Recently, I was helping a relative as their iPad was acting up. In safari, I noticed a lot of weird websites showing up (open safari and 5-8 tabs open (not previously browsed). They are either ads or pushing "Your device is infected" I assume fake AV. It created 4 Comodo Root certificates which I eventually found. It also created an account found under email. I am not sure I can post the app name here (Will ask mods for approval w/i a few days) but I will say that it is an app geared towards an older demographic of individuals and its purpose is for saving money. I did not see it in the app store. It appears to have been launched through Safari and installed a shortcut on the Home Screen which, when clicked on opens Safari and their webpage (I believe it is opening a lot of pages to get some type of pay per click or affiliate $). The relative says they aren't worried about it and uses their CC to pay for things. I beg them to go to the Apple store to have they simple reset it. Ran them through VTotal, they pop-up malicious).
The end user is the weakest link. The individual does not understand hacked email accounts (Well, its from my friend's email address, so it has to be legitimate (there is no content except a website link, and they click on it - It was an email acct that had been hacked).
Warning about malicious iPad App - Created 4 root certs and gains access to email and notes.
There was no way to remove the account, not the root certs. Apple support said that is bad and it must be fully reset and recommended if possible to set it up as new. (In case the backups were somehow infected).
So a heads up- there is malware out there.
My understanding is that iOS is pretty locked down kernel wise and that is why Antivirus is not as robust, effective or necessary as it is on a Windows PC. I was told it may provide some protection from malicious URL's (which is important - but otherwise it's iffy.
Does anyone have input into this?
The only thing I can think of is Sophos,since it is low performance impact. They definately need malicious URL detection at the least!
The end user is the weakest link. The individual does not understand hacked email accounts (Well, its from my friend's email address, so it has to be legitimate (there is no content except a website link, and they click on it - It was an email acct that had been hacked).
Warning about malicious iPad App - Created 4 root certs and gains access to email and notes.
There was no way to remove the account, not the root certs. Apple support said that is bad and it must be fully reset and recommended if possible to set it up as new. (In case the backups were somehow infected).
So a heads up- there is malware out there.
My understanding is that iOS is pretty locked down kernel wise and that is why Antivirus is not as robust, effective or necessary as it is on a Windows PC. I was told it may provide some protection from malicious URL's (which is important - but otherwise it's iffy.
Does anyone have input into this?
The only thing I can think of is Sophos,since it is low performance impact. They definately need malicious URL detection at the least!