Security specialist Palo Alto Networks released a report on Sunday detailing a new form of iOS malware. This new demon is called “KeyRaider,” and it’s responsible for stealing the account information from over 225,000 Apple customers. Its specific target is jailbroken iOS devices, so if you haven’t made this change, you’re OK.
What’s jailbreaking? A process by which user could install unapproved app and changed to their iOS devices. Users would personalize their phones with themes, interfaces, widgets, etc.
But doing this means fiddling with built-in security protections, and this can open the phone up to malware attacks.
And this is a pretty nasty attack. Not only does it steal certificates and private keys used by Apple Push Notification Service, it also prevents infected iPhones or iPads from being unlocked either by a passcode or the iCloud service.
You can read more about the attack here: http://techcrunch.com/2015/08/31/keyraider-malware-responsible-for-possibly-largest-known-apple-account-theft-to-date-affecting-225000-users/?ncid=rss&utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Techcrunch+(TechCrunch)&sr_share=twitter#.8nvusy:jr19