{"id":37958,"date":"2025-07-01T02:00:00","date_gmt":"2025-06-30T23:00:00","guid":{"rendered":"https:\/\/rockvell.com\/?p=37958"},"modified":"2025-07-01T23:16:21","modified_gmt":"2025-07-01T20:16:21","slug":"kaspersky-ios-v%c9%99-android-ucun-n%c9%99z%c9%99rd%c9%99-tutulan-sparkkitty-carpaz-platforma-casus-troyanini-askar-edib","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=37958","title":{"rendered":"Kaspersky \u201ciOS\u201d v\u0259 \u201cAndroid\u201d \u00fc\u00e7\u00fcn n\u0259z\u0259rd\u0259 tutulan \u201cSparkKitty\u201d \u00e7arpaz platforma casus troyan\u0131n\u0131 a\u015fkar edib"},"content":{"rendered":"\n

Kaspersky \u201ciOS\u201d v\u0259 \u201cAndroid\u201d \u00fc\u00e7\u00fcn n\u0259z\u0259rd\u0259 tutulan \u201cSparkKitty\u201d \u00e7arpaz platforma casus troyan\u0131n\u0131 a\u015fkar edib<\/strong><\/p>\n\n\n\n

Z\u0259r\u0259rli proqram r\u0259smi storlara (ma\u011fazalara) daxil olub \u2013 bu, Kaspersky m\u00fct\u0259x\u0259ssisl\u0259rinin bir il \u0259rzind\u0259 \u201cApp Store\u201dda troyan o\u011furlu\u011fu il\u0259 ba\u011fl\u0131 a\u015fkar etdiyi ikinci hald\u0131r.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri \u201ciOS\u201d v\u0259 \u201cAndroid\u201d \u0259m\u0259liyyat sisteml\u0259ri il\u0259 \u00e7al\u0131\u015fan smartfonlar \u00fc\u00e7\u00fcn z\u0259r\u0259rli proqram a\u015fkar ed\u0259r\u0259k ona \u201cSparkKitty\u201d ad\u0131n\u0131 veribl\u0259r. O, \u201cApp Store\u201d v\u0259 \u201cGoogle Play\u201dd\u0259, el\u0259c\u0259 d\u0259 saxta v\u0259 \u00fc\u00e7\u00fcnc\u00fc t\u0259r\u0259f saytlar\u0131nda, o c\u00fcml\u0259d\u0259n \u201cTikTok\u201dun qeyri-r\u0259smi, d\u0259yi\u015fdirilmi\u015f versiyas\u0131n\u0131n bir hiss\u0259si kimi v\u0259 \u0259sas\u0259n kriptovalyutalar v\u0259 qumar oyunlar\u0131 il\u0259 ba\u011fl\u0131 t\u0259tbiql\u0259rin ad\u0131 alt\u0131nda yay\u0131l\u0131b. Casus troyan yoluxmu\u015f telefondak\u0131 qalereyadan \u015f\u0259kill\u0259ri v\u0259 cihaz haqq\u0131nda m\u0259lumatlar\u0131 t\u0259cav\u00fczkarlara g\u00f6nd\u0259rir. Ekspertl\u0259r hesab edirl\u0259r ki, bu c\u00fcr h\u00fccumlar\u0131n \u0259sas m\u0259qs\u0259di C\u0259nub-\u015e\u0259rqi Asiya v\u0259 \u00c7in sakinl\u0259rinin kriptovalyuta aktivl\u0259rini o\u011furlamaqd\u0131r. B\u0259zi texniki artefaktlar da yeni kampaniyan\u0131n \u0259vv\u0259ll\u0259r a\u015fkar edilmi\u015f \u201cSparkCat\u201d troyan\u0131 il\u0259 \u0259laq\u0259li oldu\u011funu g\u00f6st\u0259rir.<\/p>\n\n\n\n

