Users on Reddit have discovered an unusual piece of malware that only exists on Apple devices that have been jailbroken. Called Unflod, it intercepts all incoming data and attempts to steal user’s Apple passwords. Security researcher Sophos is currently looking into the source of the malware but neither it, nor Reddit users, have been able to determine how it spreads.
Ars Technica managed to contact security researcher Stefan Esser for a follow up on the malware, where they learnt that it appears to report to a server in China. Whether the attack actually comes from that server is still unknown. Esser also explained that the code only works on 32-bit versions of the Apple devices, which means that newer designs are currently safe from attack.
iPhone and iPad users who have jailbroken their devices and are concerned about malware can follow these instructions to check for Unflod.dylib.