‘iPhone’ Unlocking Software Infects Computers with Trojan

Security firm BitDefender has recently found that a novel mechanism spreading computer malware is attacking users of iPhone looking for unlocking their instruments.

According to the reports, e-mail to iPhone users presents a Web-link, which assures to provide a new edition of software that'll apparently unlock an inaccessible iPhone and thereby help to counteract vendors' limitations on networks. So when users follow the link, they are redirected to a website that directs the steps to take down the unlocking software.

During that, the site advises users that they must plug their iPhone onto their PC after which they can download the said software for execution on the device. However, on downloading and executing the software, a Trojan virus gets unleashed that infects the PC.

BitDefender identified this Trojan as Trojan.BAT.AACL, which comes in the form of a batch archive for Windows together with the software meant to resume the working of a locked iPhone. The Trojan alters the suitable DNS server address, pertaining to different websites running on the infected Windows PC to a particular Internet Protocol address that the developers of the Trojan control. Subsequently, the IP address reads the victim's activities on chosen websites.

Meanwhile, according to the security researchers, exploiting iPhone's popularity to entice unwitting users isn't something new. During September 2008, Sophos too cautioned Internet users of spam e-mails which spread a Windows Trojan in the guise of a game that users of the much liked Apple iPhone enjoyed.

Researchers at Sophos also noted that to work, the Trojan needed a Windows computer. According to them, there was indeed no version of the malware which runs on Mac OS X, iPhone or any other mobile instrument.

However, for the sake of safety, security researchers urged end-users to be very careful of any such e-mail. Further, they must avoid opening attachments or clicking links that come along with the said e-mails. Additionally, the researchers also urge computer users to make sure their security software like anti-virus applications are up-to-date, and use an all-comprehensive software solution at the e-mail gateway so as to combat spam and viruses.

Related article: “Loopholes did not cause online banking thefts”: ICBC

» SPAMfighter News - 4/23/2010