Kaspersky \u201cGoogle\u201d v\u0259 \u201cApple\u201d r\u0259smil\u0259rini z\u0259r\u0259rli proqramlar bar\u0259d\u0259 m\u0259lumatland\u0131r\u0131b.<\/p>\n\n\n\n

iOS. \u201cApp Store\u201dda bu troyan \u00f6z\u00fcn\u00fc kriptovalyuta m\u0259z\u0259nn\u0259l\u0259rini izl\u0259m\u0259k v\u0259 ticar\u0259t siqnallar\u0131n\u0131 q\u0259bul etm\u0259k \u00fc\u00e7\u00fcn proqram kimi biruz\u0259 verib. R\u0259smi \u201ciPhone\u201d t\u0259tbiq ma\u011fazas\u0131n\u0131 t\u0259qlid ed\u0259n saxta s\u0259hif\u0259l\u0259rd\u0259 z\u0259r\u0259rli proqram TikTok modifikasiyalar\u0131 v\u0259 qumar proqramlar\u0131n\u0131n bir hiss\u0259si kimi yay\u0131l\u0131b.<\/p>\n\n\n\n

“Troyanlar\u0131n yay\u0131lmas\u0131n\u0131n vektorlar\u0131ndan biri saxta veb-saytlar olub ki, onlar\u0131n vasit\u0259sil\u0259 t\u0259cav\u00fczkarlar qurbanlar\u0131n \u201ciPhone\u201dlar\u0131n\u0131 yoluxdurma\u011fa c\u0259hd edibl\u0259r. \u201ciOS\u201dda \u201cApp Store\u201ddan olmayan proqramlar\u0131 qura\u015fd\u0131rmaq \u00fc\u00e7\u00fcn bir ne\u00e7\u0259 qanuni yol var. Bu z\u0259r\u0259rli kampaniyada t\u0259cav\u00fczkarlar onlardan birind\u0259n, daha d\u0259qiq des\u0259k, korporativ biznes t\u0259tbiql\u0259rini yaymaq \u00fc\u00e7\u00fcn n\u0259z\u0259rd\u0259 tutulan x\u00fcsusi vasit\u0259l\u0259rd\u0259n istifad\u0259 edibl\u0259r”, \u2013 dey\u0259 Kaspersky-nin kibert\u0259hl\u00fck\u0259sizlik \u00fczr\u0259 eksperti Sergey Puzan bildirir. “Qeyd etm\u0259k laz\u0131md\u0131r ki, \u2018TikTok\u2019un yoluxmu\u015f versiyas\u0131nda avtorizasiya zaman\u0131 z\u0259r\u0259rli proqram smartfonun qalereyas\u0131ndan foto\u015f\u0259kill\u0259ri o\u011furlamaqla yana\u015f\u0131, \u015f\u0259xsin profil p\u0259nc\u0259r\u0259sin\u0259 yaln\u0131z kriptovalyutalarla \u00f6d\u0259ni\u015fl\u0259ri q\u0259bul ed\u0259n \u015f\u00fcbh\u0259li ma\u011fazaya ke\u00e7idl\u0259r yerl\u0259\u015fdirib.\u201d<\/p>\n\n\n\n

