yitit
Home
/
Software
/
“Unflod Baby Panda” iOS Malware Detected on Jailbroken Devices!
“Unflod Baby Panda” iOS Malware Detected on Jailbroken Devices!-September 2024
Sep 14, 2025 1:15 AM

iOS malware detected on jailbroken devices:

Beware jailbreakers, your device is prone to a serious malware! Reported by the security firm, SektionEins,a malware calledUnflod Baby Pandahas been discovered on jailbroken iOS devices. This malware is sending your Apple ID and password to servers based in China. The security firm has run a quick analysis and has shared the following report.iOS malware

SektionEins has shared that it is not yet clear how this malware has ended up on the jailbroken devices, however, the involvement of Chinese pirate repositories is being suspected and discussed over reddit. The malware is signed with an iPhone developer certificate registered to aWANG WINidentity.

Here is the analysis of this iOSmalwareby SektionEins:

On 17th April 2014 a malware campaign targetting users of jailbroken iPhones has beendiscoveredanddiscussedby reddit users. This malware appears to have Chinese origin and comes as a library called Unflod.dylib that hooks into all running processes of jailbroken iDevices and listens to outgoing SSL connections. From these connections it tries to steal the device's Apple-ID and corresponding password and sends them in plaintext to servers with IP addresses in control of US hosting companies for apparently Chinese customers.

Users of reddit have made this malware available to the public, which allowed SektionEins to perform an analysis of this threat.

However so far only the malware itself has been found and until now it is unknown how it ends up on jailbroken phones. Rumours that Chinese piracy repositories are involved are so far unverified.

On your jailbroken iOS devices, you can check if your device is infected by this iOS malware using iFile. Go to this folder: /Library/MobileSubstrate/DynamicLibraries/ and checkfora Unflod.dylib library. To be on safe side, change your Apple ID password and enable two-step verification. And of course, please try to stick with trusted repositories and avoid installing from untrusted sources.

Security researcher Stefan Essar aka i0n1c has shared the alternative to run a grep command:iOS malware

Some of this weeks' top hits:

iPhone 6 Launch Dates: 4.7″ iPhone in September, 5.5″ Phablet Planned for ChristmasFinally We’ll be Able Charge up Our Smartphones in 30 seconds!2014 iPad Air and iPad Mini Retina to Get Touch ID, A8 Processor, and an 8MP CameraGems Hidden in Samsung Galaxy S5 In-House ISOCELL Sensor

Comments
Welcome to yitit comments! Please keep conversations courteous and on-topic. To fosterproductive and respectful conversations, you may see comments from our Community Managers.
Sign up to post
Sort by
Login to display more comments
Software
Recent News
Mr.
Mr.
Mr.
Mr.
Mr.
Mr.
Mr.
Mr.
About
Terms and Conditions Privacy policy Cookie Settings Contact Us
Services
Login register
yitit Hardware Computing Mobile Finance Software Deals
Links
zpostcode Recruit weather mreligion Yellowpages sport constellation shopping name game directory literature Word tour furnish Lottery tftnews lyrics News digital car dir Edu Finance
Copyright 2023-2025 - www.yitit.com All Rights Reserved