A malware family dubbed โ€˜KeyRaiderโ€™ has stolen over 225,000 iOS account login credentials, mostly from Chinese jailbroken iPhones, according to a report released this week from Palo Alto Networks.

The breach is the biggest so far in the history of iOS devices, and has affected users in 18 countries total. According to the report, up to 20,000 users are taking advantage of the tweaks that use stolen data to download and pay for items from the iTunes App store.

โ€œThe purpose of this attack was to make it possible for users of two iOS jailbreak tweaks to download applications from the official App Store and make in-app purchases without actually paying,โ€ said Palo Alto in a blog post.

โ€œSome victims have reported that their stolen Apple accounts show abnormal app purchasing history and others state that their phones have been held for ransomโ€

The malware was originally discovered by a student from Chinaโ€™s Yangzhou University along with a member from tech group WeipTech which is affiliated with well-known Chinese Apple fan site Weiphone. The report identified a user of Weiphoneโ€™s Cydia Repositories, a service for jailbroken devices, who they believe to be the author of the malware.

Weiphone has cooperated in the past with Palo Alto in identifying Wirelurker, another of the largest attacks to hit iOS devices, again mostly in China. The country is susceptible to malware because the inability to access software on official platforms makes jailbreaking an attractive option for users.

Wirelurker was the first malware of its kind to infect iOS devices that were not jailbroken. At the time Palo Alto Network noted that it was a sign โ€œbad actors are getting more sophisticated.โ€ Wirelurker infected 450 apps on a black market app store and was downloaded over 365,000 times, potentially affecting a similar number of users as KeyRaider. 

Palo Alto Network has posted details on how affected iOS users should handle the the KeyRaider malware once it has been identified.

@CateCadell

Related Articles:

Huawei Releases Their Answer To The iPhone 6 With Force Touch

Chinese iPhone Hacker PanGu Releases iOS8.1 Jailbreak

How Korean Startup CEOs Joined Forces To Track The MERS Virus

Image Source: Shutterstock

Cate is a tech writer. She worked as a journalist in Australia, Mongolia and Myanmar. You can reach her (in Chinese or English) at: @catecadell or catecadell@ovau.ip-ddns.com

Leave a comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.