One of the reasons many people choose iPhones over Androids is security However, that may be changing as the first ever banking Trojan designed to target iPhone users has been discovered in the wild

According to a new report from Group-IB, the Android Trojan GoldDigger has now been modified with new features that make it easier for the malware to drain funds from its victims' bank accounts The new variant of the Trojan, first discovered last October, is named GoldPickaxe and features versions specifically designed for both Android and iOS devices

Once installed on an iPhone or Android phone, GoldPickaxe can collect facial recognition data, identity documents, and intercepted text messages to easily siphon funds from banks and other financial apps Worse, it uses this biometric data to create AI deep fakes to impersonate victims and access their bank accounts

It is worth noting that the GoldPickaxe Trojan is currently only being used to target victims in Vietnam and Thailand However, as with other malware campaigns, if this campaign is successful, the cybercriminals behind it could expand their activities to target both iPhone and Android users in the US, Canada, and other English-speaking countries [Here's what you need to know about this new banking Trojan and some tips to help keep iPhone users safe, since they have likely never dealt with such a threat before CORRECTION: The headline of this article has been updated to reflect that facial recognition data, not Face ID data, was collected

Android banking Trojans are usually distributed through malicious apps and phishing attacks, but getting a Trojan into an iPhone is a bit more difficult because Apple's ecosystem is much more closed than Google's Still, as they often do, hackers have found a way

Early in this malware campaign, the hackers behind it leveraged Apple's mobile application testing platform TestFlight to distribute the GoldPixaxeIOS Trojan Malicious apps in Apple's App Store It is very difficult to list an app on Apple's App Store, but it is possible by exploiting the iPhone maker's TestFlight program The campaign worked well at the beginning, but once the malicious app was removed from TestFlight, the hackers behind the campaign had to come up with a more sophisticated means of distributing the iOS Trojan

With access to TestFlight revoked, hackers used social engineering to persuade victims to install mobile device management (MDM) profiles For those unfamiliar, MDM is a set of methodologies and tools used by corporate IT departments to manage company phones, computers, and other devices If a victim falls for this new modus operandi, the hacker eventually gains complete control of the iPhone

According to Group-IB, a single threat actor, codenamed GoldFactory, is responsible for the development of both versions of the GoldPickaxe banking Trojan However, after publishing their initial investigation, the company's security researchers also discovered a new variant of the malware, dubbed GoldDiggerPlus Unlike the best streaming services, however, the "Plus" here indicates that the malware provides hackers with the ability to call victims in real time on infected devices

Given how profitable banking Trojans like GoldDigger and GoldPickaxe can be, especially when they can target iPhones as well as Android phones, this is the last we hear about this malware and the hackers behind it, This probably won't be the last time

So what should you do now in light of the fact that your iPhone can be infected with the same nasty malware as your Android phone? Fortunately, Apple is already aware of this Trojan horse and seems to be working on a fix In the meantime, here are some additional tips to keep you and your devices protected

For starters, do not install apps through TestFlight according to Apple's support documentation, you must first download TestFlight before installing an unauthenticated app on your iPhone iPhone and iPad Few people will personally know the app developer when asked to install TestFlight on an iPhone or iPad; the same is true for adding an MDM profile to an iPhone Only your employer should ask you to do this, and only if you have a company-issued iPhone

Due to limitations regarding Apple's own malware scanning apps, there is no equivalent to the best Android antivirus app for iOS, but there are workarounds: Intego Mac Internet Security X9 or Intego Mac Premium Bundle X9 will scan your iPhone or iPad for malware, and if you're really worried about malware on your iPhone, this feature alone is worth signing up for either product

Those who are more at risk than other iPhone users may want to enable lockdown mode It is worth knowing that this feature will limit the functionality of some apps At the same time, Apple's Stolen Device Protection should also be enabled in case the iPhone is stolen

iPhone malware is now a reality, but if you practice good cyber hygiene and do not take unnecessary risks, you and your device should be safe from hackers