• Home

  • Documents

  • Pasado, Presente y Futuro de los Troyanos Bancarios en Android -...
44
Pasado, Presente y Futuro de los Troyanos Bancarios en Android Carlos Andrés Castillo Londoño Intel Security (McAfee) [email protected]

Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

  • Upload
    others

  • View
    2

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Pasado, Presente y Futuro de los Troyanos Bancarios en Android

Carlos Andrés Castillo Londoño Intel Security (McAfee)

[email protected]

Page 2: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

#WhoAmI

• Ingeniero de Sistemas Javeriano (2009)

• Certified Information Systems Security Professional

• Mobile Researcher en Intel Security (McAfee)

• Twitter: @carlosacastillo

• Blog corporativo: https://blogs.mcafee.com/author/carlos-castillo/

2

https://blogs.mcafee.com/author/carlos-castillo/
https://blogs.mcafee.com/author/carlos-castillo/
https://blogs.mcafee.com/author/carlos-castillo/
https://blogs.mcafee.com/author/carlos-castillo/
Page 3: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Agenda

1. Génesis – Zitmo/Spitmo – FakeToken

2. Evolución – Perkele – Wroba

3. Presente – GM Bot – SpyLocker

4. Conclusiones

3

Page 4: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Génesis: Smartphone Revolution

Fuente: https://en.wikipedia.org/wiki/Mobile_operating_system

4

https://en.wikipedia.org/wiki/Mobile_operating_system
https://en.wikipedia.org/wiki/Mobile_operating_system
Page 5: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Malware Revolution

Fuente: http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf

5

http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2012.pdf
Page 6: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/FakeInstaller

• Pretende ser un instalador de aplicaciones o juegos • Envío de mensajes de texto (SMS) a números Premium • Polimorfismo desde el servidor:

Fuente: http://8dot8.org/2012/deck/8dot8_2012_pres_FR.pdf

6

http://8dot8.org/2012/deck/8dot8_2012_pres_FR.pdf
http://8dot8.org/2012/deck/8dot8_2012_pres_FR.pdf
Page 7: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Inicio de los Troyanos Bancarios en Android

• Componentes para móviles de familias de troyanos bancarios para PC. – Zitmo / Zeus-in-the-mobile (PC-Movil)

– Spitmo / Spyeye-in-the-mobile (PC-Movil)

• Aplicación Bancaria Falsa: – FakeToken

• Objetivos: – Obtener credenciales bancarias (phishing)

– Interceptar segundo factor de autenticación (OTP vía SMS)

7

Page 8: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Zitmo/Spitmo

1. Ejecuta archivo adjunto

2. Infecta Pc con Zeus o Spyeye

3. Accede al Banco

4. Intercepta primera clave

5. Envía primera clave

6. Sugiere software de seguridad falso

7. Instala el malware

11. Envía segunda clave e identificador

8. Ingresa identificador

9. Envía identificador

10. Realiza transacción

Page 9: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Zitmo – Zeus-in-the-mobile

Fuente: http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf

9

http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf
http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf
Page 10: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Spitmo - Spyeye-in-the-mobile

Fuente: http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf

10

http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf
Page 11: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/FakeToken

Fuente: http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf

11

http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf
Page 12: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Características Primeros Troyanos Bancarios en Android

Fuente: http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf

12

Característica Zitmo1 Zitmo 2 Spitmo Fake Token Zitmo 3

Envío de todos los mensajes X X X

Token enviado vía SMS X X X

Ataque solo en móvil X

URL codificada X

Protección de código X

Remotamente Desactivable X X

Archivo de Configuración X X

Remotamente Configurable X

Interfaz Grafica X X X X

Ocultación X X

Roba Lista de Contactos X

Remotamente Actualizable X

http://8dot8.org/2012/deck/8dot8_2012_pres_CCA.pdf
Page 13: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Edad Media: Smartphones del 2012 al 2015

Fuente: http://www.idc.com/prodserv/smartphone-os-market-share.jsp

13

http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
http://www.idc.com/prodserv/smartphone-os-market-share.jsp
Page 14: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Malware 2013 al 2015

