Palo Alto Networks called the malicious software "WireLurker" because it waits for a device running Apple's iOS mobile operating system to connect via USB to a Mac laptop or desktop.
The software -- hidden in apps downloaded from China's third-party Mac OS X app stores -- adds malicious code to legitimate iOS apps. The malware attack is limited to China.
The threat is new to Apple, though this sort of attack has been around since about 2003, said Ryan Olson, intelligence director at Unit 42, Palo Alto Networks' threat research team.
"For the general user, it's not something you need to light your hair on fire about," Olson said. Still, "the tech that we're seeing here brings Mac and iOS much closer" to the threats facing Windows and Android pairings. Unlike most iOS threats, WireLurker is not restricted to iPhones and iPads that have been jailbroken, a user-initiated state that allows any app to be installed -- against Apple's wishes.
0 comments:
Post a Comment