Skip to comments.
AceDeceiver: First iOS Trojan Exploiting Apple DRM Design Flaws to Infect Any iOS Device
Palo Alto Networks ^
| March 16, 2016 5:00 AM
| Claud Xiao
Posted on 03/16/2016 6:30:31 PM PDT by Utilizer
Weve discovered a new family of iOS malware that successfully infected non-jailbroken devices weve named AceDeceiver.
What makes AceDeceiver different from previous iOS malware is that instead of abusing enterprise certificates as some iOS malware has over the past two years, AceDeceiver manages to install itself without any enterprise certificate at all. It does so by exploiting design flaws in Apples DRM mechanism, and even as Apple has removed AceDeceiver from App Store, it may still spread thanks to a novel attack vector.
AceDeceiver is the first iOS malware weve seen that abuses certain design flaws in Apples DRM protection mechanism namely FairPlay to install malicious apps on iOS devices regardless of whether they are jailbroken. This technique is called FairPlay Man-In-The-Middle (MITM) and has been used since 2013 to spread pirated iOS apps, but this is the first time weve seen it used to spread malware. (The FairPlay MITM attack technique was also presented at the USENIX Security Symposium in 2014; however, attacks using this technique are still occurring successfully.)
(Excerpt) Read more at researchcenter.paloaltonetworks.com ...
TOPICS: Business/Economy; Computers/Internet
KEYWORDS: apple; drm; ios; malware; security
Malware for macolytes found!
1
posted on
03/16/2016 6:30:31 PM PDT
by
Utilizer
To: Utilizer
2
posted on
03/16/2016 6:41:10 PM PDT
by
hawaiianninja
(Palm note to self: "Prepare for some serious 2016 house cleaning. Trump/Cruz or Cruz/Trump 2016!")
To: Utilizer
And as usual, Microsoft’s abysmal security is the attack vector ... (please read the full article before responding)
3
posted on
03/16/2016 6:46:13 PM PDT
by
SecondAmendment
(Restoring our Republic at 9.8357x10^8 FPS)
To: SecondAmendment
Microsoft has excellent security.
Gates is secure, you are not.
exactly what Gates wants.
on top of that,
it is time to upgrade your lease of
Word(tm) for Windows v.754 to V.755
pay up or else
4
posted on
03/16/2016 7:15:04 PM PDT
by
RockyTx
To: Swordmaker
5
posted on
03/16/2016 7:15:46 PM PDT
by
Mark17
(Thank God I have Jesus, there's more wealth in my soul than acres of diamonds and mountains of gold)
To: Utilizer; ~Kim4VRWC's~; 1234; Abundy; Action-America; acoulterfan; AFreeBird; Airwinger; Aliska; ...
AceDeceiver: a new/old method of installing malware onto an iOS device. Don't worry. This users a very roundabout means of installing a malware that requires steps NO ONE USES to get unauthorized iOS Apps from third party iOS App Stores and install them using a Windows PC Transloader application from Chinese third party iOS App Stores looking to sell unauthorized iOS apps. This one works only through a non-iTunes transloader on a Windows PC. A few of the AceDeceiver Apps were uploaded to the Chinese Apple App Store, but would STILL require using the PC transloader to be properly installed on an iPhone. This appears to be another CHINESE iOS problem. . . which has not appeared in the Apple App Store anywhere else. Palo Alto Research loves to post these breathless announcements as if they were major problems in the US when they are not. PING!
Apple Security Alert
Ping!
The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.
If you want on or off the Mac Ping List, Freepmail me
6
posted on
03/17/2016 12:55:23 AM PDT
by
Swordmaker
(This tag line is a Microsoft insult free zone... but if the insults to Mac users continue..)
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson