Yesterday, a research paper put light on new malware called ‘WireLurker’ that is affecting Mac and iOS devices in China. WireLurker attacks iOS devices through USB cables that are attached to a Mac, and works even on non-jailbroken devices.
Apple today gave a statement on the issue, saying that they were aware of the malware, and advise users against installing apps from untrusted sources:
“We are aware of malicious software available from a download site aimed at users in China, and we’ve blocked the identified apps to prevent them from launching. As always, we recommend that users download and install software from trusted sources.”
The malware used the enterprise developer program certificate to install apps without having to go through the App Store, and Apple’s statement suggests that they’ve revoked these certificates, which will block these apps from getting installed. The source of the malware was a third-party App Store in China that distributed Mac apps. To avoid any attack on your iOS device or Mac, users should ensure that the source of the software they’re installing is trustworthy.[via Loop Insight]