Get the scoop on finance - sign up for mobile alerts
Scams, Hacks & Breaches
| On
February 25, 2024

Apple iOS Trojan Allows Hackers To Access Bank Accounts, Security Researchers Warn – Here’s How It Works

By Daily Hodl Staff

Security researchers say they’re tracking a new Apple iOS trojan that’s designed to give criminals access to victims’ bank accounts.

The cybersecurity firm Group-IB says the trojan was deployed by a Chinese cybercrime group and collects a trove of sensitive data from affected users, reports Security Week.

ADVERTISEMENT

The malicious code is able to collect facial profiles, sensitive documents and SMS messages, which are then used to log into victims’ bank accounts.

Researchers say the hackers, who have tweaked the trojan multiple times, are currently using it to target iPhone users in Thailand.

“The iOS malware, disguised as a Thai government application, was initially installed on devices by abusing TestFlight, an Apple developer tool designed for testing applications before they are released on the official app store…

The iOS version of the GoldPickaxe malware is capable of collecting photos from the infected iPhone’s library, harvest SMS messages, capture the victim’s face, and proxy network traffic through the infected device. It can also instruct the victim to provide a photo of their ID card.”

ADVERTISEMENT

A number of banks in Thailand utilize facial recognition checks, and researchers say the hackers combine stolen facial data with AI to create convincing deepfakes.

Group-IB also says the trojan may be active in Vietnam, where a recent news story described a malware attack with similar hallmarks.

Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inbox
Check Price Action
Follow us on X, Facebook and Telegram
Surf The Daily Hodl Mix
&nbsp
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.

Generated Image: Midjourney