New AceDeceiver Malware Affects Non-Jailbroken iOS Devices: Researchers

Advertisement
By Manish Singh | Updated: 17 March 2016 12:24 IST

Researchers claim to have found a new strain of malware that can infect a large pool of iPhone and iPad devices. The iOS malware, dubbed AceDeceiver, is said to affect non-jailbroken devices without the user's knowledge. Apple has reportedly pulled three apps from the App Store that were believed to be from the AceDeceiver family.

AceDeceiver was designed to exploit a flaw in Apple's FairPlay digital rights management (DRM) protection mechanism, reports security firm Palo Alto Networks. The DRM technology protects unauthorised download of apps and other content on the company's App Store by authenticating the purchase. The researchers say that there's a flaw in the authorisation process, which vicious minds behind AceDeceiver exploited.

Advertisement

The attackers were able to intercept a special code required by Apple for authorisation and used a compromised Windows application called Aisi Helper to simulate iTunes to trick iOS device into believing that the app or any other content was purchased from Apple's store. Attackers would then silently install AceDeceiver to the iOS device. Three compromised apps were uploaded to the App Store between July 2015 and February 2016, reports Palo Alto Networks.

"AceDeceiver is the first iOS malware we've seen that abuses certain design flaws in Apple's DRM protection mechanism -- namely FairPlay -- to install malicious apps on iOS devices regardless of whether they are jailbroken," Claud Xiao, a security researcher from Palo Alto Networks wrote in a blog post.

Advertisement

This is not the first iOS malware that we have seen in the recent times. Researchers found a strain of malware called YiSpecter that targeted jailbroken as well as non-jailbroken devices in Taiwan and China. The app, however, leveraged private APIs that are signed with enterprise certificates to look authentic.

As for AceDeceiver, Palo Alto Networks note that only users in China seem to be affected for now. However, it adds, that with slight tweaks, users in other regions can also be targeted.

Advertisement

"Our analysis of AceDeceiver leads us to believe FairPlay MITM attack will become another popular attack vector for non-jailbroken iOS devices - and thus a threat to Apple device users worldwide," Xiao said.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement
Popular Mobile Brands
  1. Apple Back to School Sale: Grab These Deals on MacBook, iPad Models
  2. OnePlus Phones Will Soon Run on ColorOS 17 Instead of OxygenOS
  3. Nubia NaviX Ultra Design, Colourways Unveiled Ahead of July 17 Launch
  1. iPad Mini With OLED Screen to Reportedly Launch in October as Apple Prepares Base iPad, iPad Air Refreshes
  2. Google Rebrands NotebookLM as Gemini Notebook; Brings Cloud Computing and Search Integration
  3. Samsung Music Studio 5, Music Studio 7 Wi-Fi Speakers Launched in India
  4. Ostium Suspends Trading Following Oracle Security Incident Drains Millions
  5. Oppo’s New A Series, Upcoming OnePlus Mid-Range Smartphones Tipped to Launch With 10,000mAh Batteries
  6. WhatsApp Reportedly Rolls Out Mic Mode Controls for iPhone Calls
  7. Former Rockstar Games Developer Explains Why GTA 6 Maker Launches Games on PC After Consoles
  8. Samsung Galaxy Tab S12 Ultra CAD Renders Leaked Online; Reveals Familiar Look
  9. Apple Back to School Sale Now Live in India, Bringing Offers on MacBook Air, iPad Pro and More
  10. Realme Could Replace Realme UI With ColorOS 17 in India: Report
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.