Fuente: http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf

14

http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-aug-2015.pdf
Page 15: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Bot “Perkele” a.k.a FakeSite

• Bot kit vendido en foros underground: – Solo una entidad financiera: $1,000 USD

– “Universal Kit”: $15,000 USD

• Dirigido a 66 entidades financieras en 11 países: – Europa: Francia, Alemania, Italia, España, Suiza

– Asia: India, Singapore, Turquía, Tailandia

– Oceanía: Australia, Nueva Zelanda

• Distribuido vía web-injects (e.g. Zitmo/Spitmo)

• Integrable con cualquier malware bancario

15

Page 16: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Bot “Perkele” a.k.a FakeSite

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/

16

https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
Page 17: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Bot “Perkele” a.k.a FakeSite

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/

17

https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojans-target-italy-and-thailand/
Page 18: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/Wroba

• Pretende ser Google Play app • Dirigido a usuarios bancarios en Corea del sur • Reemplaza aplicaciones bancarias con phishing apps:

– Instalación silenciosa (root) – Simulación de actualización (no root)

• Muestra texto para darle mas credibilidad a la nueva app: – Términos y condiciones – App certificada por Yessign (SK Cert)

• Robo de varios factores de autenticación: – Tarjeta de coordenadas – Certificado digital

18

Page 19: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Wroba – Términos y Condiciones

Fuente: https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/

19

https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
Page 20: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Wroba - Robo Tarjeta de Coordenadas

Fuente: https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/

20

https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
Page 21: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Wroba – Robo de Información Adicional

• Nombre • Numero de Seguridad Social • Numero de Teléfono Celular • Nombre de usuario / Contraseña • Numero de cuenta / Contraseña • Numero serial de tarjeta de seguridad

Fuente: https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/

21

https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
Page 22: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Wroba – Actualización Falsa

Fuente: https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/

22

https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
https://blogs.mcafee.com/mcafee-labs/phishing-attack-replaces-android-banking-apps-with-malware/
Page 23: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Presente: Smartphones Hoy

Fuente: http://www.gartner.com/newsroom/id/3323017

23

http://www.gartner.com/newsroom/id/3323017
http://www.gartner.com/newsroom/id/3323017
Page 24: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android Malware Hoy

Fuente: http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf

24

http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
Page 25: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot

• Descubierto a finales de 2014 en foros underground rusos

• Código fuente filtrado en Diciembre de 2015 – Incluye panel de control y tutorial de instalación

– Comparable en magnitud al filtrado de código fuente de Zeus, SpyEye y Carbep

– Filtrado para mejorar credibilidad en foros underground

• Características de GM Bot: – Superposición de interfaces de phishing

– Interceptación y robo de mensajes de texto (OTP)

– Funcionalidad espía y ejecución remota de comandos Fuente: https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/

25

https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
Page 26: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot – Phishing Overlay

Fuente: http://www.cert.pl/news/10648/langswitch_lang/en

26

http://www.cert.pl/news/10648/langswitch_lang/en
http://www.cert.pl/news/10648/langswitch_lang/en
Page 27: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot - Comandos

• #listen_sms_start y #listen_sms_stop • #intercept_sms_start y #intercept_sms_stop • #forward_calls y #disable_forward_calls • #forwardstart y #forwardstop • #lock y #unlock • #block_numbers, #unblock_numbers y #unblock_all_numbers • #check_gps • #grab_apps • #wipe_data

Fuente: https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/

27

https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
Page 28: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot – Overlay Personalizable

Fuente: https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/

28

https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
https://securityintelligence.com/android-malware-about-to-get-worse-gm-bot-source-code-leaked/
Page 29: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot en Google Play

Descubierto en Mayo 16, 2016 por Lookout:

Fuente: https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/

29

https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
Page 30: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

GM Bot en Google Play

• Descarga e instala una variante de GM Bot (Acecard) • Además de bancos, afecta aplicaciones sociales como Skype y Facebook

Fuente: https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/

30

https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
https://blog.lookout.com/blog/2016/05/16/acecard-banking-trojan/
Page 31: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Phishing Apps en Google Play

11 aplicaciones en Google Play descubiertas este año

Fuente: https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps

31

https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
Page 32: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Phishing Apps en Google Play

Fuente: https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps

32

https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
https://info.phishlabs.com/blog/fraudster-phishing-users-with-malicious-mobile-apps
Page 33: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker

• Descubierto en diciembre del 2015

• Pretende ser flash player o aplicaciones porno

• Distribución: Blogs hackeados (WordPress, Joomla)

• Superposición de interfaces de phishing (similar a GM Bot)

• Afecta entidades financieras en Australia, Nueva Zelanda, Turquía, Polonia, Francia, Reino Unido y Escocia.

• Bloquea el dispositivo si: – Datos ingresados no son correctos

– Usuario intenta deshabilitar Device Administrator

33

Page 34: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker - Distribución

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

34

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 35: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker - Ejecucion

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

35

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 36: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker - Bloqueo

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

36

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 37: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker – Phishing Polonia

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

37

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 38: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker – Phishing Francia

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

38

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 39: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker – Phishing UK

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

39

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 40: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker – Google Phishing

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

40

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 41: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Android/SpyLocker – 2FA

Fuente: https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/

41

https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
https://blogs.mcafee.com/mcafee-labs/android-banking-trojan-spylocker-targets-more-banks-in-europe/
Page 42: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

Conclusiones

• Troyanos Bancarios en constante evolución: – Inicio: Web inject en PC y interceptación de 2FA en SMS – Evolución: Botnet, phishing en el dispositivo y filtrado de código fuente. – Presente y Futuro: Ransomware bancario (phishing + bloqueo)

• Beneficio económico del malware en Android: – Inicio: SMS a números premium – Evolución: Ransomware – Presente y Futuro: Ransomware con phishing bancario

• Protección: – Evitar instalar apps de fuentes no confiables (fuera de Google Play) – Contar con software de seguridad para detectar malware – Educar al usuario contra ataques de phishing – En lo posible mantener el dispositivo actualizado

42

Page 43: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

¡Gracias por su atención!

43

Page 44: Pasado, Presente y Futuro de los Troyanos Bancarios en Android - …acis.org.co/archivos/JornadaSeguridad/Memorias/1.pdf · 2018-05-21 · •Pretende ser Google Play app •Dirigido

44


PERITAJES TECNICOS EN TRIBUNALES DE ARBITRAMENTO …acis.org.co/portal/sites/all/themes/argo/... · • El señor perito se servirá conceptuar si con la información de la cabecera

PERITAJES TECNICOS EN TRIBUNALES DE ARBITRAMENTO …acis.org.co/portal/sites/all/themes/argo/... · • El señor perito se servirá conceptuar si con la información de la cabecera

Documents
Tendencias de la industria TIC y actualizaciones: - …acis.org.co/archivos/Conferencias/2016/Conferencia0212.pdfBIZBOK Business Architecture Business Analysis SWX Tendencias de la

Tendencias de la industria TIC y actualizaciones: - …acis.org.co/archivos/Conferencias/2016/Conferencia0212.pdfBIZBOK Business Architecture Business Analysis SWX Tendencias de la

Documents
Jornal do Cliente Agosto - Bancarios ItabunaTitle: Jornal do Cliente Agosto.cdr Author: user Created Date: 8/14/2018 10:58:03 AM

Jornal do Cliente Agosto - Bancarios ItabunaTitle: Jornal do Cliente Agosto.cdr Author: user Created Date: 8/14/2018 10:58:03 AM

Documents
No. 147 Abril - Junio 2018 ISSN 0120-5919 DOI: 10.29236 ...acis.org.co/archivos/Revista/Sistemasedicion147.pdf · 1960, con una visión futurista más allá del 2030. Mirada que contem-pla

No. 147 Abril - Junio 2018 ISSN 0120-5919 DOI: 10.29236 ...acis.org.co/archivos/Revista/Sistemasedicion147.pdf · 1960, con una visión futurista más allá del 2030. Mirada que contem-pla

Documents
La Financiera Banana Split · 2020. 5. 14. · Flujo de Efectivo y Bancarios E l Flujo de Efectivo y los Bancarios son el plato en la banana split. Es la parte de su plan financiero

La Financiera Banana Split · 2020. 5. 14. · Flujo de Efectivo y Bancarios E l Flujo de Efectivo y los Bancarios son el plato en la banana split. Es la parte de su plan financiero

Documents
131 trucos elhacker hacking webs, hack msn messenger 7, seguridad, hotmail, troyanos, virus, remoto(1)

131 trucos elhacker hacking webs, hack msn messenger 7, seguridad, hotmail, troyanos, virus, remoto(1)

Documents
Change The World: One Sequin at a Timeufdcimages.uflib.ufl.edu/.../Troyanos,_Debra_final.pdf · debra troyanos a capstone project presented to the college of fine arts of the university

Change The World: One Sequin at a Timeufdcimages.uflib.ufl.edu/.../Troyanos,_Debra_final.pdf · debra troyanos a capstone project presented to the college of fine arts of the university

Documents
131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto

131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto

Documents
Análise de Pontos de Função: Fundamentos, Benefícios e …acis.org.co/archivos/Conferencias/2016/ManejoContrados... · 2016. 5. 3. · Análise de Pontos de Função: Fundamentos,

Análise de Pontos de Função: Fundamentos, Benefícios e …acis.org.co/archivos/Conferencias/2016/ManejoContrados... · 2016. 5. 3. · Análise de Pontos de Função: Fundamentos,

Documents
EXTRACTOS BANCARIOS AUTOMATICOS

EXTRACTOS BANCARIOS AUTOMATICOS

Documents
W74 El impacto integrado del riesgo de crédito y de tasa de interés bancarios

W74 El impacto integrado del riesgo de crédito y de tasa de interés bancarios

Documents
Manual de Hacker - 131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad Hotmail, Troyanos, Virus, Remoto

Manual de Hacker - 131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad Hotmail, Troyanos, Virus, Remoto

Documents
How did they gain control of my system?€¦ · info-Troyanos-EN_Corporate_v02 2 Created Date: 3/23/2017 5:04:52 PM

How did they gain control of my system?€¦ · info-Troyanos-EN_Corporate_v02 2 Created Date: 3/23/2017 5:04:52 PM

Documents
Acta de Emision de Bonos Bancarios - … Acta de Emision de Bonos Bancarios Author: BBVA Bancomer Subject: Acta de Emision de Bonos Bancarios Estructurados, con colocaciones subsecuentes

Acta de Emision de Bonos Bancarios - … Acta de Emision de Bonos Bancarios Author: BBVA Bancomer Subject: Acta de Emision de Bonos Bancarios Estructurados, con colocaciones subsecuentes

Documents
Bancarios Ipatinga - Abril 2013

Bancarios Ipatinga - Abril 2013

Documents
Sistemas - acis.org.co

Sistemas - acis.org.co

Documents
ElHacker.COM Hacking Webs, Hack MSN Messenger 7, … · ElHacker.COM Hacking Webs, Hack MSN Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto-ElHacker.com Portada Novedades

ElHacker.COM Hacking Webs, Hack MSN Messenger 7, … · ElHacker.COM Hacking Webs, Hack MSN Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto-ElHacker.com Portada Novedades

Documents
Troyanos en Visual Basic

Troyanos en Visual Basic

Software
Analisis de Estados Financieros Bancarios i

Analisis de Estados Financieros Bancarios i

Documents
TÉCNICAS DE DETECCIÓN Y ANÁLISIS DE MALWARE EN …bibliotecadigital.usbcali.edu.co/bitstream/10819/4208/1/... · 2017. 7. 18. · malware, incluyendo virus, troyanos, gusanos,

TÉCNICAS DE DETECCIÓN Y ANÁLISIS DE MALWARE EN …bibliotecadigital.usbcali.edu.co/bitstream/10819/4208/1/... · 2017. 7. 18. · malware, incluyendo virus, troyanos, gusanos,

