presun\u00fa v priebehu sek\u00fand a mo\u017enos\u0165 vr\u00e1tenia prakticky neexistuje. Pr\u00e1ve na t\u00fato vlastnos\u0165 sa cel\u00fd \u00fatok spolieha. \u00dato\u010dn\u00edk nepotrebuje prelomi\u0165 banku ani zabezpe\u010denie. Sta\u010d\u00ed mu zasiahnu\u0165 presne v momente, ke\u010f transakciu potvrd\u00ed\u0161.<\/p>\n

<\/p>\n

<\/p>\n

Odoberaj Vosveteit.sk cez Telegram a prihl\u00e1s sa k odberu spr\u00e1v
\n <\/a><\/p>\n

Cel\u00fd scen\u00e1r za\u010d\u00edna nen\u00e1padne. Stiahne\u0161 si aplik\u00e1ciu, ktor\u00e1 p\u00f4sob\u00ed d\u00f4veryhodne. M\u00f4\u017ee \u00eds\u0165 o kuri\u00e9rsku slu\u017ebu, banku, cestovn\u00fa aplik\u00e1ciu alebo antiv\u00edrus. Str\u00e1nka, z ktorej ju z\u00edska\u0161, vyzer\u00e1 ako Google Play, m\u00e1 rovnak\u00fd dizajn aj hodnotenia. Rozdiel si prakticky nem\u00e1\u0161 \u0161ancu v\u0161imn\u00fa\u0165. Aplik\u00e1cia v\u0161ak nepoch\u00e1dza z ofici\u00e1lneho zdroja.<\/p>\n

\"priklad\"prikladZdroj: zimperium.com, pr\u00edklad podvonej aplik\u00e1cie<\/p>\n

Po spusten\u00ed \u0165a vyzve na zapnutie slu\u017eby pr\u00edstupnosti. T\u00e1to funkcia<\/a> m\u00e1 legit\u00edmne vyu\u017eitie, no z\u00e1rove\u0148 d\u00e1va aplik\u00e1cii mo\u017enos\u0165 \u010d\u00edta\u0165 obsah obrazovky a ovl\u00e1da\u0165 telef\u00f3n. \u00dato\u010dn\u00edci v tomto pr\u00edpade za\u0161li e\u0161te o krok \u010falej a do podvodnej aplik\u00e1cie implementovali spr\u00e1vu \u201eToto opr\u00e1vnenie sl\u00fa\u017ei len na funkcie aplik\u00e1cie. \u017diadne osobn\u00e9 \u00fadaje sa nezbieraj\u00fa\u201c. T\u00e1 mala u\u017e\u00edvate\u013eov upokoji\u0165, no ke\u010f povolenie potvrdili, malv\u00e9r z\u00edskal pr\u00edstup k najcitlivej\u0161\u00edm \u00fadajom.<\/p>\n

Malv\u00e9r zo za\u010diatku pracuje nen\u00e1padne<\/p>\n

Bezpe\u010dnostn\u00ed analytici varuj\u00fa, \u017ee po tomto kroku sa ni\u010d n\u00e1padn\u00e9 nestane. Telef\u00f3n funguje norm\u00e1lne, aplik\u00e1cia nevyvol\u00e1 podozrenie. Malv\u00e9r toti\u017e ne\u00fato\u010d\u00ed okam\u017eite, najprv sleduje prostredie. V pozad\u00ed za\u010dne streamova\u0165 obrazovku na server \u00fato\u010dn\u00edka, tak\u017ee niekto vid\u00ed v re\u00e1lnom \u010dase v\u0161etko, \u010do rob\u00ed\u0161.<\/p>\n

Neprehliadni
\n <\/p>\n

\"Tvoje\"Tvoje <\/p>\n

\n\t\t\t\t\tPopul\u00e1rna spravodajsk\u00e1 aplik\u00e1cia pre iOS a Android dostala ve\u013ek\u00fa aktualiz\u00e1ciu. Pribudlo mno\u017estvo nov\u00fdch funkci\u00ed, ktor\u00e9 mus\u00ed\u0161 vysk\u00fa\u0161a\u0165 <\/p>\n

<\/a><\/p>\n

Okrem toho m\u00e1 e\u0161te jednu funkciu, o ktorej sa menej hovor\u00ed. Ke\u010f pr\u00e1ve \u201ene\u010dak\u00e1\u201c na tvoju platbu, vyu\u017e\u00edva v\u00fdkon telef\u00f3nu na \u0165a\u017eenie kryptomeny Monero. Rob\u00ed to inteligentnej\u0161ie, ne\u017e v\u00e4\u010d\u0161ina \u201eminerov\u201c na internete. Podvodn\u00e1 aplik\u00e1cia sleduje teplotu zariadenia aj stav bat\u00e9rie<\/a>. Ak sa teploty zdvihn\u00fa alebo spotreba bat\u00e9rie narastie, miner sa vie ukon\u010di\u0165, aby nevzbudil podozrenie a v syst\u00e9me mohol osta\u0165 \u010do najdlh\u0161ie. <\/p>\n

