Federal Judge Blocks Pentagon's Blacklisting of AI Company Anthropic 
Chinese Universities with PLA Ties Found Purchasing Restricted U.S. AI Chips Through Super Micro Servers 
Judge Dismisses Sam Altman Sexual Abuse Lawsuit, But Sister Can Refile 
SK Hynix Eyes Up to $14 Billion U.S. IPO to Fund AI Chip Expansion 
TSMC Japan's Second Fab to Produce 3nm Chips by 2028 
Trump White House Unveils National AI Policy Framework for Congress 
Elliott Investment Management Takes Multibillion-Dollar Stake in Synopsys 
Rubio Directs U.S. Diplomats to Use X and Military Psyops to Counter Foreign Propaganda 
Golden Dome Missile Defense: Anduril and Palantir Join Forces on Trump's $185B Space Shield 
Elon Musk Announces Terafab: SpaceX and Tesla to Build Dual AI Chip Factories in Austin, Texas 
Meta and Google just lost a landmark social media addiction case. A tech law expert explains the fallout 
California's AI Executive Order Pushes Responsible Tech Use in State Contracts 
NASA's Artemis II Crew Arrives in Florida for Historic Moon Mission 
SMIC Allegedly Supplies Chipmaking Tools to Iran's Military, U.S. Officials Warn 
Palantir's Maven AI Earns Pentagon "Program of Record" Status, Reshaping Military AI Strategy 
Microsoft Eyes $7B Texas Energy Deal to Power AI Data Centers 
Nintendo Switch 2 Production Cut as Holiday Sales Miss Targets 
After the XcodeGhost malware shook the Apple ecosystem, Palo Alto Networks has identified a new Apple iOS malware and christened it ‘YiSpecter’. So far, it has been found affecting iOS users in China and Taiwan.
The security firm said that the malware attacks both jailbroken and non-jailbroken iOS devices and is the first one that abuses private APIs in the iOS system to “implement malicious functionalities.”
“On infected iOS devices, YiSpecter can download, install and launch arbitrary iOS apps, replace existing apps with those it downloads, hijack other apps’ execution to display advertisements, change Safari’s default search engine, bookmarks and opened pages, and upload device information to the C2 [command and control] server”, Palo Alto Networks explained.
It lists some characteristics about the malware:
- Whether an iPhone is jailbroken or not, the malware can be successfully downloaded and installed
- Even if you manually delete the malware, it will automatically re-appear
- Using third-party tools you can find some strange additional “system apps” on infected phones
- On infected phones, in some cases when the user opens a normal app, a full screen advertisement will show
The researchers found that YiSpecter was spread by Lingdun worm and that main YiSpecter apps were also published on multiple underground app distribution websites. Moreover, it was also detected that the malware’s author tried to directly promote their malicious apps on social networks and in public communities.
Apple says it is aware of the vulnerability and fixed it in iOS 8.4. “This issue only impacts users on older versions of iOS who have also downloaded malware from untrusted sources. We addressed this specific issue in iOS 8.4 and we have also blocked the identified apps that distribute this malware,” Apple told TechWeekEurope. “We encourage customers to stay current with the latest version of iOS for the latest security updates. We also encourage them to only download from trusted sources like the App Store and pay attention to any warnings as they download apps.”
Palo Alto Networks has released IPS and DNS signatures to block YiSpecter’s malicious traffic.
