First, Yispecter What is it?
Yispecter is a new type of malicious software. The virus does not exist independently and attacks only on Chinese iOS users, which can be disguised as an app that allows users to watch free pornographic video. Can change the default settings of the Apple Web browser Safari, monitor the use of legitimate applications, and then play ads when these apps are used. This issue only affects legacy iOS systems that download malware from unreliable sources and has been repaired in iOS 8.4 systems.
Second, xcodeghost virus what harm?
1. Install other unwanted applications and replace formal applications with their downloaded applications;
2, the compulsory application display does not need, the full screen advertisement;
3, change Safari browser bookmarks and the default search engine;
4, the user information sent back to the server;
5. Automatically reproduce after the user manually removes it from the device.
Although yispecter viruses can infect both non-jailbreak and jailbreak users, the Yispecter virus is relatively small in overall terms, as long as Apple users ensure that their Apple systems are updated in a timely manner and minimize the number of pornographic sites that can reduce the risk factor of the phone.
yispecter virus Propagation :
Yispecter virus enables infected devices to continue downloading and automatically install other malicious applications, such as Noicon, Adpage, and so on after acquiring the enterprise application certificate for the system. Noiconupdate, C2 Server, and so on, make a profit by forcing more applications to display specified advertising and download applications.
Currently, Apple has taken a series of responses to the virus, has blocked the verification of the spread of Yispecter malware and encouraged users to upgrade to the latest version of iOS system for the latest security updates. Users are also reminded to download apps from trusted applications stores such as the App Store and to note the warning prompts when downloading. For most Apple users, the virus should not pose a significant threat.
Yispecter The main symptoms of an infected device:
Using Third-party instrumentation to detect additional "system applications", Installed applications that are actually disguised for malicious applications and that are affected by malicious applications are forced to display full-screen advertisements. Hijacking Internet traffic from ISPs; using worms to infect Tencent QQ; through online community broadcasts, in these online communities, you install Third-party applications to get application developer promotion fees.
Yispecter virus for infected iOS devices will not only continue to download and install more malicious applications, the application itself can also use malicious code to hide desktop icons, automatic upgrades, monitor system behavior, collect user and system information, force uninstall existing applications, Change Safari browser configuration, disguised as system applications so that users can not easily uninstall, and if the uninstall is not clean will appear again, so Apple users in peacetime software downloads need to ensure the security of the application.