0
Please log in or register to do it.

iPhone devices are being targeted by a rare Trojan called GoldDigger, a cybersecurity company reports. This malware is part of an aggressive banking Trojan cluster affecting users in the Asia Pacific (APAC) region. While the previously discovered group of malware only affected Android users, a new version has now been discovered that specifically targets iOS and steals facial recognition data and other sensitive information from the devices. Such developments are rare as Apple is known to aggressively release security patches for its operating systems.

Cybersecurity firm Group-IB was behind the discovery of the iOS Trojan. The group has been tracking the new Android malware variant since October 2023, when it was first discovered and named GoldDigger. The malicious program was revealed to be a banking Trojan horse that steals financial information and targets banking apps, electronic wallets, and cryptocurrency wallets. This was first discovered in Vietnam but was later identified as a cluster affecting the entire APAC region.

In its findings, the group noted that it had discovered “a new, sophisticated mobile Trojan specifically targeting iOS users, named GoldPickaxe.iOS by Group-IB.” This malware can steal facial recognition data, identity documents and even intercept SMS.

The cybersecurity group also claimed that the threat actors behind the GoldDigger malware are likely leveraging face-swapping AI tools to create deepfakes based on Face ID data. The hackers behind the program can then use a combination of identity documents, SMS access, and Face ID data to gain access to victims’ iPhones and banking apps. The threat actor then performs repeated banking transactions to steal the victim’s money. According to Group-IB, this method of monetary theft has never been seen before.

The malware was previously known to have been distributed through the TestFlight app, which allows developers to beta test new features before releasing them, but was quickly removed by Apple. It is now spreading through multi-stage social engineering techniques that trick victims into installing mobile device management (MDM) profiles.

This Trojan is suspected of being linked to Chinese-speaking organized cybercrime groups and primarily affects Vietnam and Thailand. There is a possibility that it may spread to other areas. The cybersecurity group notified Apple about the Trojan and said the iPhone maker is likely already in the process of creating a fix.

Affiliate links may be generated automatically. Please see our Ethics Statement for more information.

Next-gen Xbox will be the 'biggest tech thing'
The Apple patent application describes the following uses:

Reactions

0
0
0
0
0
0
Already reacted for this post.

Reactions

Your email address will not be published. Required fields are marked *