Categories: All

World’s Biggest iOS Malware Hack, 225k Apple Account Passwords Stolen

Researchers have found that hackers have stolen more than 250,000 valid Apple accounts using an iOS malware named KeyRaider. However, this threat only affects the jailbroken devices.

Here is a news that might worry you if you recently jailbroke your iPhone. The research team at Palo Alto networks and WeipTech have unveiled a new iOS malware named KeyRaider that has helped the hackers to steal 250,000 valid Apple accounts. This iOS malware heist is the largest of its kind.

Recently, the researchers have identified about 92 samples of a new iOS malware family in the wild. They analysed the suspicious Apple iOS tweaks reported by users and found a numerous number of Apple accounts and passwords stored on a server. The KeyRaider iOS malware targets the jailbroken iOS phones and is spread using the widely popular Cydia app repositories. This app is used to download apps and manage the jailbroken iPhones.
According to the Palo Alto networks, this threat has impacted users from 18 countries that include the likes of France, Russia, USA, China, UK, Germany, Canada, Australia, Israel, Italy, Spain, Singapore, and South Korea. This iOS malware hooks system process through MobileSubstrate and takes away account usernames, passwords and GUID by listening to iTunes traffic on the device.
Palo Alto writes:
KeyRaider steals Apple push notification service certificates and private keys, steals and shares App Store purchasing information, and disables local and remote unlocking functionalities on iPhones and iPads.
The malware was reported due to weirdly behaving App Store as after finding multiple unauthorised App Store purchases, a student from China noticed that one tweak was uploading data to an unknown database. Actually, the KeyRaider iOS malware has stolen this data and uploaded the data to its command and control (C2) server.  This server itself contains flaws and exposes the information.
KeyRaider iOS malware can be used to buy apps and remotely lock an iOS device and ask for ransom.
It should be noted that this iOS malware only works in jailbroken devices and most of the users seem to be located in China. Thus, jailbreaking your iOS device could be a great way to bring new apps and icons, but it’s equally dangerous.
Are you using a jailbroken iOS device? Tell us in the comments below.
spatsariya

Recent Posts

Meta Stock Price Target Maintained at $900 by Citizens on AI Tools

Citizens JMP has reaffirmed its $900 price target for Meta Platforms, maintaining a “Market Outperform”…

6 hours ago

Is It the Best AI Stock to Own Today?

In a striking turn of events, analysts are now arguing that Google may be positioning…

6 hours ago

CoreWeave Stock Soars as Meta Deal Boosts AI Cloud Infrastructure Growth

CoreWeave has landed a high-profile deal with Meta valued at $14.2 billion to supply AI…

7 hours ago

QuantumScape Stock Soars 200% on New Battery Milestone, What Investors Need to Know

QuantumScape’s stock has recently leapt dramatically, drawing widespread attention in the EV battery sector. The…

7 hours ago

Tesla Stock Surges with Record Deliveries, but the Post-Tax-Credit Challenge Looms

For a firm that has been making headlines for everything from autonomous ambitions to tweets…

7 hours ago

Nvidia Stock Price Target Raised as AI Boom Continues

From record-breaking revenues to data center dominance and a fan base that approaches Nvidia’s earnings…

7 hours ago