{"id":220,"date":"2005-11-12T16:06:36","date_gmt":"2005-11-12T14:06:36","guid":{"rendered":"http:\/\/bitacora.eniac2000.com\/?p=220"},"modified":"2005-11-12T16:06:36","modified_gmt":"2005-11-12T14:06:36","slug":"descubierto-un-troyano-que-aprovecha-el-malware-de-sony","status":"publish","type":"post","link":"https:\/\/bitacora.eniac2000.com\/?p=220","title":{"rendered":"Descubierto un troyano que aprovecha el malware de Sony"},"content":{"rendered":"

Escrib\u00eda Taran el otro d\u00eda sobre el descubrimiento de que determinados CDs musicales de Sony instalan malware<\/a> para evitar que puedas realizar copias de los discos que te compras de esa compa\u00f1\u00eda.<\/p>\n

El caso es que se apunt\u00f3 que no tardar\u00eda mucho tiempo en aparecer alg\u00fan troyano o algo similar que aprovechara tal malware para facer maldades<\/em>. Helo aqu\u00ed. Leo en El Navegante<\/a> que ya ha aparecido el primero:<\/p>\n

Se trata de un virus que se aloja en el directorio de sistema de Windows y se oculta utilizando el nombre ‘$sys$drv.exe’, aprovechando as\u00ed una brecha abierta por el sistema anticopia XCP.<\/p>\n

Dicho sistema oculta por defecto todas las entradas del registro, procesos, carpetas y archivos cuyo nombre comience por ‘$sys$’, y de dicha capacidad se aprovecha el troyano.<\/p>\n

El virus se conecta a un servidor de IRC (un sistema de ‘chat’) desde el que recibe \u00f3rdenes de los atacantes.<\/p><\/blockquote>\n

La cosa, al menos para m\u00ed, est\u00e1 clara: no comprar m\u00e1s CDs musicales, especialmente de la casa Sony\/BGM\/Ariola. O iTunes, el que pueda, u otros medios alternativos.<\/p>\n

Ah, y pasarse a Debian<\/a>. \ud83d\ude09<\/p>\n","protected":false},"excerpt":{"rendered":"

Escrib\u00eda Taran el otro d\u00eda sobre el descubrimiento de que<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[13],"tags":[],"series":[],"class_list":["post-220","post","type-post","status-publish","format-standard","hentry","category-informatica"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=\/wp\/v2\/posts\/220","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=220"}],"version-history":[{"count":0,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=\/wp\/v2\/posts\/220\/revisions"}],"wp:attachment":[{"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=220"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=220"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=220"},{"taxonomy":"series","embeddable":true,"href":"https:\/\/bitacora.eniac2000.com\/index.php?rest_route=%2Fwp%2Fv2%2Fseries&post=220"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}