f5-nz logo
Story image

Apple blocks WireLurker infected apps

Apple says it has blocked the apps containing the WireLurker malware.

Palo Alto Networks had earlier warned about the new family of malware targeting Apple iOS and OS X.

WireLurker can infect even non-jailbroken iOS devices through trojanised and repackaged OS X jumping from infected Macs onto iPhones through USB connections.

A Palo Alto Networks blog says WireLurker was used to trojanise 467 OS X applications on Chinese third-party app store, Maiyadi.

“In the past six months, these 467 infected applications were downloaded over 356,104 times and may have impacted hundreds of thousands of users.”

Security company Eset, which detects the malware as OSX/WireLurker.A, says it infects users through a third party Mac application store in China called Maiyadi.

“Once on the iMac or Macbook, the malware would wait for an iPhone or iPad connection via USB. As soon as the phone or tablet is connected WireLurker would spread to the handset, hence its name.”

Once on the handset, WireLurker’s next steps depend on whether or not the iPhone is jailbroken.

Apple has issued a statement saying it is aware of the malicious software.

“We've blocked the identified apps to prevent them from launching,” Apple says.

“As always, we recommend that users download and install software from trusted sources.”