Cybersecurity firm Group-IB has announced the existence of a malware called “GoldDigger,” a type of Trojan that targets iPhone and iPad users to steal their bank accounts.
According to a detailed report by Group-IB, GoldDigger was originally designed to attack Android systems and was later successfully used to attack iPhone and iPad users.
The company says the program is likely to be the first Trojan to attack iOS on Apple devices, and that it could also be extremely dangerous. Since it collects facial recognition data, identity documents, and text messages, it could give it the ability to hijack users' bank accounts.
Once all the data is in hand, hackers use AI-based tools to create fake images using deepfake software, gaining access to the victim's bank account until it is too late.
"GoldDigger" was originally distributed in the App Store through Apple's TestFlight system, which allows developers to release beta versions of their apps without having to go through the Store's review process.
Although Apple removed the suspicious apps, the hackers used a more sophisticated approach based on Mobile Device Management (MDM) profiles, which are primarily used to manage company devices and allow companies to customize and control the system in different ways according to their needs. Their needs.
Hackers are trying to convince users to install a malicious file to download the app from outside the App Store (which is not currently possible). However, once the file is installed, hackers can collect all the data they need.
GoldDigger malware mainly targets users in Vietnam and Thailand, but can also be used to attack users in other regions of the world.