Home » News » Mobile Phones » KeyRaider Malware leaks personal info from jailbroken iPhones

KeyRaider Malware leaks personal info from jailbroken iPhones

By Ajit Singh | Updated on 01-Sep-2015
KeyRaider Malware leaks personal info from jailbroken iPhones
Ajit Singh Ajit Singh
01 Sep 2015 15:46
HIGHLIGHTS

The KeyRaider malware has affected iPhones in more than 18 countries and stole sensitive, private information from user accounts

A malware named KeyRaider has hacked iTunes log-in credentials, Apple’s push notification service certificates, private keys and App Store purchase information, affirmed security firm Palo Alto Networks and Chinese group WeipTech. Affecting more than 2,25,000 jailbroken iPhones, the malware stored data on a Command and Control (C2) server. It also disabled the local and remote locking ability of these iPhones.

The malware was first discovered by WeipTech, after some users reported suspicious activities from their accounts, like abnormal app purchases. The hackers also held various iPhones as hostage, and asked for ransom to unlock them.

 

According the blog post released by Palo Alto Networks, the malware was distributed via third-party Cydia repositories in China. It attacks only jailbroken iOS devices, and has affected devices across more than 18 countries including China, France, Russia, Japan, United Kingdom, United States, Canada, Germany, Australia, Israel, Italy, Spain, Singapore, and South Korea. Palo Alto has stated that it is the largest known Apple account theft caused by a malware.

Talking about how the malware affects, the firm posted, "The malware hooks system processes through MobileSubstrate, and steals Apple account usernames, passwords and device GUID by intercepting iTunes traffic on the device. KeyRaider steals Apple push notification service certificates and private keys, steals and shares App Store purchasing information, and disables local and remote unlocking functionalities on iPhones and iPads. The purpose of this attack was to make it possible for users of two iOS jailbreak tweaks to download applications from the official App Store and make in-app purchases without actually paying. Jailbreak tweaks are software packages that allow users to perform actions that aren’t typically possible on iOS.”

More than 20,000 users downloaded the tweaks and misused details of about 2,25,000 accounts, which were used mostly for making in-app purchases on other iOS devices.

Ajit Singh

Ajit Singh

New Mobiles
Apple IPhone 15Redmi 12 5GRealme 11 Pro+ 5GApple IPhone 15 PlusNothing Phone 2
Top-10s
Best Mobile Phones under 15,000Best Mobile Phones under 20,000Best Mobile Phones Under 10,000Best Mobile PhonesBest 5G Mobile Phones
Terms of Use Privacy Policy About Us Advertise with us Contact Us SiteMap Current / Past Issue Magazine Subscription
9.9 Group

Digit.in is one of the most trusted and popular technology media portals in India. At Digit it is our goal to help Indian technology users decide what tech products they should buy. We do this by testing thousands of products in our two test labs in Noida and Mumbai, to arrive at indepth and unbiased buying advice for millions of Indians.

We are about leadership – the 9.9 kind Building a leading media company out of India. And, grooming new leaders for this promising industry.

logo logo logo logo logo logo
Copyright © 2007-24 9.9 Group Pvt.Ltd.All Rights Reserved.
Digit.in
Logo
Digit.in
Logo