Apple constantly updates its operating systems with security patches, and hackers often use them to attack users in various ways. However, this time, cyber security company Group-IB has reported the existence of a new “GoldDigger” trojan that targets iOS users to steal their bank accounts.
GoldDigger trojan can steal sensitive data of iOS users
according to Detailed report by Group-IB (via Tom’s Guide), GoldDigger was first created for Android, but has now been successfully ported to attack iPhone and iPad users. The company claims that this is potentially the first Trojan made for iOS, and it can be quite dangerous as it collects facial recognition data, IDs and even SMS.
With all this information, hackers use AI-based tools to create deep fakes and access victims’ bank accounts. By the time victims realize what happened, it may be too late.
The trojan was originally distributed through Apple’s TestFlight – which allows developers to release beta versions of their apps without going through the App Store’s review process. However, after Apple pulled it from TestFlight, the hackers took a more sophisticated approach based mainly on the Mobile Device Management (MDM) profile used to manage enterprise devices.
These profiles allow companies to customize and control many aspects of the system according to their needs. But hackers trick users into installing a malicious profile to download apps from outside the App Store. When this happens, they can gather all the information they need.
According to reports, GoldDigger mainly targets people in Vietnam and Thailand. However, it can also be used to attack users in other parts of the world. Group-IB claims that the Trojan is “in an active stage of evolution”.
What will happen next?
At least for now, it appears that even the latest versions of iOS and iPadOS are still vulnerable to this trojan. Group-IB says it notified Apple about the trojan, so it’s likely the company is already working on a fix. For now, the best thing you can do to avoid attacks like this is to avoid installing apps from sources you don’t trust.
You can find it More about the GoldDigger trojan here.
Image: Open it
FTC: We use automatic affiliate links that generate income. More.