TORONTO – A U.S. security firm has discovered a vicious new form of malware that attacks iPhone and iPads through the Mac OS X desktop operating system. It’s only affecting users in China so far.
Dubbed “WireLurker,” the malware installs malicious third-party apps on devices running Apple’s mobile operating system iOS once it’s connected via USB to a Mac computer.
The malware was used to infect over 450 apps on the Maiyadi App Store, a third-party Mac app store used in China. So far the attacks are limited to Chinese users – but, according to security researchers, it has already affected hundreds of thousands of users.
READ MORE: Apple issues a warning for iCloud users amid reports of hacking effort in China
“In the past six months, these 467 infected applications were downloaded over 356,104 times and may have impacted hundreds of thousands of users,” said Claud Xiao of Palo Alto Networks, which discovered the malware.
It’s the first known malware that can infect installed iOS applications similar to a traditional computer virus, according to the security firm.
Get daily National news
The attack comes just weeks after Chinese Apple users were affected by a security flaw affecting Apple’s iCloud storage service.
How does it work?
According to Palo Alto Networks, once an iOS device is plugged in via USB to an infected computer, WireLurker starts to download malicious third-party apps onto the device.
Though similar attacks have been tried on “jailbroken” devices – the term for when users remove the limitations on Apple’s software, or alter them to run unauthorized software – this malware threatens all devices running iOS.
What can it do?
“WireLurker is capable of stealing a variety of information from the mobile devices it infects and regularly requests updates from the attackers command and control server,” reads the Palo Alto security warning.
“This malware is under active development and its creator’s ultimate goal is not yet clear.”
Are Canadian users at risk?
No. WireLurker is only affecting users in China.
However, this attack shows that hackers are zeroing in on Apple’s systems. In fact, for a long time there was the belief that Macs “couldn’t get viruses.”
How can users protect themselves?
It’s important to remember that this malware is affecting apps downloaded in a third-party app store – not Apple’s official store. Usually users who have jailbroken their devices use third-party app stores.
Apple recommends that users always download apps from trusted sources.
READ MORE: How to protect your computer from malware and phishing scams
To ensure you are downloading authorized apps, open “System Preferences” on your Mac, click “Security & Privacy” and make sure “Allow apps downloaded from Mac App Store (or Mac App Store and identified developers)” is selected.
Users can also make sure that they are running up-to-date anti-virus software on their Macs.
Comments