The Biggest CDMA & GSM Forum
 
PortalHomeSearchLatest imagesRegisterLog inFacebook
  :: Best Prices With Fast Service ::    Iphone Australia Networks      Iphone U.S.A Networks      Iphone U.K Networks      Iphone France Networks      Iphone Canada Networks      Iphone Swizerland Networks Unlock Now FRIENDUNLOCKER

Share
 

 Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated]

View previous topic View next topic Go down 
AuthorMessage
rockfort93
Super Moderator
Super Moderator
rockfort93

Posts : 124
Thanks : 8524
THANKS : 57
Join date : 2013-07-16
Age : 31
Location : Chennai

Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated] Empty
PostSubject: Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated]   Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated] Icon_minitimeMon Apr 21, 2014 8:10 pm

Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated]

Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated] Ios-malware
Security researcher Stefan Esser a.k.a i0n1c has reported a serious security issue for jailbreakers. A malware called “Unflod Baby Panda” has been discovered on jaibroken iOS devices that is sending Apple ID and password to servers based in China.

The issue was first discovered by jailbreakers on reddit.  Folks at security firm SektionEins who have done a quick analysis of the malware report:
Quote :
This malware appears to have Chinese origin and comes as a library called Unflod.dylib that hooks into all running processes of jailbroken iDevices and listens to outgoing SSL connections. From these connections it tries to steal the device’s Apple-ID and corresponding password and sends them in plaintext to servers with IP addresses in control of US hosting companies for apparently Chinese customers.
It is not clear how the malware ended up on a jailbroken device, but it is suspected that it may have been installed by Chinese pirate repositories. SektionEins reports that their involvement hasn’t been verified so far, but the malware is signed with an iPhone developer certificate, which is registered to a person called WANG WIN (which could be faked or the person’s identity stolen).
To find out if you’re infected by the malware, navigate to the following folder using iFile:
/Library/MobileSubstrate/DynamicLibraries/ and check if there is a Unflod.dylib library in that location.
Alternatively, Esser is also advising that users could run a grep command to check if they’re infected:
If you find the dynamic library on your device, then you should delete it immediately and change your Apple ID password, and enable two-step verification.
The malware again highlights why jailbreakers should avoid installing repositories from untrusted sources that host pirated software. If you’ve jailbroken your iOS device then I would strongly recommend you to check if you’re infected.
Update:
Please check this reddit thread for more detailed instructions to check for Unflod.dylib malware, and help saurik, the founder of Cydia, find out more details about it to ensure that it does not affect other users.
Back to top Go down
 

Warning: Malware discovered on Jailbroken iOS devices which steals Apple ID and passwords [Updated]

View previous topic View next topic Back to top 
Page 1 of 1

 Similar topics

-
» Newly Discovered Malware Targets Both Android And Jailbroken iPhone Users
» Apple and Samsung Allowed to Add Devices to Ongoing Patent Suit
» JAILBREAK ios6
» Apple to Release Updated Apple Store App on Tuesday?
» Apple and Samsung Devices Dominate Top 5 Spots in Q1 2014

Permissions in this forum:You cannot reply to topics in this forum
MobiTechnician :: GSM Mobile Phones :: iPhone ,iPod & iPad (Apple Inc. Products)-
Created by Service Team
Registered trademark of MobiTechnician Mobile Solutions