Geo targeted Apple IOS Virus

**DiscoStu** · 1 October 2014, 12:28

Nowhere near as hysterical as your usual posting style, must try harder.

**suityou01** · 1 October 2014, 12:30

Originally posted by DiscoStu View Post

Nowhere near as hysterical as your usual posting style, must try harder.

Forgot to work in the MCaans somehow I suppose

**TheCyclingProgrammer** · 1 October 2014, 12:47

I'm intrigued to know how this "virus" is spreading as iOS is pretty locked down.

According to the researchers page, it appears your device needs to be jail-broken in order for the device to be compromised, as it uses Cydia to distribute the malware:

https://www.lacoon.com/lacoon-discov...ed-ios-trojan/

So...not a virus, but malware installed through a backdoor that users have to willingly open in the first place. Not quite the same thing.

**NickFitz** · 1 October 2014, 14:19

Not only does it require the user to jailbreak their phone and install it, it also hasn't actually been seen in the wild, according to its discoverers. They only say they've found a copy on a command & control server used by the Android malware from which it's derived, which has been seen in the wild.

(See the article linked to by TCP above for details.)

EDIT: oh, and I don't see anything to suggest it's a virus, other than somebody at Reuters using the word when they don't know what it means: it's a Remote Access Tool. Nothing in the description of it suggests it can spread itself unaided. (I see Reuters managed to get virus, spyware, malware, and Trojan into the article. I'm pretty sure it's not all of them.)

**oracleslave** · 1 October 2014, 14:22

Originally posted by zeitghost

Can you get rid of it with soap & water like you can with Ebola?

Just asking like.

It's garlic, potatoes and a shower you numpty. Or is that aids? This syphilis has riddled my brain

**suityou01** · 1 October 2014, 14:31

Originally posted by NickFitz View Post

Not only does it require the user to jailbreak their phone and install it, it also hasn't actually been seen in the wild, according to its discoverers. They only say they've found a copy on a command & control server used by the Android malware from which it's derived, which has been seen in the wild.

(See the article linked to by TCP above for details.)

EDIT: oh, and I don't see anything to suggest it's a virus, other than somebody at Reuters using the word when they don't know what it means: it's a Remote Access Tool. Nothing in the description of it suggests it can spread itself unaided. (I see Reuters managed to get virus, spyware, malware, and Trojan into the article. I'm pretty sure it's not all of them.)

I beg to differ. It says it is a trojan, as in it is spread by being disguised as an app, which the user can download. If a virus were to propagate by itself that would be a worm, but a virus can exist without self propagation capability.

The jailbreaking I can't of course disagree with.

HTH

**stek** · 1 October 2014, 14:36

Originally posted by suityou01 View Post

I beg to differ. It says it is a trojan, as in it is spread by being disguised as an app, which the user can download. If a virus were to propagate by itself that would be a worm, but a virus can exist without self propagation capability.

The jailbreaking I can't of course disagree with.

HTH

You can only downloads apps from Apple tho, unless your iPhone is jail broken...

**suityou01** · 1 October 2014, 14:41

Originally posted by stek View Post

You can only downloads apps from Apple tho, unless your iPhone is jail broken...

Very good.

**Platypus** · 1 October 2014, 15:42

Our resident security expert speaks.

By the way, did I miss the end of the world last week with Shellshock?

Geo targeted Apple IOS Virus