Apple blocks malicious software Wirelurker on iPhones

The Cupertino firm says it has blocked the malware, the first to infect iPhones and iPads that have not been jailbroken

Apple says it has blocked Wirelurker, the first piece of malware able to infect iOS devices and applications which have not been jailbroken.

Identified by security researchers Palo Alto Networks on Wednesday, the malware has been spotted shipping alongside pirated copies of Chinese Mac apps, before jumping to iPhones and iPads over a USB cable.

Apple says that it is “aware of malicious software available from a download site aimed at users in China, and we’ve blocked the identified apps to prevent them from launching.”

The company did not elaborate on how it is carrying out the blocking, but did emphasise that “as always, we recommend that users download and install software from trusted sources”.

The infected apps were discovered on the Maiyadi App Store, a third-party application store based in China which is largely filled with pirated and unauthorised copies of major apps, such as Dropbox, Spideroak and Autodesk.

Wirelurker works by abusing capabilities in Apple’s operating systems designed to enable large enterprises to install their own applications on employees’ devices. That enables the malware to not only scrape data from affected users’ iOS devices, but even go so far as to install third-party applications on those devices, and infect installed applications.

It is the first in-the-wild malware family that can do this, and only the second ever that attacks iOS devices through OS X via USB.

A second Apple vulnerability disclosed this week, known as Rootpipe, remains unpatched. The researcher who discovered it has not revealed how the vulnerability, which lets attackers gain root privileges without entering a password, can be abused, and says he is waiting for Apple to issue a patch.

The Guardian has asked Apple for comment.


Alex Hern

The GuardianTramp

Related Content

Article image
iPhones vulnerable to hacking tool for months, researchers say
NSO Group’s Pegasus spyware could allegedly track locations and access passwords

Alex Hern

20, Dec, 2020 @8:05 PM

Article image
Double trouble for Apple, as two software security flaws discovered
A Swedish hacker has discovered software vulnerability in Apple’s desktop operating system, while a separate researcher has discovered iPhone malware. By Alex Hern

Alex Hern

06, Nov, 2014 @1:36 PM

Article image
iOS flaw lets hackers access iPhones using an iMessage
Users urged to update their iPhone, iPad, Mac, Apple TV and Apple Watch to prevent attackers taking over devices with malicious images

Samuel Gibbs

22, Jul, 2016 @9:00 AM

Article image
'Jailbreak' for iPhones wins $1m bounty
Computer exploit merchant Zerodium says it paid research team that worked out how to ‘jailbreak’ latest version of Apple’s mobile operating system, iOS 9.1.

Alex Hern

03, Nov, 2015 @4:13 PM

Article image
Wi-Fi hack creates 'no iOS zone' that cripples iPhones and iPads
The only solution for users of Apple tech? Leave the affected area immediately

Alex Hern

22, Apr, 2015 @3:01 PM

Article image
iOS update: Apple apologises for breaking new iPhones
An update to iOS 8 released on Wednesday left iPhone owners unable to make phone calls. By Alex Hern

Alex Hern

25, Sep, 2014 @10:17 AM

Article image
Apple fixes HomeKit bug that allowed remote unlocking of users' doors
Security flaw in latest iPhone and iPad iOS 11.2 software meant hackers could potentially gain remote control of lights, cameras and locks in smart homes

Samuel Gibbs

08, Dec, 2017 @10:41 AM

Article image
iPhone text message bug can crash Apple Watch, iPad and Mac too
Bug in Apple’s Messages that allows anyone to crash someone’s iPhone with a text can also nuke an Apple Watch, iPad or Mac

Samuel Gibbs

28, May, 2015 @10:22 AM

Article image
Report claims a third of UK jobs at risk from robots – today's Open Thread
Have your say on the pros and cons of automation, as well as Masque Attack malware, Google v Ebola and more. By Stuart Dredge

Stuart Dredge

11, Nov, 2014 @7:30 AM

Article image
Malware is not only about viruses – companies preinstall it all the time
Since I started free software in the 80s, developers have grown to routinely mistreat users by shackling behaviour and snooping – but we have ways to resist

Richard Stallman

22, May, 2015 @1:33 PM