Skip to main content
  1. Home
  2. Mobile
  3. Reviews

If your iPhone is jailbroken, it could be vulnerable to this virus

Christian Brazil Bautista
By
iPhone 5S hands on home angle
Image used with permission by copyright holder

Users on a jailbreak subreddit have discovered a new kind of malicious software on iOS phones. The malware, which comes as a library called unfold.dylib, was uncovered after a Reddit user complained of crashes in Google Hangout and Snapchat.

 The threat, which has been nicknamed “unflod baby panda,” is rumored to be of Chinese origin. There are several factors that support this theory. According to German mobile security firm SektionEins, the infection is digitally signed with an iPhone developer certificate under the name Wang Xin. Also, the malware, which steals the Apple ID and password of users, sends the information in plain text to 23.88.10.4, which appears to be a Chinese website from the error message it displays. However, these could all be fake. SektionEins even raised the possibility of certificate theft. So for now, no one knows where the malware came from and how it got into iOS devices. 

Recommended Videos

The malware only affects jailbroken iPhones. It hooks into all the running processes of affected devices and listens to outgoing SSL connections. The infection also comes as unfold.plist and framework.dylib. 

Related

“Currently the jailbreak community believes that deleting the Unflod.dylib/framework.dylib binary and changing the Apple ID password afterwards is enough to recover from this attack. However, it is still unknown how the dynamic library ends up on the device in the first place and therefore it is also unknown if it comes with additional malware gifts,” SektionEins said. 

“We therefore believe that the only safe way of removal is a full restore, which means the removal and loss of the jailbreak.”

The signature date on the malware is February 14, so the threat may have gone undetected for about two months. If you need a step-by-step guide for removing the malicious file from your phone, Reddit user SaurikIT has provided detailed instructions here.

Editors' Recommendations

Topics
Christian Brazil Bautista
Christian Brazil Bautista
Former Digital Trends Contributor
Christian Brazil Bautista is an experienced journalist who has been writing about technology and music for the past decade…
iPhone 16: news, rumored price, release date, and more
A person holding the Apple iPhone 15 Plus and Apple iPhone 15 Pro Max.

Apple iPhone 15 Pro Max Andy Boxall / Digital Trends

We're a few months removed from the launch of the iPhone 15 and iPhone 15 Pro, so you know what that means: iPhone 16 rumors are in full force. Talk is heating up about everything from design leaks and rumored specs to camera changes and more.

Read more
Why you should buy the iPhone 15 Pro instead of the iPhone 15 Pro Max
Natural Titanium iPhone 15 Pro with Chopper and BD-1 droids around it.

Apple releases multiple iPhones every year, offering folks choice in terms of size and features. In 2024, the iPhone 15 lineup includes four distinct models.

The regular iPhone 15 and iPhone 15 Plus are great for those who don’t need a telephoto lens and don’t care about the Action button or the 1TB of storage. But anyone who wants a more “pro” experience has the iPhone 15 Pro and iPhone 15 Pro Max.

Read more
iPhone SE 4: news, rumored price, release date, and more
The Apple iPhone SE (2022) and Apple iPhone SE (2020) together.

While the spotlight always seems to be on Apple’s mainline iPhones, the iPhone SE is a great pick for those who are on a budget. If you want an iPhone that doesn't break the bank, the SE is the way to go.

The original iPhone SE came out in 2016, and then Apple revamped it in 2020 and 2022 by giving it some more modern hardware. The iPhone SE tends to get updated every two or so years rather than annually like the traditional iPhone. This means  that we should see a new iPhone SE 4 this year, but it’s not so cut-and-dried with this particular model.

Read more