- Feb 12, 2025
- 6
Hi everyone! I am beyond thrilled to find this forum. As the username says, I am new at this. When my phone started acting screwy, months ago, and no one believed it was a virus because it's an iPhone and I have a history of having terrible luck with technology, I began teaching myself just enough to get by, and it turns out I'm fascinated by ethical hacking, so when life settles down I actually want to learn more-- but that's not the point.
Last week I FINALLY found in my analytic data a log that showed the program "Bifrost" (apparently also known as "Bifrose" according to my research) has been running on my phone. I know this has been the case since at least August, as I've been checking EVERYTHING I could think of, and found that my data usage (and I don't use my phone a lot) has been around 400GB a month since then. I had noticed that apps were constantly giving themselves permission to access things I had denied (camera, contacts, location, etc), my battery barely lasted a day (my phone is from December, but was restored from an iCloud backup), and was constantly getting hot. I KNEW something was wrong it just took me a long time to figure out how to prove it.
Anyway, seems it was this Bifrost virus that allows someone to change the settings, and what I can see (I compared it to my work phone and was missing so much) and when it started tracking my location nonstop regardless of what I did that's when I got serious. Last week after finding this I completely wiped the OS, set up a new Apple ID just losing all of my stuff, and that seemed to do the trick. Until my mom added me back to family sharing. And now a few things have begun changing permissions again, and there are a couple programs in the data logs that seem suspicious. But I'm obviously not an expert, so I was hoping someone could help me determine if I need to re-set-up-again (I mean, I only have like 15 contacts now, so it's not a bad time to do it).
And yes, professionally and personally there are people who might be interested in hacking me. So I also was wondering if anyone knew if Bifrost is typically used by individual hackers, which is what my research seemed to indicate, or ever by foreign entities or governments. I know anything is possible, I just mean typically.
Lastly, is there a way for this kind of RAT trojan to "jump" from my phone to my computer, since it has access to my passwords? I've run a million scans, but nothing detected it on my phone, so I'm not confident something would find it on my laptop (Windows) either, and I don't know where to check to see if it's been infiltrated.
Oh! Actually lastly. I read about how sometimes such programs get texts that essentially "tell" them to do something else, and when I was going through my text history via my provider, there were a lot of numbers that ended in "0000." Some I ruled out because a quick search proved they're just 2FA codes for various services, but some only have a handful of results and none of them suggest that they're connected to a company. Is it at all helpful to save those numbers? I don't recall ever seeing them in my phone before but apparently I was receiving messages from them.
In advance, thank you, hacking community, and apologies if any of this is wildly obvious or ignorant. I really am trying my best.
Last week I FINALLY found in my analytic data a log that showed the program "Bifrost" (apparently also known as "Bifrose" according to my research) has been running on my phone. I know this has been the case since at least August, as I've been checking EVERYTHING I could think of, and found that my data usage (and I don't use my phone a lot) has been around 400GB a month since then. I had noticed that apps were constantly giving themselves permission to access things I had denied (camera, contacts, location, etc), my battery barely lasted a day (my phone is from December, but was restored from an iCloud backup), and was constantly getting hot. I KNEW something was wrong it just took me a long time to figure out how to prove it.
Anyway, seems it was this Bifrost virus that allows someone to change the settings, and what I can see (I compared it to my work phone and was missing so much) and when it started tracking my location nonstop regardless of what I did that's when I got serious. Last week after finding this I completely wiped the OS, set up a new Apple ID just losing all of my stuff, and that seemed to do the trick. Until my mom added me back to family sharing. And now a few things have begun changing permissions again, and there are a couple programs in the data logs that seem suspicious. But I'm obviously not an expert, so I was hoping someone could help me determine if I need to re-set-up-again (I mean, I only have like 15 contacts now, so it's not a bad time to do it).
And yes, professionally and personally there are people who might be interested in hacking me. So I also was wondering if anyone knew if Bifrost is typically used by individual hackers, which is what my research seemed to indicate, or ever by foreign entities or governments. I know anything is possible, I just mean typically.
Lastly, is there a way for this kind of RAT trojan to "jump" from my phone to my computer, since it has access to my passwords? I've run a million scans, but nothing detected it on my phone, so I'm not confident something would find it on my laptop (Windows) either, and I don't know where to check to see if it's been infiltrated.
Oh! Actually lastly. I read about how sometimes such programs get texts that essentially "tell" them to do something else, and when I was going through my text history via my provider, there were a lot of numbers that ended in "0000." Some I ruled out because a quick search proved they're just 2FA codes for various services, but some only have a handful of results and none of them suggest that they're connected to a company. Is it at all helpful to save those numbers? I don't recall ever seeing them in my phone before but apparently I was receiving messages from them.
In advance, thank you, hacking community, and apologies if any of this is wildly obvious or ignorant. I really am trying my best.
