Apple has pulled a malicious app from its App Store after the Russian security firm Kaspersky Lab reported that it was a Trojan that uploads a user's contact info to the developer's servers.
"At first glance, this seemed to be an SMS worm spread via sending short messages to all contacts stored in the phone book with the URL to itself," explained Kaspersky Lab‘s Denis Maslennikov. "However, our analysis of the iOS and Android versions of the same application showed that it’s not an SMS worm but a Trojan that uploads a user’s phonebook to remote server. The ‘replication’ part is done by the server – SMS spam messages with the URL to the application are being sent from the remote server to all the contacts in the user’s address book.”
The application mostly attacked Russian users, but it was available worldwide via the App Store and Google Play for Android devices. Kaspersky Lab reminded everyone that "there have not been any incidents of malware inside the iOS Apple App Store since its launch 5 years ago."
There's a reason you've never heard of the iPhone 5GS. The only place it exists is within a malicious email being sent to PC users around the globe. This message purports to announce the next Apple iPhone but is merely a vehicle to spread the Mal/Zapchas-A trojan. Luckily for Mac owners the scam message only targets Windows users at this time.
Security group Sophos has identified the infected email and makes the point that whenever there's a buzz surrounding an Apple media event, someone crafts a nefarious email to circulate to the masses. This particular message looks pretty fake as seen in the photo above. Not only does it show two different phone models, but the text and grammar aren't quite right.
The ikee worm has spread to jailbroken iPhones in Australia running SSH with the default root password. Follow the steps below to remove all ikee code and prevent Rick Astley from reappearing on your lock screen: