{"id":2548,"date":"2014-10-08T16:30:01","date_gmt":"2014-10-08T19:30:01","guid":{"rendered":"https:\/\/www.talsoft-security.com\/site\/?p=2548"},"modified":"2014-10-08T16:30:01","modified_gmt":"2014-10-08T19:30:01","slug":"cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito","status":"publish","type":"post","link":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/","title":{"rendered":"Cajeros autom\u00e1ticos infectados “regalan” millones de d\u00f3lares sin tarjetas de cr\u00e9dito"},"content":{"rendered":"

Kaspersky Lab realiz\u00f3 una investigaci\u00f3n forense de los ataques dirigidos a varios cajeros autom\u00e1ticos en todo el mundo. Durante el curso de esta investigaci\u00f3n, descubrieron el malware “Tyupkin”<\/a> utilizado para infectar los cajeros autom\u00e1ticos y obtener dinero a trav\u00e9s de la manipulaci\u00f3n del cajero.<\/p>\n

\"\"<\/a><\/div>\n

Metodolog\u00eda de Ataque<\/h3>\n

El ataque se divide en dos etapas. En primer lugar, los delincuentes ganan acceso f\u00edsico a los cajeros autom\u00e1ticos e insertan un CD de arranque para instalar el malware Tyupkin. Despu\u00e9s de reiniciar el sistema, el cajero autom\u00e1tico infectado est\u00e1 ahora bajo su control y el malware se ejecuta en un bucle infinito, a la espera de un comando. Para hacer la estafa m\u00e1s dif\u00edcil de detectar, el malware Tyupkin s\u00f3lo acepta comandos en momentos espec\u00edficos los d\u00edas domingo y lunes. Durante esas horas, los atacantes son capaces de robar el dinero de la m\u00e1quina infectada.<\/p>\n

Im\u00e1genes de video obtenida de las c\u00e1maras de seguridad de los cajeros autom\u00e1ticos infectados mostr\u00f3 la metodolog\u00eda utilizada para acceder al dinero de las m\u00e1quinas. Una combinaci\u00f3n \u00fanica de d\u00edgitos basada en n\u00fameros aleatorios es generada para cada sesi\u00f3n para evitar que ninguna persona fuera de la banda pueda beneficiarse accidentalmente del fraude. El operador malicioso recibe instrucciones por tel\u00e9fono de otro miembro de la pandilla que conoce el algoritmo y es capaz de generar una clave de sesi\u00f3n basado en el n\u00famero que se muestra. Esto asegura que las mulas que recogen el dinero en efectivo no traten de irse.<\/p>\n

<\/center>Cuando se introduce correctamente la clave, el ATM muestra los detalles de la cantidad de dinero que est\u00e1 disponible en cada cartucho para que el operador pueda elegir el casete a robar. Finalmente, el ATM entrega los billetes.<\/p>\n

