AceDeceiver is a new malware dangerous for iOS discovered in China, he being able to evade the security measures implemented by the company Apple Lossless Audio CODEC (ALAC), in its operating system for our iPhones, iPads and iPod Touches, affecting only local users for now.
AceDeceiver infects iPhone terminals only if they are connected to a computer and use a software called Aisi Helper, the latter being promoted in China as a replacement for iTunes and a program that allows the installation of pirated applications in iDevices.
AceDeceiver it was initially implemented in applications offered through the App Store, it being hidden in applications that offered free wallpapers for users, authorization codes for installing other applications from the App Store being taken over by malware and sent to hackers.
Combined with Apple IDs and their passwords taken from users who used the Aisi Helper program, the hackers developed a method to install their malware on iDevices that do not have jailbreak, everything being thought in such a way that the user does not know that he is infected.
Apple allows users to purchase and download iOS apps from their App Store through the iTunes client running in their computer. They can then use the computers to install the apps onto their iOS devices. iOS devices will request an authorization code for each app installed to prove the app was actually purchased. In the FairPlay MITM attack, attackers purchase an app from the App Store then intercept and save the authorization code. They then developed PC software that simulates the iTunes client behaviors, and tricks iOS devices into believing the app was purchased by the victim. Therefore, the user can install apps they never actually paid for, and the creator of the software can install potentially malicious apps without the user's knowledge.
In the end, hackers also used vulnerabilities of the FairPlay system, developed by Apple to prevent the unauthorized installation of applications in iDevices, to install malware from PCs in iDevices, so everything represents a new demonstration of iOS vulnerability .
Considering that the AceDeceiver malware can only be installed using the Windows program called Aisi Helper, all those who avoid it are safe.
