New Trojan virus can affect iOS as well as Android users; Can drain your bank account

Smartphone users generally pick iPhone over Android over security issue and they are not wrong in doing so. However, the latest trojan virus can not only affect Android users but also iOS users. This new virus can target iPhone users and has been mentioned in a report by Group-IB (a cybersecurity services provider). The Android trojan Gold Digger has been modified and is now dubbed GoldPickaxe. This version can affect both Android as well as iOS devices.

Once the virus is installed on an iPhone or an Android, it can collect various information like the facial recognition data, documents for identity verification, text messages etc. The collected data can be used to siphon off funds from your bank account or from other financial app. The biometric data that is collected by the virus can be used to create Ai deepfakes and can be used to impersonate victims and access their bank accounts.

Currently, the GoldPickaxe trojan is used to target victims in Thailand as well as Vietnam. However, if the malware campaign goes successful it can be used to target victims with iOS and Android devices in other countries including U.S and Canada.

How do the Trojan attack

As Apple’s ecosystem is more closed as compared to that of Google, it is bit difficult for hackers to break into iPhones. In Android the trojans are generally distributed through malicious apps or phishing attacks.

In Apple, hackers use the TestFlight to distribute the GoldPixaxe.IOS trojan and this was found in the beginning of the malware campaign. However, as the malware was removed from Testflight, the hackers used a more sophisticated way to do so. The hackers behind the campaign started to use social engineering to do so. The victims were persuaded to install Mobile Device Management (MDM) profile. A MDM profile is something that a business’ IT department uses to manage company phones, computers and other devices. Falling for the above-mentioned trap can result hackers to get complete control of your device.

Exit mobile version