Security researchers say they’re tracking a new Apple iOS trojan that’s designed to give criminals access to victims’ bank accounts.
The cybersecurity firm Group-IB says the trojan was deployed by a Chinese cybercrime group and collects a trove of sensitive data from affected users, reports Security Week.
The malicious code is able to collect facial profiles, sensitive documents and SMS messages, which are then used to log into victims’ bank accounts.
Researchers say the hackers, who have tweaked the trojan multiple times, are currently using it to target iPhone users in Thailand.
“The iOS malware, disguised as a Thai government application, was initially installed on devices by abusing TestFlight, an Apple developer tool designed for testing applications before they are released on the official app store…
The iOS version of the GoldPickaxe malware is capable of collecting photos from the infected iPhone’s library, harvest SMS messages, capture the victim’s face, and proxy network traffic through the infected device. It can also instruct the victim to provide a photo of their ID card.”
A number of banks in Thailand utilize facial recognition checks, and researchers say the hackers combine stolen facial data with AI to create convincing deepfakes.
Group-IB also says the trojan may be active in Vietnam, where a recent news story described a malware attack with similar hallmarks.
Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inboxGenerated Image: Midjourney