Android. T\u0259cav\u00fczkarlar z\u0259r\u0259rli proqram\u0131 m\u00fcxt\u0259lif kriptovalyuta xidm\u0259tl\u0259ri kimi t\u0259qdim ed\u0259r\u0259k h\u0259m qeyri-r\u0259smi resurslarda, h\u0259m d\u0259 \u201cGoogle Play\u201dd\u0259 istifad\u0259\u00e7il\u0259r\u0259 h\u00fccum edibl\u0259r. M\u0259s\u0259l\u0259n, yoluxmu\u015f proqramlardan biri olan kriptovalyuta m\u00fcbadil\u0259si funksiyas\u0131na malik messencer r\u0259smi ma\u011fazadan 10 min d\u0259f\u0259d\u0259n \u00e7ox y\u00fckl\u0259nib. A\u015fkar edilmi\u015f z\u0259r\u0259rli kampaniya il\u0259 \u0259laq\u0259li olan yoluxmu\u015f proqramlar \u00fc\u00e7\u00fcnc\u00fc t\u0259r\u0259f saytlar\u0131nda investisiya kriptovalyutas\u0131 layih\u0259l\u0259ri kimi yerl\u0259\u015fdirilir. Bu proqramlar\u0131n yerl\u0259\u015fdirildiyi resurslar sosial \u015f\u0259b\u0259k\u0259l\u0259rd\u0259 v\u0259 \u201cYouTube\u201dda reklam edilib.
“T\u0259tbiql\u0259ri qura\u015fd\u0131rd\u0131qdan sonra istifad\u0259\u00e7il\u0259r elan edilmi\u015f funksionall\u0131\u011f\u0131 \u0259ld\u0259 edibl\u0259r, lakin eyni zamanda, onlar\u0131n smartfon qalereyas\u0131ndan foto\u015f\u0259kill\u0259ri t\u0259cav\u00fczkarlara g\u00f6nd\u0259rilib. \u00c7ox g\u00fcman ki, t\u0259cav\u00fczkarlar daha sonra \u015f\u0259kill\u0259rd\u0259 qurbanlar\u0131n kripto pul kis\u0259l\u0259rin\u0259 daxil olmaq \u00fc\u00e7\u00fcn m\u0259lumatlar da daxil olmaqla m\u00fcxt\u0259lif m\u0259xfi m\u0259lumatlar\u0131 tapma\u011fa c\u0259hd ed\u0259 bil\u0259rl\u0259r. Bu kampaniyada t\u0259cav\u00fczkarlar\u0131n r\u0259q\u0259msal proqramlara maraqlar\u0131n\u0131 g\u00f6st\u0259r\u0259n dolay\u0131 \u0259lam\u0259tl\u0259r var: yoluxmu\u015f t\u0259tbiql\u0259r aras\u0131nda kriptovalyutalarla \u0259laqali olanlar\u0131n say\u0131 \u00e7ox olub, saxta \u2018TikTok\u2019da is\u0259 kriptovalyuta il\u0259 \u00f6d\u0259ni\u015fl\u0259ri q\u0259bul ed\u0259n \u015f\u00fcbh\u0259li ma\u011faza da yerl\u0259\u015fdirilib\u201d, \u2013 dey\u0259 Kaspersky-nin kibert\u0259hl\u00fck\u0259sizlik \u00fczr\u0259 eksperti Dmitri Kalinin qeyd edir.<\/p>\n\n\n\n

\u201cAndroid\u201d v\u0259 \u201ciOS\u201d \u00fc\u00e7\u00fcn Kaspersky h\u0259ll\u0259ri istifad\u0259\u00e7il\u0259ri yeni kibert\u0259hl\u00fck\u0259d\u0259n qoruyur v\u0259 troyan\u0131 a\u015fa\u011f\u0131dak\u0131 kimi a\u015fkar edir:<\/p>\n\n\n\n

    \n
  • HEUR:Trojan-Spy.AndroidOS.SparkKitty.<\/li>\n\n\n\n
  • HEUR:Trojan-Spy.IphoneOS.SparkKitty*.<\/li>\n<\/ul>\n\n\n\n

    Bu c\u00fcr kibert\u0259hl\u00fck\u0259l\u0259rd\u0259n qorunmaq \u00fc\u00e7\u00fcn Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri t\u00f6vsiy\u0259 edirl\u0259r:<\/p>\n\n\n\n

