It’s possible that malware can slip through Apple’s airtight ecosystem even despite the company’s airtight ecosystem, according to a recent report by Group-IB. iOS malware has been discovered that targets iOS devices to steal Face ID information to commit banking fraud. How to protect your iPhones from the GoldDigger trojan attacking iOS devices is explained here.
GoldDigger Trojan:
The GoldDigger trojan has been ported from Android to iOS, according to a Group-IB report. As the APK contains the term GoldActivity, GoldDigger is called malware. An iOS trojan called GoldPickaxe has been discovered by the same agency. Another version, GoldDiggerPlus, allows hackers to call victims in real time on infected devices.
In addition to receiving regular updates, the newer version of the malware is designed to evade detection, making it even more dangerous. The GoldPickaxe intercepts SMS messages and steals facial recognition data. By using an AI face-swapping feature, it can create deepfakes to commit banking fraud and siphon users’ bank accounts.
GoldFactory’s malware was first discovered in October in Vietnam and is currently affecting Vietnamese and Thai users. Once the malware is proven to be effective, however, it is only a matter of time before the trojan reaches other parts of the globe.
How does it work?
Apple’s beta testing platform called TestFlight was used by the cybercriminals. The malicious app was quickly identified and removed by Apple.
Cybercriminals are now using Mobile Device Management (MDM), which is used by corporations and businesses to manage company devices. To obtain access to iPhones, criminals persuade unsuspecting iOS users to install a sophisticated MDM profile containing the dangerous trojan.
How to protect?
Apple is aware of the trojan, according to the report, and is working on a fix. It is possible to keep your device safe in a couple of ways, however. TestFlight should be avoided or completely removed from your device if you don’t want to install apps from it.
On iPhone, you can enable Lockdown Mode by following these steps.
- Open the Settings app on your device.
- Tap on Privacy & Security.
- Scroll to Lockdown Mode and turn it on.
- Tap on Turn On & Restart.
- Enter your passcode.
You should be extremely careful when installing MDM profiles on your iPhone. It is best to enable Lockdown Mode on your iPhone if you use a corporate iPhone and use banking apps on it. You will be restricted from using iPhones, but your data will be protected against malicious MDM profiles pushed by your IT department.
