Trusted Design

AceDeceiver: First iOS Trojan Exploiting Apple DRM Design

概要

AceDeceiver: First iOS Trojan Exploiting Apple DRM Design Flaws to Infect Any iOS Device PaloAlto discovered a new family of iOS malware that successfully infected non-jailbroken devices we’ve named “AceDeceiver”. What makes AceDeceiver different from previous iOS malware is that instead of abusing enterprise certificates as some iOS malware has over the past two years, AceDeceiver manages to install itself without any enterprise certificate at all. It does so by exploiting design flaws in Apple’s DRM mechanism, and even as Apple has removed AceDeceiver from App Store, it may still spread thanks to a novel attack vector. source : http://researchcenter.paloaltonetworks.com/2016/03/acedeceiver-first-ios-trojan-exploiting-apple-drm-design-flaws-to-infect-any-ios-device/

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

iOS Trojan "Tiny"” Attacks Jailbroken Devices (score: 0.62)
YiSpecter: iOS Malware That Attacks Non-jailbroken Apple devices (score: 0.56)
OS X / Wirelurker (score: 0.55)
iOS Sandbox Vulnerability Puts Enterprise Data at Risk (score: 0.54)
XCode Ghost (score: 0.52)

このPulseに関連する脅威アクター (事実ベース)

APT41

Score: 9.78

Matched TTPs:

T1069 - Permission Groups Discovery
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Scattered Spider

Score: 3.29

Matched TTPs:

T1069 - Permission Groups Discovery

MITREへのリンク →

TA505

Score: 3.29

Matched TTPs:

T1069 - Permission Groups Discovery

MITREへのリンク →

Volt Typhoon

Score: 4.76

Matched TTPs:

T1069 - Permission Groups Discovery
T1190 - Exploit Public-Facing Application

MITREへのリンク →

APT3

Score: 3.29

Matched TTPs:

T1069 - Permission Groups Discovery

MITREへのリンク →

FIN13

Score: 6.85

Matched TTPs:

T1069 - Permission Groups Discovery
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

OilRig

Score: 3.84

Matched TTPs:

T1195 - Supply Chain Compromise

MITREへのリンク →

Ember Bear

Score: 9.45

Matched TTPs:

T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1588.005 - Exploits

MITREへのリンク →

Sandworm Team

Score: 8.24

Matched TTPs:

T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Threat Group-3390

Score: 4.40

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

FIN7

Score: 6.49

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

APT28

Score: 10.55

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1557.004 - Evil Twin
T1669 - Wi-Fi Networks

MITREへのリンク →

Kimsuky

Score: 7.70

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1588.005 - Exploits

MITREへのリンク →

BackdoorDiplomacy

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

GOLD SOUTHFIELD

Score: 4.40

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Magic Hound

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Storm-0501

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Fox Kitten

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Winter Vivern

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

APT29

Score: 9.85

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1550.003 - Pass the Ticket
T1090.004 - Domain Fronting

MITREへのリンク →

UNC3886

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Dragonfly

Score: 4.40

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Equation

Score: 8.67

Matched TTPs:

T1542.002 - Component Firmware
T1564.005 - Hidden File System

MITREへのリンク →

APT32

Score: 5.94

Matched TTPs:

T1550.003 - Pass the Ticket
T1036.004 - Masquerade Task or Service

MITREへのリンク →

BRONZE BUTLER

Score: 3.84

Matched TTPs:

T1550.003 - Pass the Ticket

MITREへのリンク →

Lazarus Group

Score: 6.23

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Gamaredon Group

Score: 4.54

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

DarkVishnya

Score: 4.54

Matched TTPs:

T1200 - Hardware Additions

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Mustard Tempest

Score: 4.54

Matched TTPs:

T1608.006 - SEO Poisoning

MITREへのリンク →

Mustang Panda

Score: 4.13

Matched TTPs:

T1027.007 - Dynamic API Resolution

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.77

Matched TTPs:

T1557.004 - Evil Twin
T1190 - Exploit Public-Facing Application
T1669 - Wi-Fi Networks

MITREへのリンク →

APT41

Score: 0.76

Matched TTPs:

T1195.002 - Compromise Software Supply Chain
T1069 - Permission Groups Discovery
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

APT29

Score: 0.71

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1550.003 - Pass the Ticket
T1090.004 - Domain Fronting

MITREへのリンク →

Ember Bear

Score: 0.68

Matched TTPs:

T1588.005 - Exploits
T1190 - Exploit Public-Facing Application
T1195 - Supply Chain Compromise

MITREへのリンク →

Equation

Score: 0.66

Matched TTPs:

T1564.005 - Hidden File System
T1542.002 - Component Firmware

MITREへのリンク →

Sandworm Team

Score: 0.60

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain
T1195 - Supply Chain Compromise

MITREへのリンク →

Kimsuky

Score: 0.55

Matched TTPs:

T1588.005 - Exploits
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

FIN7

Score: 0.55

Matched TTPs:

T1195.002 - Compromise Software Supply Chain
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る