 <\/p>\n

Visto: segu-info<\/a>
\nFuente: Net-Security<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Kaspersky Lab realiz\u00f3 una investigaci\u00f3n forense de los ataques dirigidos a varios cajeros autom\u00e1ticos en todo el mundo. Durante el curso de esta investigaci\u00f3n, descubrieron el malware “Tyupkin” utilizado para infectar los cajeros autom\u00e1ticos y obtener dinero a trav\u00e9s de la manipulaci\u00f3n del cajero. Metodolog\u00eda de Ataque El ataque se divide en dos etapas. En […]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-2548","post","type-post","status-publish","format-standard","hentry","category-profesional"],"yoast_head":"\nTalSoft - Seguridad Inform\u00e1tica Empresarial - Cajeros autom\u00e1ticos infectados "regalan" millones de d\u00f3lares sin tarjetas de cr\u00e9dito<\/title>\n<meta name=\"description\" content=\"Talsoft transforma la visi\u00f3n de las empresas para que puedan proteger su informaci\u00f3n cr\u00edtica y confidencial frente ataques inform\u00e1ticos. Cons\u00faltenos sin cargo.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Leandro Ferrari\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\"},\"author\":{\"name\":\"Leandro Ferrari\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/83d2ebde035a5a030c14e522351953c8\"},\"headline\":\"Cajeros autom\u00e1ticos infectados “regalan” millones de d\u00f3lares sin tarjetas de cr\u00e9dito\",\"datePublished\":\"2014-10-08T19:30:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\"},\"wordCount\":330,\"publisher\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg\",\"articleSection\":[\"Profesional\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\",\"url\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\",\"name\":\"TalSoft - Seguridad Inform\u00e1tica Empresarial - Cajeros autom\u00e1ticos infectados \\\"regalan\\\" millones de d\u00f3lares sin tarjetas de cr\u00e9dito\",\"isPartOf\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg\",\"datePublished\":\"2014-10-08T19:30:01+00:00\",\"description\":\"Talsoft transforma la visi\u00f3n de las empresas para que puedan proteger su informaci\u00f3n cr\u00edtica y confidencial frente ataques inform\u00e1ticos. Cons\u00faltenos sin cargo.\",\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage\",\"url\":\"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg\",\"contentUrl\":\"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#website\",\"url\":\"https:\/\/www.talsoft-security.com\/site\/\",\"name\":\"TalSoft TS - Services IT Security\",\"description\":\"Talsoft is transforming awareness, control and decision-making power so that companies can protect their critical and confidential information from computer attacks.\",\"publisher\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.talsoft-security.com\/site\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#organization\",\"name\":\"Talsoft TS\",\"url\":\"https:\/\/www.talsoft-security.com\/site\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.talsoft-security.com\/site\/wp-content\/uploads\/2014\/02\/talsoft_logo_270x125.png\",\"contentUrl\":\"https:\/\/www.talsoft-security.com\/site\/wp-content\/uploads\/2014\/02\/talsoft_logo_270x125.png\",\"width\":270,\"height\":125,\"caption\":\"Talsoft TS\"},\"image\":{\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"http:\/\/www.facebook.com\/talsoftsrl\",\"https:\/\/x.com\/talsoft\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/83d2ebde035a5a030c14e522351953c8\",\"name\":\"Leandro Ferrari\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/cd259c10675b9fd302b2e6264231febeeeb3de578400cf8c91c6577e50a0d34a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/cd259c10675b9fd302b2e6264231febeeeb3de578400cf8c91c6577e50a0d34a?s=96&d=mm&r=g\",\"caption\":\"Leandro Ferrari\"},\"sameAs\":[\"http:\/\/www.talsoft.com.ar\",\"https:\/\/www.facebook.com\/talsoftsrl\/\",\"https:\/\/x.com\/avatar_leandro\"],\"url\":\"https:\/\/www.talsoft-security.com\/site\/author\/leandro\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"TalSoft - Seguridad Inform\u00e1tica Empresarial - Cajeros autom\u00e1ticos infectados \"regalan\" millones de d\u00f3lares sin tarjetas de cr\u00e9dito","description":"Talsoft transforma la visi\u00f3n de las empresas para que puedan proteger su informaci\u00f3n cr\u00edtica y confidencial frente ataques inform\u00e1ticos. Cons\u00faltenos sin cargo.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/","twitter_misc":{"Written by":"Leandro Ferrari","Estimated reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#article","isPartOf":{"@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/"},"author":{"name":"Leandro Ferrari","@id":"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/83d2ebde035a5a030c14e522351953c8"},"headline":"Cajeros autom\u00e1ticos infectados “regalan” millones de d\u00f3lares sin tarjetas de cr\u00e9dito","datePublished":"2014-10-08T19:30:01+00:00","mainEntityOfPage":{"@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/"},"wordCount":330,"publisher":{"@id":"https:\/\/www.talsoft-security.com\/site\/#organization"},"image":{"@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage"},"thumbnailUrl":"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg","articleSection":["Profesional"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/","url":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/","name":"TalSoft - Seguridad Inform\u00e1tica Empresarial - Cajeros autom\u00e1ticos infectados \"regalan\" millones de d\u00f3lares sin tarjetas de cr\u00e9dito","isPartOf":{"@id":"https:\/\/www.talsoft-security.com\/site\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage"},"image":{"@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage"},"thumbnailUrl":"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg","datePublished":"2014-10-08T19:30:01+00:00","description":"Talsoft transforma la visi\u00f3n de las empresas para que puedan proteger su informaci\u00f3n cr\u00edtica y confidencial frente ataques inform\u00e1ticos. Cons\u00faltenos sin cargo.","inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.talsoft-security.com\/site\/cajeros-automaticos-infectados-regalan-millones-de-dolares-sin-tarjetas-de-credito\/#primaryimage","url":"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg","contentUrl":"http:\/\/25zbkz3k00wn2tp5092n6di7b5k.wpengine.netdna-cdn.com\/files\/2014\/10\/Tyupkin_3.jpg"},{"@type":"WebSite","@id":"https:\/\/www.talsoft-security.com\/site\/#website","url":"https:\/\/www.talsoft-security.com\/site\/","name":"TalSoft TS - Services IT Security","description":"Talsoft is transforming awareness, control and decision-making power so that companies can protect their critical and confidential information from computer attacks.","publisher":{"@id":"https:\/\/www.talsoft-security.com\/site\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.talsoft-security.com\/site\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.talsoft-security.com\/site\/#organization","name":"Talsoft TS","url":"https:\/\/www.talsoft-security.com\/site\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.talsoft-security.com\/site\/#\/schema\/logo\/image\/","url":"https:\/\/www.talsoft-security.com\/site\/wp-content\/uploads\/2014\/02\/talsoft_logo_270x125.png","contentUrl":"https:\/\/www.talsoft-security.com\/site\/wp-content\/uploads\/2014\/02\/talsoft_logo_270x125.png","width":270,"height":125,"caption":"Talsoft TS"},"image":{"@id":"https:\/\/www.talsoft-security.com\/site\/#\/schema\/logo\/image\/"},"sameAs":["http:\/\/www.facebook.com\/talsoftsrl","https:\/\/x.com\/talsoft"]},{"@type":"Person","@id":"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/83d2ebde035a5a030c14e522351953c8","name":"Leandro Ferrari","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.talsoft-security.com\/site\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/cd259c10675b9fd302b2e6264231febeeeb3de578400cf8c91c6577e50a0d34a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/cd259c10675b9fd302b2e6264231febeeeb3de578400cf8c91c6577e50a0d34a?s=96&d=mm&r=g","caption":"Leandro Ferrari"},"sameAs":["http:\/\/www.talsoft.com.ar","https:\/\/www.facebook.com\/talsoftsrl\/","https:\/\/x.com\/avatar_leandro"],"url":"https:\/\/www.talsoft-security.com\/site\/author\/leandro\/"}]}},"_links":{"self":[{"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/posts\/2548","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/comments?post=2548"}],"version-history":[{"count":1,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/posts\/2548\/revisions"}],"predecessor-version":[{"id":2549,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/posts\/2548\/revisions\/2549"}],"wp:attachment":[{"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/media?parent=2548"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/categories?post=2548"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.talsoft-security.com\/site\/wp-json\/wp\/v2\/tags?post=2548"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}