Documents
TRANSFORMACIÓN DIGITAL: UNA MIRADA ESTRATÉGICA, …acis.org.co/archivos/Conferencias/2017/Conferencia2610.pdf · TRANSFORMACIÓN DIGITAL ESTÁ USUALMENTE RELACIONADO CON… Fuente:

TRANSFORMACIÓN DIGITAL: UNA MIRADA ESTRATÉGICA, …acis.org.co/archivos/Conferencias/2017/Conferencia2610.pdf · TRANSFORMACIÓN DIGITAL ESTÁ USUALMENTE RELACIONADO CON… Fuente:

Documents
Extravio Documentos Bancarios

Extravio Documentos Bancarios

Documents
Technologies, Applications and Trends for Social …acis.org.co/portal/sites/all/themes/argo/Conferencias/July2015... · Technologies, Applications and Trends for Social Computing

Technologies, Applications and Trends for Social …acis.org.co/portal/sites/all/themes/argo/Conferencias/July2015... · Technologies, Applications and Trends for Social Computing

Documents
FOLLETO INFORMATIVO DEFINITIVO. Los … SCOTIABANK INVERLAT, S.A., INSTITUCIÓN DE BANCA MÚLTIPLE, GRUPO FINANCIERO SCOTIABANK INVERLAT EMISIÓN DE BONOS BANCARIOS ESTRUCTURADOS CON

FOLLETO INFORMATIVO DEFINITIVO. Los … SCOTIABANK INVERLAT, S.A., INSTITUCIÓN DE BANCA MÚLTIPLE, GRUPO FINANCIERO SCOTIABANK INVERLAT EMISIÓN DE BONOS BANCARIOS ESTRUCTURADOS CON

Documents
ROBOTS FINANCIEROS - UAI · 2018-09-27 · noticias, web scraping, datos bancarios, etc. “Intelligent Portfolio Management” involucra: selección de instrumentos, optimización

ROBOTS FINANCIEROS - UAI · 2018-09-27 · noticias, web scraping, datos bancarios, etc. “Intelligent Portfolio Management” involucra: selección de instrumentos, optimización

Documents
Guía del usuario - download.mcafee.comdownload.mcafee.com/products/manuals/es-mx/VS_userguide_2008.… · troyanos, cookies de rastreo, software espía, ... equipo, revise la interfaz

Guía del usuario - download.mcafee.comdownload.mcafee.com/products/manuals/es-mx/VS_userguide_2008.… · troyanos, cookies de rastreo, software espía, ... equipo, revise la interfaz

Documents
La seguridad en dispositivos empresarialesexpologisticacolombia.com/expologistica/wp-content/uploads/2018/… · Los troyanos Son inteligentes y parecen legítimos • Más de 390.000

La seguridad en dispositivos empresarialesexpologisticacolombia.com/expologistica/wp-content/uploads/2018/… · Los troyanos Son inteligentes y parecen legítimos • Más de 390.000

Documents
Manual de Hacker 131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto

Manual de Hacker 131 Trucos Elhacker Hacking Webs, Hack Msn Messenger 7, Seguridad, Hotmail, Troyanos, Virus, Remoto

Documents
CLASE 11 - valhalla.fcaglp.unlp.edu.arvalhalla.fcaglp.unlp.edu.ar/computacion/Teorias/Clase-11-Computaci… · Ejemplos: a) Sea un programa para llevar registro de movimientos bancarios

CLASE 11 - valhalla.fcaglp.unlp.edu.arvalhalla.fcaglp.unlp.edu.ar/computacion/Teorias/Clase-11-Computaci… · Ejemplos: a) Sea un programa para llevar registro de movimientos bancarios

Documents
Porque COBIT5 como marco de Gobierno de TI y como ...acis.org.co/archivos/Conferencias/2017/Conferencia2707.pdf · ⁻COBIT permite el desarrollo de las políticas y buenas prácticas

Porque COBIT5 como marco de Gobierno de TI y como ...acis.org.co/archivos/Conferencias/2017/Conferencia2707.pdf · ⁻COBIT permite el desarrollo de las políticas y buenas prácticas

Documents