A new class of malware targeted at OS X and iOS is spreading like wildfire in China, according to new research by Palo Alto Networks. Dubbed WireLurker, the trojan hides itself in apps distributed through a third-party Chinese app store for OS X and side-loads itself onto iOS devices via USB.
What sets WireLurker apart from other malware is that it is capable of infecting non-jailbroken iOS devices, and it heralds “a new era in malware attacking Apple’s desktop and mobile platforms.”
But don’t worry about China peeking at your Snapchats. There has yet to be a widespread instance of iOS malware in the wild, and this particularly “advanced” trojan still requires a tremendous amount of complicit behavior on the victim’s part.
In what appears to be a strange slip on Apple’s part, Securelist is reporting that a Trojan Horse made its way into the iOS App Store this morning. The app, known as “Find and Call”, was available on both the iOS App Store and Google Play, and received a flood of bad reviews before being pulled from both stores.
If you still think your Mac is immune to malware and malicious infections then it’s time to stop kidding yourself. The recent Flashback trojan has proven that these a real issue for Apple’s desktop operating system, and as long as Mac OS X continues to grow, so will its infections.
But Apple is now working to prevent them. It issued a fix for the Flashback infection after it became apparent just how huge it was, and the Cupertino company is now teaming up with security specialists Kaspersky to identify other vulnerabilities.
The Flashback malware which was found to be infecting over 650,000 Macs at its peak was earning its creators up to $10,000 a day, according to security specialists Symantec. The OSX.Flashback.K trojan, which is believed to be the largest Mac infection to date, is designed to steal page views and advertising revenue from Google.
The Flashback saga has yet to reach its end, as a recent report debunks earlier claims that the number of infected Macs had fallen from 600,000 to 140,000 over a matter of a few days. Apple released a security tool to combat Flashback last week, and Norton Symantec reported that the number of infected machines had fallen to 140,000 shortly after. That number has been proven to be inaccurate.
In an interesting turn of events, the original Flashback whistleblower, Russian security firm Dr. Web, has revealed that around 650,000 Macs are still infected with the notorious trojan. Not only are there many Macs connected to the botnet that were previously unaccounted for, but more OS X computers are added every day.