Custom iOS Malware To Attack iPhones
Combination of tight innovative security features and controls has made the iPhone a most secured consumer device in the world. But nowadays nothing is unhackable and iOS malware is one threat that could decrease security to Apple's iPhone.
Earlier this year, cybersecurity researchers found pieces of evidence that government spyware, Negg developed an iOS malware that tracks GPS and performs audio surveillance activity. As per reports Negg’s iOS malware implant is in the development stage, yet is to adapt infectious features.
Malware on iOS are rare, but Apple’s continuous focus on the security of its devices has always been an alarming question. Nowadays, many companies are willingly paying around $3 million for those software that can jailbreak and hack iPhones.
Many governments around the world spend a fortune on the iOS malware. For example, Saudi Arabia paid $55 million to buy iPhone malware that was made by the NSO Group. A security researcher Zuk Avraham tweeted that iOS jailbreaks a kind of malware for iOS, aren't rare and have more than 50 groups of iOS exploits.
Previously it was believed that only powerful government adversaries know access to iPhone exploits, but as the discoveries are being made, it is found that many lesser-known groups also know iOS exploits.
MDM and iOS Malware
The Italian government made a sophisticated spyware, Skygofree for Android in contract with Negg. While investigating Negg’s Android malware, we found that one of its C2 or command and Control servers points to a “rogue Apple [Device Management] server.
Device Management is a feature in iOS that allows the companies to manage and monitor those devices that are given to their employees. By installing a Mobile Device Management on an iPhone, a user provides control over the device to the MDM owner.
This year in July, a hacking group used the MDM to target iPhones in India. Negg’s MDM servers are still active and are a specific design feature in the operating system.
It’s unclear how government hackers can get the malware on iPhones. However, we speculate it via social engineering by using fake mobile operators sites. Moreover, this malware never leverages any bugs and doesn't exploit it in iOS, instead takes advantage of MDM.
In this way, social hacking technique, tricking users into installing something also install iOS malware. The average user essentially clicks any link, downloads any app and use their iPhone without even worrying about the targeted surveillance.
MDM is an injection method for iOS malware. You can never force iPhone to connect MDM server. You first have to get them to install a device profile on the phone. Second, you need to social engineer them for installing the profile.”
It is yet to know not how Negg, its customers get the malware on the target iPhones via specific iOS exploits. iOS malware is expensive and once it’s on iPhone cybercriminals or government get access to everything.
Tips to Prevent virus and malware from Infecting Your System:
- Enable your popup blocker: Pop-ups and ads on the websites are the most adoptable tactic used by cybercriminals or developers with the core intention to spread malicious programs.
So, avoid clicking uncertain sites, software offers, pop-ups etc. and Install a powerful ad- blocker for Chrome, Mozilla, and IE
- Keep your Windows Updated: To avoid such infections, we recommend that you should always keep your system updated through automatic windows update.By doing this you can keep your device free from virus.According to the survey, outdated/older versions of Windows operating system are an easy target.
- Third-party installation: Try to avoid freeware download websites as they usually install bundled of software with any installer or stub file.
- Regular Backup: Regular and periodical backup helps you to keep your data safe in case the system is infected by any kind of virus or any other infection.Thus always backup important files regularly on a cloud drive or an external hard drive.
- Always have an Anti-Virus: Precaution is better than cure. We recommend that you install an antivirus like ITL Total Security or a good Malware Removal Tool like Download Virus RemovalTool
