New iOS Trojan AceDeceiver Detected in China

One fresh malware created to compromise iPad and iPhone critically endangers several hundred million appliances as it has the ability to contaminate non-jailbroken appliances devoid of end-users' knowledge. The Trojan, which Palo Alto Networks dubbed AceDeceiver, plants itself onto the iOS appliances devoid of enterprise certificates.

According to Palo Alto's researchers, the latest malicious program contaminates iOS devices through computers running Windows OS, while abuses design vulnerabilities within the digital rights management (DRM) software of Apple. Hitherto, AceDeceiver has solely spread across China. Its uniqueness follows from it being the foremost malware that successfully infected non-jailbroken devices utilizing the DRM system, FairPlay of Apple.

FairPlay refers to a technical system that makes sure people browsing inside Apple's App Store can't filch its apps. However, using the attack method known as FairPlay MitM (Man-in-the-middle), attackers may effectively plant malevolent apps onto iOS appliances while victims remain unaware and simultaneously evade other security systems of Apple. Zdnet.com posted this, March 16, 2016.

The apps trio namely i4.picture, aswallpaper.mito, aisi.aisiring, according to Palo Alto, were created for so deceiving Apple that the company would supply the authorization code of iTunes app to attackers so they can use it along with Aisi Helper, a Windows software. AH is marketed to computer-operators of China only, while it promotes itself to be useful for iOS operators enthusiastic about re-installation and backups of iOS systems, their device management, jailbreaking as well as system cleaning.

Soon as criminals get Apple towards endorsing the apps followed with releasing authorization code, they utilize those codes for compelling AH towards planting the apps behind the visibility of end-users. Presently, more than 15m end-users in China have taken down AH over past 2-yrs. The apps trio, which criminals were able to get around Apple's review and had the AceDeceiver infection, happened to be ordinary wallpaper management apps.

Researchers explain that although AceDeceiver is hitting iOS devices within China only, it can be easily spread to other areas globally. Moreover, this attack technique, which the criminals are exploiting, won't prove easy to stop by Apple's experts.

The apps trio AceDeceiver infected no longer exists on Apple Store.

» SPAMfighter News - 3/24/2016