HACKINTOSH.ORG | Macintosh discussion forums

Macintosh News => iPhone/iPod/iPad News => Topic started by: HCK on March 18, 2016, 04:05:34 pm



Title: Security firm discovers first iOS malware that can infect non-jailbroken iPhones w/o enterprise certificate
Post by: HCK on March 18, 2016, 04:05:34 pm
Security firm discovers first iOS malware that can infect non-jailbroken iPhones w/o enterprise certificate

<div class="feat-image">(https://9to5mac.files.wordpress.com/2016/03/malware.png?w=1600&h=1000#038;h=488)</div>
<p>Non-jailbroken iPhones are usually close to immune from malware thanks to Apple vetting every app before it’s made available in the App Store. So far, malware has relied on abusing <a href="https://developer.apple.com/programs/enterprise/" target="_blank">enterprise certificates[/url] designed to allow companies to distribute apps to their own phones. But security company Palo Alto Networks has <a href="http://researchcenter.paloaltonetworks.com/2016/03/acedeceiver-first-ios-trojan-exploiting-apple-drm-design-flaws-to-infect-any-ios-device/" target="_blank">discovered[/url] a new piece of malware that can infect iPhones by exploiting a vulnerability in Apple’s DRM mechanism.</p>

<p class="p1"><span class="s1">AceDeceiver is the first iOS malware we’ve seen that abuses certain design flaws in Apple’s DRM protection mechanism — namely FairPlay — to install malicious apps on iOS devices regardless of whether they are jailbroken.</span></p>

<p>AceDeceiver currently uses a geotag so that it is only activated when a user is located in China, but a simple switch could allow it to infect iPhones elsewhere …</p>
<p> <a href="http://9to5mac.com/2016/03/17/acedeceiver-iphone-malware/#more-423413" class="more-link">more…[/url]</p>
Filed under: <a href='http://9to5mac.com/category/ios/'>iOS[/url] Tagged: <a href='http://9to5mac.com/tag/acedeceiver/'>AceDeceiver[/url], <a href='http://9to5mac.com/tag/app-store/'>App Store[/url], <a href='http://9to5mac.com/tag/app-store-ios/'>App Store (iOS)[/url], <a href='http://9to5mac.com/tag/ios/'>iOS[/url], <a href='http://9to5mac.com/tag/iphone-malware/'>iPhone malware[/url], <a href='http://9to5mac.com/tag/itunes/'>iTunes[/url], <a href='http://9to5mac.com/tag/malware/'>Malware[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gocomments/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/comments/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godelicious/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/delicious/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gofacebook/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/facebook/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gotwitter/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/twitter/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gostumble/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/stumble/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godigg/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/digg/9to5mac.wordpress.com/423413/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/goreddit/9to5mac.wordpress.com/423413/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/reddit/9to5mac.wordpress.com/423413/" />[/url] <img alt="" border="0" src="(http://[img]http://pixel.wp.com/b.gif)[/img]?host=9to5mac.com&blog=22754319&post=423413&subd=9to5mac&ref=&feed=1" width="1" height="1" /><img alt="" border="0" src="(http://[img]http://pixel.wp.com/b.gif)[/img]?host=9to5mac.com&blog=22754319&post=423413&subd=9to5mac&ref=&feed=1" width="1" height="1" /><div class="feedflare">
<img src="http://feeds.feedburner.com/~ff/9To5Mac-MacAllDay?i=xPM4S5t32LQ:chMIlz3C93o:D7DqB2pKExk" border="0"></img> (http://feeds.feedburner.com/~ff/9To5Mac-MacAllDay?a=xPM4S5t32LQ:chMIlz3C93o:D7DqB2pKExk)
</div><img src="http://feeds.feedburner.com/~r/9To5Mac-MacAllDay/~4/xPM4S5t32LQ" height="1" width="1" alt=""/>

Source: Security firm discovers first iOS malware that can infect non-jailbroken iPhones w/o enterprise certificate (http://feedproxy.google.com/~r/9To5Mac-MacAllDay/~3/xPM4S5t32LQ/)