The other day, Apple Insider and other tech websites informed us that a "new 'Wirelurker'" virus targeting Mac and iOS users in China was discovered in the wild.
Barely a day or two later, Apple Insider let us know that Apple was now blocking 'WireLurker.' Other websites, including the WSJ blog confirm this.
Scary, right?
The malware hides in downloaded apps from a so-called 'unofficial' Maiyadi App Store in China, for users of Macs. When users connect their iDevices, the virus jump on via the USB connector and is then able to access any data stored on the device.
Credit for discovering the malware goes to the Silicon Valley security company Palo Alto Networks, who published details in a research paper. The malware apparently combines many techniques to "... realise a new brand of threat to all iOS devices ... It is only the second known malware that attacks iOS devices through OS X via USB (and) is the first malware to automate generation of malicious iOS applications, through binary file replacement."
In one of its rar-ish public statements, Apple said on Thursday, "We are aware of malicious software available from a download site aimed at users in China, and we’ve blocked the identified apps to prevent them from launching."
TechCrunch, in quite a tongue-in-cheek post here alleges that "Malware discovered in China could herald (a) 'New Era' of iOS and Mac threats." They further allege that, ironically, "It wasn’t long ago that Apple was being labeled a pirate in China. Now comes word of a pirate version of Apple’s App Store, selling iOS apps that let iPhone or iPad owners skirt iTunes and install apps, no jailbreak required." However, continue TechCrunch, "...the website is available only within China, likely to dissuade Apple lawyers coming down like a ton of bricks."
In a statement, Apple warned users to download only software from “trusted sources." The experts are clearer, suggesting that iOS and Mac owners only download apps from the official Apple app store, and that they make sure to keep their software up to date.
For me, the prevention appears so simple. Like Apple and the experts say, only download apps from the official Apple App Store and/or iTunes Store. Only use Apple-supplied chargers and USB connectors. Period.
Barely a day or two later, Apple Insider let us know that Apple was now blocking 'WireLurker.' Other websites, including the WSJ blog confirm this.
Scary, right?
Credit for discovering the malware goes to the Silicon Valley security company Palo Alto Networks, who published details in a research paper. The malware apparently combines many techniques to "... realise a new brand of threat to all iOS devices ... It is only the second known malware that attacks iOS devices through OS X via USB (and) is the first malware to automate generation of malicious iOS applications, through binary file replacement."
In one of its rar-ish public statements, Apple said on Thursday, "We are aware of malicious software available from a download site aimed at users in China, and we’ve blocked the identified apps to prevent them from launching."
TechCrunch, in quite a tongue-in-cheek post here alleges that "Malware discovered in China could herald (a) 'New Era' of iOS and Mac threats." They further allege that, ironically, "It wasn’t long ago that Apple was being labeled a pirate in China. Now comes word of a pirate version of Apple’s App Store, selling iOS apps that let iPhone or iPad owners skirt iTunes and install apps, no jailbreak required." However, continue TechCrunch, "...the website is available only within China, likely to dissuade Apple lawyers coming down like a ton of bricks."
In a statement, Apple warned users to download only software from “trusted sources." The experts are clearer, suggesting that iOS and Mac owners only download apps from the official Apple app store, and that they make sure to keep their software up to date.
For me, the prevention appears so simple. Like Apple and the experts say, only download apps from the official Apple App Store and/or iTunes Store. Only use Apple-supplied chargers and USB connectors. Period.
No comments:
Post a Comment