Security Architecture, Endpoint/Device Security, Endpoint/Device Security, Security Strategy, Plan, Budget, Incident Response, TDR, Threat Management, Malware, Endpoint/Device Security, Endpoint/Device Security, Endpoint/Device Security

Chinese iOS trojan targets jailbroken devices

A Chinese iOS trojan known as “Xsser mRAT” appears to be targeting protesters in China, but the exact scope of its use is still unclear, according to mobile security company Lacoon.

Xsser mRAT can extract address book data, call logs, SMS messages, location data, pictures, operating system data, and information from a popular Chinese messaging app by Tencent, according to a Tuesday post.

Additionally, passwords and other authentication data in the iOS keychains used by device accounts – such as Apple ID and mail – and GSM identities are also at risk, the post indicates.

Although researchers have been unable to determine the method or vector of attack, Lacoon has determined that infection can only occur if the iOS device is jailbroken. 

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.