A new malware "KeyRaider" has made its way to jailbroken iOS devices and captured 225,000 Apple iCloud accounts, one of the worst malware hacking for Apple company.
The malware KeyRaider is primarily distributed via 'jailbroken' softwar Cydia. The hacked accounts are from 17 countries and regions including China, France, Japan, the UK.
The malware capture lots of other items in addition to Apple ID usernames and passwords, and it also targets the device's unique identifier, security certificates and private keys for Apple to push notification service as well as App Store purchase data. KeyRaider also disables the ability to unlock iOS devices on which it's installed, a feature occasionally used to remotely hold devices for ransom.
Palo Alto Networks and members of Chinese iphone community Weifeng website conducted the investigation of the hacking. The researchers said KeyRaider is linked to two other jailbreak tweaks that let users download App Store apps for free. An insider told The Beijing Times that any "jailbroken" tool has risk, so an iphone in which a "jailbroken" software is installed is likely to became a target for hacking.