• About
  • Subscribe
  • Contact
Thursday, June 5, 2025
    Login
FutureCISO
  • People
  • Process
  • Technology
  • Resources
    • White Papers
    • PodChats
No Result
View All Result
  • People
  • Process
  • Technology
  • Resources
    • White Papers
    • PodChats
No Result
View All Result
FutureCISO
No Result
View All Result
Home Technology Data Protection

First iOS trojan stealing users’ face discovered

FutureCISO Editors by FutureCISO Editors
February 27, 2024
Image by Gerd Altmann from Pixabay

Image by Gerd Altmann from Pixabay

Share on FacebookShare on Twitter

Group-IB uncovered a new iOS Trojan named GoldPickaxe.iOS that intercepts SMS and steals users’ facial recognition data and identity documents. 

Group-IB’s Threat Intelligence discovered that the threat actor uses AI face-swapping services to create deepfakes, exploit the stolen biometric data, and access victims’ bank accounts.

Growing threat in Asia-Pacific

Overall, Group-IB identified four Trojan families since June 2023, targeting victims in Vietnam and Thailand that actively use facial recognition for transaction verification and login authentication. 

After the initial discovery of GoldDigger Trojan in June 2023, Group-IB identified a new advanced variant of the Android malware named GoldDiggerPlus, with an embedded second Trojan inside called GoldKefu. GoldDiggerPlus and Kefu work together to achieve their full capabilities. 

Gold Factory gang

Andrey Polovinkin, malware analyst of the Threat Intelligence team at Group-IB, traces the surge in mobile trojans targeting the Asia-Pacific region to GoldFactory.

Andrey Polovinkin

“The gang has well-defined processes and operational maturity and constantly enhances its toolset to align with the targeted environment, showcasing a high proficiency in malware development. The discovery of a sophisticated iOS Trojan highlights the evolving nature of cyber threats targeting the Asia-Pacific region,” he says. 

He adds that Group-IB’s Threat Intelligence found that GoldPickaxe will soon reach Vietnam while actively incorporating its techniques and functionality into malware targeting other regions.”

Related:  Vulnerabilities uncovered among top webmail providers 
Tags: cybersecuritydeepfakeGroup-IBmalwareTrojan
FutureCISO Editors

FutureCISO Editors

No Result
View All Result

Recent Posts

  • Platform to enhance software development security
  • Check Point launches enhanced branch office security gateways
  • BarracudaOne to offer a unified approach to cybersecurity
  • AI agents present new security challenges in Southeast Asia
  • Red Hat launches Enterprise Linux 10 for hybrid security

Categories

  • Blogs
  • Compliance and Governance
  • Culture and Behaviour
  • Cybersecurity careers
  • Data Protection
  • Endpoint Security
  • Incident Response
  • Network Security
  • People
  • Process
  • Resources
  • Risk Management
  • Technology
  • Training and awarenes
  • Videos
  • Webinars and PodChats
  • White Papers

Strategic Insights for Chief Information Officers

FutureCISO serves the interests of the Chief Information Security Officer (CISO) and the information security profession. Its purpose is to provide relevant and timely industry insights around all things important to security professionals and organisations that recognize and value the importance of protecting the organisation’s data and its customers’ privacy.

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2024 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • People
  • Process
  • Technology
  • Resources
    • White Papers
    • PodChats
Login

Copyright © 2024 Cxociety Pte Ltd | Designed by Pixl