Got a jailbroken iPhone with the Cydia app store installed? Better watch out. Approximately 225,000 Apple accounts have been stolen by malware hidden in untrusted Cydia repositories. The malware and the account information were discovered by researchers from Palo Alto Networks, with help from WeipTech, a group of technically-minded enthusiasts. Palo Alto Networks believes this is the largest theft of Apple accounts ever caused by malware.
The researchers call the malware family KeyRaider, and they've uncovered 92 variants of the bad apps. As far as the team can tell, KeyRaider only spreads through Cydia repositories from Weiphone, one of the largest Apple fan websites in China, though the team doesn't discount the possibility that KeyRaider software could be present in other untrusted repositories, as well. Unlike other Cydia sources, Weiphone allows registered users to create private repositories where they can upload their own apps and "tweaks."
The harvested account information is bundled into tweaks that allow other users to make illicit App Store and in-app purchases. The research team reports that these tweaks have been downloaded over 20,000 times, suggesting that many are abusing the stolen credentials. Most victims report unauthorized App Store purchases on their accounts, while others have had their phones held for ransom, as KeyRaider can also disable both local and remote unlocking functionality on iOS devices. Chinese users aren't the only ones affected, either—the account cache also contains login information belonging to users in 17 other countries.
Weiptech has a website where users can check if their Apple accounts were stolen, and Palo Alto Networks disclosed the account information to Apple on August 26. Users can also manually check their jailbroken devices using a process described at the bottom of this page.
|1. BIF - $340||2. Ryu Connor - $250||3. mbutrovich - $250|
|4. YetAnotherGeek2 - $200||5. End User - $150||6. Captain Ned - $100|
|7. Anonymous Gerbil - $100||8. Bill Door - $100||9. ericfulmer - $100|
|10. dkanter - $100|
|A technology overview of the Aimpad R5 analog keyboard||0|
|Intel P3100 M.2 SSD has datacenters in mind||0|
|Microsoft Surface Ergonomic Keyboard merges comfort and style||11|
|Surface Studio puts the iMac on notice||46|
|Microsoft Surface Book i7 packs a bigger punch and more batteries||26|
|G.Skill KM570 MX keyboard goes back to the basics||4|
|Intel's Purley server platform won't use 3D XPoint memory||4|
|In the lab: EVGA's GeForce GTX 1050 Ti Superclocked graphics card||36|
|iPhone sales continue to shrivel in Apple's fiscal fourth quarter||45|
|Signing your posts is daftly redundant. Meadows||+30|