this post was submitted on 15 Feb 2024
6 points (66.7% liked)

Security

5068 readers
1 users here now

Confidentiality Integrity Availability

founded 5 years ago
MODERATORS
gary_host_laptop@lemmy.ml
6
This iOS Trojan Is Harvesting Facial-Recognition Data (www.pcmag.com)
submitted 10 months ago by yogthos@lemmy.ml to c/security@lemmy.ml
3 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] tyler@programming.dev 4 points 10 months ago

An Android version was also uncovered with even more capabilities. However, the malware isn’t circulating on official app stores. Nor does it exploit any iOS vulnerabilities. Instead, the creators of the malware have been tricking victims into installing the malicious app and then granting all the necessary configurations, including powerful device permissions via Apple's TestFlight or Mobile Device Management profile system.

So… not malware or a Trojan. Just a regular app that people are being tricked into installing, then tricked into setting up MDM…

I thought for sure this was going to be a security flaw. Turns out the security is fine