New trojan threatens iOS users with bank account and identity theft

Cybersecurity firm Group-IB warns iOS users of a new threat dubbed 'GoldDigger,' originally designed for Android but now targeting iPhones and iPads.

This trojan, potentially the first of its kind for iOS, poses a serious risk by stealing facial recognition data, ID documents, and SMS messages.

GoldDigger exploits Apple's TestFlight and Mobile Device Management (MDM) profiles to infiltrate devices. Initially distributed through TestFlight, it shifted to MDM profiles, tricking users into installing malicious profiles to download apps outside the App Store. Once installed, hackers collect sensitive data, enabling them to create deepfakes and access victims' bank accounts.

Primarily targeting users in Vietnam and Thailand, GoldDigger's evolution poses a threat beyond these regions. While Group-IB has alerted Apple to the trojan, iOS and iPadOS remain vulnerable. Users are advised to avoid installing apps from untrusted sources until a fix is implemented.