A Palo Alto security firm reports it has discovered a Trojan virus that targets iOS devices, even those devices that have not been jailbroken.
The virus takes advantage of vulnerabilities in Apple's digital rights management system (DRM), saving the authorization codes required to install an iOS app. It then uses those codes to trick the device into downloading the virus. After the app is downloaded, the device prompts the user to provide their Apple ID and password, which is sent to the attacker.
The Trojan has been named "AceDeceiver" and, at this time, only activates when using a geotag in China. Apple has since removed the apps infected with the AceDeceiver from the App Store.
Experts have seen this type of attack used in the past to download apps without paying for them, but using this method for malicious intent is new. They are concerned that its simplicity will lead to further copies of the malware. Kellen Beck "The first iOS malware has been discovered," mashable.com (Mar. 18, 2016).
According to Pulse Secure’s annual Mobile Threat Report, Android devices continue to be the primary target of malware in 2015, attracting 97 percent of all mobile malware developed. This is understandable because sales reports show that Android represents over 80 percent of the mobile device sales worldwide. However, the popularity of Apple mobile devices is increasing, and with it, the number of threats that target those devices.
Users can protect themselves by keeping their software up-to-date and installing anti-malware software that will block Trojan attacks. For example, before downloading an app, perform a little due diligence first, reviewing posted comments about the app.
Via: Hartford Help