Znamen\u00e1 to, \u017ee aj ke\u010f nepou\u017e\u00edva\u0161 banku, telef\u00f3n pracuje pre niekoho in\u00e9ho, zar\u00e1ba mu kryptomeny a kv\u00f4li s\u00fastavn\u00e9mu za\u0165a\u017eeniu sa r\u00fdchlej\u0161ie opotreb\u00fava.<\/p>\n

\"Rusko\"RuskoZdroj: citypng.com, vosveteit.sk (kol\u00e1\u017e)
\n\u0160kodliv\u00e1 \u010dinnos\u0165 sa za\u010dne v momente, ke\u010f otvor\u00ed\u0161 banku<\/p>\n

Rozhoduj\u00faci moment pr\u00edde a\u017e vtedy, ke\u010f otvor\u00ed\u0161 bankov\u00fa aplik\u00e1ciu a zad\u00e1\u0161 platbu. Malv\u00e9r<\/a> sleduje text na obrazovke a vyh\u013ead\u00e1va sign\u00e1ly, \u017ee ide o transakciu. Ke\u010f ich rozpozn\u00e1, za\u010d\u00edna so \u0161kodlivou \u010dinnos\u0165ou. Na displeji sa objav\u00ed hl\u00e1\u0161ka \u201ePo\u010dkajte\u201c, ktor\u00e1 p\u00f4sob\u00ed ako be\u017en\u00e9 na\u010d\u00edtanie.<\/p>\n

V pozad\u00ed sa v\u0161ak odohr\u00e1 z\u00e1sadn\u00e1 zmena. \u00dato\u010dn\u00edk prep\u00ed\u0161e \u00fadaje pr\u00edjemcu a aplik\u00e1cia n\u00e1sledne automaticky potvrd\u00ed transakciu. Ty vid\u00ed\u0161 len \u00faspe\u0161ne dokon\u010den\u00fa platbu.<\/p>\n

\u201e\u00dato\u010dn\u00edk sleduje obrazovku v re\u00e1lnom \u010dase a zasiahne presne v momente transakcie,\u201c varuj\u00fa bezpe\u010dnostn\u00ed analytici.<\/p>\n

Peniaze v\u0161ak od\u00eddu na \u00faplne in\u00fd \u00fa\u010det.<\/p>\n

Z Braz\u00edlie sa \u00fatok rozr\u00e1stol aj do Eur\u00f3py<\/p>\n

D\u00f4le\u017eit\u00e9 je pochopi\u0165, pre\u010do tento \u00fatok funguje aj na Slovensku. Nejde o konkr\u00e9tny syst\u00e9m PIX. Ide o princ\u00edp okam\u017eit\u00fdch platieb. SEPA Instant, mobiln\u00e9 bankovn\u00edctvo \u010di QR platby funguj\u00fa rovnako r\u00fdchlo a bez mo\u017enosti z\u00e1sahu po odoslan\u00ed. Malv\u00e9r pritom nepotrebuje pozna\u0165 konkr\u00e9tnu banku. Sleduje obrazovku a reaguje pod\u013ea toho, \u010do vid\u00ed.<\/p>\n

K\u00fdm m\u00e1 \u00fato\u010dn\u00edk pr\u00edstup k obrazovke, dok\u00e1\u017ee sa prisp\u00f4sobi\u0165 v\u00e4\u010d\u0161ine syst\u00e9mov.<\/p>\n

\u201eMalv\u00e9r nepotrebuje pozna\u0165 aplik\u00e1ciu. Sta\u010d\u00ed mu sledova\u0165 a kona\u0165 v spr\u00e1vnom momente,\u201c zhrnuli experti.<\/p>\n

Toto s\u00fa \u0161kodliv\u00e9 aplik\u00e1cie, ktor\u00e9 bezpe\u010dnostn\u00ed analytici zatia\u013e zaznamenali:<\/p>\n

Expedia: viagem, hotel, voo: sl\u00fa\u017ei ako dropper
\nSicredi X: vyd\u00e1va sa za banku Sicredi, obsahuje RAT aj dropper
\nCorreios: vyd\u00e1va sa za braz\u00edlsku po\u0161tu, obsahuje RAT aj dropper
\nReconhecimento XP: vyd\u00e1va sa za XP Investimentos, obsahuje RAT
\nSTJ: vyd\u00e1va sa za Najvy\u0161\u0161\u00ed s\u00fad Braz\u00edlie, sl\u00fa\u017ei ako dropper
\nCentral Ca\u00e7amba: lok\u00e1lne slu\u017eby zberu odpadu, obsahuje RAT
\nPARANA CA\u00c7AMBAS: region\u00e1lne slu\u017eby zberu odpadu, obsahuje RAT aj dropper
\nAvg Antivirus: vyd\u00e1va sa za AVG antiv\u00edrus, obsahuje RAT aj dropper
\nPILATESEMCASA: fitness aplik\u00e1cia, obsahuje RAT aj dropper<\/p>\n

