New 'GoldDigger' Trojan Targets iOS Devices to Steal Sensitive User Data
• GoldDigger is a new trojan targeting iOS devices that can steal facial recognition data, documents, SMS messages to access bank accounts
• Originally created for Android, now ported to iOS; potentially first iOS trojan
• Initially distributed via TestFlight beta program, now uses sophisticated Mobile Device Management profiles
• Mainly targets users in Vietnam and Thailand currently, but could expand
• Group-IB informed Apple, but iOS still vulnerable; best defense is avoiding untrusted apps