AceDeceiver: First iOS Trojan Exploits Apple’s FairPlay DRM
Security firm Palo Alto Networks has discovered a new family of iOS malware that can infect non-jailbroken devices. Called “AceDeceiver,” this is not something for most Mac users with iOS devices to worry about now, since the exploit relies on a separately infected Windows machine (and it displayed malicious behavior only when the user was located in China). The attack vector is novel in that it relies on flaws in Apple’s FairPlay digital rights management code and malware that masquerades as iTunes to install apps without the user’s knowledge. Although Apple’s code review failed to catch the malware initially, the company has now removed AceDeceiver from the App Store.