Bezpe\u010dnostn\u00ed experti zo Zimperia z\u00e1rove\u0148 varuj\u00fa, \u017ee aplik\u00e1cie, ktor\u00e9 vid\u00ed\u0161 na zozname vy\u0161\u0161ie nie s\u00fa jedin\u00e9, ktor\u00e9 sa m\u00f4\u017eu na internete nach\u00e1dza\u0165. Kyberzlo\u010dinci neust\u00e1le prisp\u00f4sobuj\u00fa \u0161kodliv\u00e9 aplik\u00e1cie<\/a> trhu, na ktorom operuj\u00fa. V pr\u00edpade Slovenska sa m\u00f4\u017eu zamera\u0165 na lok\u00e1lne banky alebo aplik\u00e1cie, ktor\u00e9 operuj\u00fa na glob\u00e1lnom trhu.<\/p>\n

Preto si d\u00e1vaj pozor, odkia\u013e aplik\u00e1cie s\u0165ahuje\u0161. V\u017edy sa uisti, \u017ee si na ofici\u00e1lnej str\u00e1nke Google Play. Z\u00e1rove\u0148 kontroluj aj hodnotenia a recenzie.<\/p>\n

\"hacker\"hackerZdroj: Vosveteit.sk, AI
\nBezpe\u010dnostn\u00e9 funkcie postupne prich\u00e1dzaj\u00fa<\/p>\n

Technologick\u00e9 firmy u\u017e za\u010dali na hrozbu reagova\u0165. Google predstavil v testovacej verzii Androidu 17<\/a> nov\u00fd re\u017eim ochrany, ktor\u00fd dok\u00e1\u017ee blokova\u0165 podozriv\u00e9 aplik\u00e1cie \u017eiadaj\u00face pr\u00edstup k slu\u017eb\u00e1m pr\u00edstupnosti. Tento krok cieli priamo na podobn\u00e9 \u00fatoky, ktor\u00e9 zneu\u017e\u00edvaj\u00fa legit\u00edmne funkcie syst\u00e9mu.<\/p>\n

Aj dnes v\u0161ak existuje sp\u00f4sob, ako si nie\u010do v\u0161imn\u00fa\u0165. Modern\u00e9 Android zariadenia zobrazuj\u00fa indik\u00e1tor, ke\u010f aplik\u00e1cia nahr\u00e1va obrazovku. Ide o mal\u00fa ikonu kamery alebo zelen\u00fd bod v hornom rohu. Ak ju vid\u00ed\u0161 v momente, ke\u010f nenahr\u00e1va\u0161 video ani nezdie\u013ea\u0161 obrazovku, ide o varovn\u00fd sign\u00e1l.<\/p>\n

Cel\u00fd probl\u00e9m tak nestoj\u00ed na jednej konkr\u00e9tnej chybe, ale na kombin\u00e1cii d\u00f4very a opr\u00e1vnen\u00ed. Sta\u010d\u00ed jedna aplik\u00e1cia mimo ofici\u00e1lneho obchodu a jedno potvrdenie navy\u0161e. \u00dato\u010dn\u00edk potom nemus\u00ed ni\u010d l\u00e1ma\u0165 ani obch\u00e1dza\u0165. Sta\u010d\u00ed mu sledova\u0165 a zasiahnu\u0165 v spr\u00e1vnom momente.<\/p>\n


\n
\n
\n
\n
\n
\n P\u00e1\u010dil sa v\u00e1m \u010dl\u00e1nok? Sledujte n\u00e1s na Facebooku
\n
\n <\/a> <\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"Kyberbezpe\u010dnostn\u00ed analytici zo Zimperium upozornili na nov\u00fd typ bankov\u00e9ho malv\u00e9ru pre Android, ktor\u00fd s\u00edce vznikol v Braz\u00edlii, no…\n","protected":false},"author":2,"featured_media":8402,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[327,10610,10611,4724,10612,1036,4065,10613,10614,43,40,44,39,42,45,41,6408,6360],"class_list":{"0":"post-21775","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-slovensko","8":"tag-banky","9":"tag-falosne-aplikacie","10":"tag-google-play","11":"tag-hackeri","12":"tag-pixrevolution","13":"tag-platby","14":"tag-podvod","15":"tag-prepisanie-udajov","16":"tag-sepa","17":"tag-sk","18":"tag-slovak","19":"tag-slovak-republic","20":"tag-slovakia","21":"tag-slovencina","22":"tag-slovenska-republika","23":"tag-slovensko","24":"tag-utocnici","25":"tag-uzivatelia"},"share_on_mastodon":{"url":"https:\/\/pubeurope.com\/@sk\/116249981373405785","error":""},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts\/21775","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/comments?post=21775"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/posts\/21775\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/media\/8402"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/media?parent=21775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/categories?post=21775"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/sk\/wp-json\/wp\/v2\/tags?post=21775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}