China using jailbroken iPhones to spy on Hong Kong protesters

This is a discussion on China using jailbroken iPhones to spy on Hong Kong protesters within the iPhone News forums, part of the Apple News category; Protesters in Hong Kong hold their phones high As thousands of protesters flood the streets of Hong Kong demanding a democratic election, the Chinese government ...

Results 1 to 1 of 1
  1. #1
    Administrator
    Join Date
    Jul 2011
    Location
    Northern Michigan
    Posts
    25,446
    Member #
    1529
    Liked
    316 times

    China using jailbroken iPhones to spy on Hong Kong protesters

    Protesters in Hong Kong hold their phones high



    As thousands of protesters flood the streets of Hong Kong demanding a democratic election, the Chinese government is reportedly using sophisticated malware to spy on not only Android devices, but iOS devices as well.

    But don’t worry about China peeking at your Snapchats. There has yet to be a widespread instance of iOS malware in the wild, and this particularly “advanced” trojan still requires a tremendous amount of complicit behavior on the victim’s part.

    Originally targeted at Android devices, the phishing attack started spreading through a link shared on WhatsApp saying, “Check out this Android app designed by Code4HK for the coordination of OCCUPY CENTRAL!” Once the app is downloaded, the phone’s contents are sent to remote servers that appear to be controlled by the Chinese government.

    Social media outlets like Instagram have been blocked in mainland China since the protests began. Protesters in Hong Kong have turned to messaging apps like FireChat that don’t require an internet connection.
    Malware is much more prevalent on Android because it’s easier for the user to run unsigned code at the root level. On iOS, jailbreaking is required to perform similar functions and get past Apple’s restrictions. Only a small minority of iOS users jailbreak to begin with, although the practice is generally more common in Asia than North America.

    Lacoon Mobile Security’s findings uncovered a trojan called Xsser used in Hong Kong that specifically targets iOS devices.

    The Xsser mRAT is itself significant because while there have been other iOS trojans found previously, this is the first and most advanced, fully operational Chinese iOS trojan found to date. Although it shows initial signs of being a targeted attack on Chinese protesters, the full extent of how Xsser mRAT is being used is anyone’s guess. It can cross borders easily, and is possibly being operated by a Chinese-speaking entity to spy on individuals, foreign companies, or even entire governments.

    Exactly how the trojan would get onto a jailbroken iPhone is unclear, because the user has to manually add the trojan’s source repo in Cydia, the jailbreak alternative to the App Store.

    Update: Article updated with correction that social media has been blocked in mainland China, not Hong Kong.





    10-1-14

    Source

  2. Ads

    Posts
    Many

Remove Ads

Ads

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Similar Threads

  1. Replies: 1
    Last Post: 08-28-2013, 12:09 PM
  2. Replies: 1
    Last Post: 02-19-2013, 12:03 PM
  3. Replies: 0
    Last Post: 09-18-2012, 10:06 AM
  4. Replies: 0
    Last Post: 07-05-2012, 02:54 PM
  5. Hello from Hong Kong
    By Manou in forum New Member Introduction & Site Assistance
    Replies: 4
    Last Post: 07-29-2011, 04:38 PM

Contact Us
Back to top