KeyRaider: The biggest raid in Apple's data has been revealed. The attack is reported to be the biggest in the company's history, as Apple's 250.000 accounts are at risk from a malware.
Το hack όπως προαναφέραμε επηρεάζει τουλάχιστον 225.000 έγκυρους λογαριασμούς της Apple και ο στόχος του είναι οι jailbroken συσκευές που δεν έχουν πια τους αυστηρούς controlof Cupertino security.
It should be mentioned that Jailbreaking is popular, and Apple is constantly issuing updates to stop it. The modifications made by Jailbreak allow additional interventions and installation of tweaks and applications from the alternative Store, Cydia. Of course there are also pirated ones in Cydia applications.
Security researcher Claud Xiao of Palo Alto Networks reports that KeyRaider malware copies the device credentials and GUIDs and sends them to remote servers along with the user's iTunes data.
"We believe this is the largest account theft known to date to Apple and has been caused by malware," Xiao said.
“The malware spoofs MobileSubstrate's processes, and steals Apple accounts. So usernames, passwords accessς και το GUID της συσκευής μαζί με τις λεπτομέρειες των data of iTunes leave the device.
Xiao reports that the KeyRaider app also steals device notifications, Apple private keys, App Store purchase information, and disables local and remote unlock functions for iPhone and iPads.
The affected users are mainly in China, but also in 17 other countries like Britain, France, USA, and Australia.
Some victims report that their devices were locked and forced to pay a ransom.
The attack was discovered by a Yangzhou University student known as i_82 who collaborated with Xiao and his team.