      \n
    • \u201cAndroid \u00fc\u00e7\u00fcn Kaspersky\u201d v\u0259 \u201c iOS \u00fc\u00e7\u00fcn Kaspersky\u201d kimi smartfonlar \u00fc\u00e7\u00fcn t\u0259hl\u00fck\u0259sizlik h\u0259ll\u0259rind\u0259n istifad\u0259 edin;<\/li>\n\n\n\n
    • m\u0259xfi m\u0259lumat\u0131 smartfon qalereyas\u0131nda v\u0259 ya m\u0259tn qeydl\u0259rind\u0259 saxlamamaq \u00fc\u00e7\u00fcn qorunan qovluqlardan v\u0259 ya \u201c Kaspersky Password Manager\u201d kimi \u015fifr\u0259 menecerl\u0259rind\u0259n istifad\u0259 etm\u0259k daha yax\u015f\u0131d\u0131r;<\/li>\n\n\n\n
    • t\u0259tbiql\u0259ri r\u0259smi m\u0259nb\u0259l\u0259rd\u0259n y\u00fckl\u0259yin: moderasiya say\u0259sind\u0259 bel\u0259 ma\u011fazalarda z\u0259r\u0259rli proqramla qar\u015f\u0131la\u015fma riski daha azd\u0131r. Eyni zamanda, r\u0259smi ma\u011fazalarda istifad\u0259\u00e7il\u0259rin diqq\u0259tli olmas\u0131 da vacibdir: \u015f\u00fcbh\u0259li proqramlar\u0131 y\u00fckl\u0259m\u0259yin, onlar\u0131n reytinqin\u0259, r\u0259yl\u0259rin\u0259 v\u0259 t\u0259rtibat\u00e7\u0131s\u0131na diqq\u0259t yetirin;<\/li>\n\n\n\n
    • \u201ciPhone\u201d sahibl\u0259ri \u201cjailbreak\u201d (istifad\u0259\u00e7i \u00fc\u00e7\u00fcn bloklanm\u0131\u015f funskiya v\u0259 imkanlara giri\u015f \u00fc\u00e7\u00fcn istehal\u00e7\u0131n\u0131n t\u0259yin etdiyi proqram m\u0259hdudla\u015fd\u0131rmalar\u0131ndan yan ke\u00e7m\u0259k) etm\u0259m\u0259lidir – bu prosedur smartfonun kibert\u0259hl\u00fck\u0259sizlik s\u0259viyy\u0259sini \u0259h\u0259miyy\u0259tli d\u0259r\u0259c\u0259d\u0259 azald\u0131r.<\/li>\n<\/ul>\n\n\n\n

      \u201cApple\u201d \u0259m\u0259liyyat sisteminin arxitektura x\u00fcsusiyy\u0259tl\u0259rin\u0259 g\u00f6r\u0259 Kaspersky-nin \u201ciOS\u201d \u00fc\u00e7\u00fcn h\u0259lli m\u0259lumatlar\u0131n m\u0259lumat\u0131n t\u0259cav\u00fczkar\u0131n komanda serverin\u0259 \u00f6t\u00fcr\u00fclm\u0259si c\u0259hdini a\u015fkar etdikd\u0259 istifad\u0259\u00e7iy\u0259 x\u0259b\u0259rdarl\u0131q g\u00f6nd\u0259rir v\u0259 prosesi bloklay\u0131r.<\/p>\n","protected":false},"excerpt":{"rendered":"

      Kaspersky \u201ciOS\u201d v\u0259 \u201cAndroid\u201d \u00fc\u00e7\u00fcn n\u0259z\u0259rd\u0259 tutulan \u201cSparkKitty\u201d \u00e7arpaz platforma casus troyan\u0131n\u0131 a\u015fkar edib Z\u0259r\u0259rli proqram r\u0259smi storlara (ma\u011fazalara) daxil olub \u2013 bu, Kaspersky m\u00fct\u0259x\u0259ssisl\u0259rinin bir il \u0259rzind\u0259 \u201cApp Store\u201dda troyan o\u011furlu\u011fu il\u0259 ba\u011fl\u0131 a\u015fkar…<\/p>\n","protected":false},"author":1,"featured_media":11072,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/37958"}],"collection":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=37958"}],"version-history":[{"count":2,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/37958\/revisions"}],"predecessor-version":[{"id":37991,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/37958\/revisions\/37991"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/media\/11072"}],"wp:attachment":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=37958"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=37958"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=37958"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}