Q1 Threat Report: Surge in Malware, Drop in Spam
With six million unique samples of recorded malware, Q1 2011 was the most active first quarter in malware history.
Hackers have released the latest version of JailbreakMe.com, which allows Apple users to download and run applications that are not approved by Apple or use iPhones on other networks. However, as CNET News notes, this tool can be easily modified to attack iPhones and iPads with malicious PDFs. According to Reuters, criminal hackers could download the code, reverse engineer it and build a piece of malicious software in a matter of days.
Germany's government has already issued a warning, reports The Associated Press. The Federal Office for Information Security says opening an infected PDF file "is sufficient to infect the mobile device with malware without the user's knowledge." While no attackers have exploited the security hole, it says "it must be expected that attackers will soon exploit the weak points." All devices with software versions including iOS 4.3.3 are affected and it "cannot be excluded" that other iOS versions have the same vulnerability.
The Wall Street Journal reports that Apple is working on a fix for the issue. In a statement, Apple says:
Apple takes security very seriously, we're aware of this reported issue and developing a fix that will be available to customers in an upcoming software update.