iOS users beware: GoldPickaxe trojan steals your facial data

2024-02-15 10:14

Group-IB uncovered a new iOS trojan designed to steal users' facial recognition data, identity documents, and intercept SMS. The trojan, dubbed GoldPickaxe.

iOS trojan targets victims in the Asia-Pacific region.

Within less than a month, Group-IB's Threat Intelligence unit identified a new iOS malware variant targeting victims from Thailand, subsequently named GoldPickaxe.

iOS. Along with the iOS trojan, the Group-IB team identified an Android version of GoldPickaxe, named GoldPickaxe.

iOS is the first iOS trojan observed by Group-IB that combines the following functionalities: collecting victims' biometric data, ID documents, intercepting SMS, and proxying traffic through the victims' devices.

"The surge in mobile trojans targeting the Asia-Pacific region can be attributed to GoldFactory. The gang has well-defined processes and operational maturity and constantly enhances its toolset to align with the targeted environment showcasing a high proficiency in malware development. The discovery of a sophisticated iOS trojan highlights the evolving nature of cyber threats targeting the Asia-Pacific region. In our assessment, it appears imminent that GoldPickaxe will soon reach Vietnam's shores, while its techniques and functionality will be actively incorporated into malware targeting other regions," said Andrey Polovinkin, Malware Analyst, Threat Intelligence team, Group-IB..

News URL

https://www.helpnetsecurity.com/2024/02/15/goldpickaxe-ios-trojan/

#IOS #trojan