Active malware campaign steals Apple passwords from jailbroken iPhones

[Ulrich]

Presumably also from jailbroken iPads.

News of the malware dubbed "unflod," based on the name of a library that's installed on infected devices, first surfaced late last week on a pair of reddit threads here and here. In the posts, readers reported their jailbroken iOS devices recently started experiencing repeated crashes, often after installing jailbroken-specific customizations known as tweaks that were not a part of the official Cydia market, which acts as an alternative to Apple's App Store.

Good news (for some of us):

[T]he malicious code works only on 32-bit versions of jailbroken iOS devices. "There is no ARM 64-bit version of the code in the copy of the library we got," he wrote. "This means the malware should never be successful on [the] iPhone 5S/iPad Air or iPad mini 2G."

Read more: Active malware campaign steals Apple passwords from jailbroken iPhones | Ars Technica

 

[Ulrich]

More info:

Instructions from saurik for anyone with Unflod.dylib in /Library/MobileSubstrate/DynamicLibraries/ : jailbreak

 

[willerz2]

It's only an issue with those that pirate either AppStore applications or Cydia packages. If you fall under neither categories (which is the category that this forum supports), then there's nothing to worry about as it can only be injected into cracked applications or packages.

 

[twerppoet]

As in all areas of life, if you deal with shady people to obtain questionable services and/or products, you shouldn't be surprised if they're willing to rip you off too.