A new iOS tool called TrollStore makes it easy to get apps on your iPhone, even if they’re not from the Apple App Store. At the same time, it can finally allow cybercriminals to break into and distribute Apple’s walled garden Malware for iPhone.
according to Blog post (Opens in a new tab) From mobile app security company Guardsquare, TrollStore allows users to permanently install any app on a non-jailbroken iPhone. While TrollStore allows iPhone users to easily install modded apps, cybercriminals can also take advantage of it to add malicious code to these apps.
First released at the beginning of September, TrollStore uses two recently discovered iOS vulnerabilities (tracked as CVE-2022-26766 (Opens in a new tab) And the CVE-2021-30937 (Opens in a new tab)) to get root privileges on iPhone and sign modded apps.
Fortunately, both vulnerabilities have been patched and Upgrade to iOS 16 It can help you avoid becoming a victim of any potential attacks. At the same time, TrollStore has the potential to wreak havoc on older iPhones and iPads that haven’t yet been updated with the latest software from Apple.
Sideloading apps on iOS
with one of Best Android PhonesIt was always possible, sideload apps By downloading and installing the APK file. While this may be appropriate for organizations that develop custom applications and distribute them to their employees, sideloading applications can be very dangerous for casual users.
Sideloading apps on iOS has always been more difficult due to Apple policies which is why jailbreaking exists. when you iPhone Jailbreak, you have full access to the root of the phone’s operating system and you can access all its features. This includes the ability to install apps that are not in the App Store.
TrollStore is probably popular due to the fact that it enables users to install modded apps without having to jailbreak their device. However, this makes things more difficult for app developers who often use jailbreak detection to ensure their apps aren’t recompiled by an attacker.
How to keep yourself safe from modified iPhone apps
As mentioned above, the easiest way to stay safe from modified iPhone apps is to update your devices to the latest iOS version. In order to work, TrollStore uses two iOS vulnerabilities that have been patched with iOS 15.2 and 15.5.
Even if you only download apps from the App Store, you may accidentally download a modified IPA file and install it on your iPhone the way you want it with the APK file on Android. By upgrading to iOS 16, you will not be able to install the file on your device.
Although you may know the dangers of downloading and installing third-party apps from unknown sources, your kids may not. For this reason, you can also consider adding one of the extensions Best Parental Control Apps to their devices so you can see exactly what they are downloading online.
Now that TrollStore for iOS 14-15.4.1 has been released, the creators of the tool are likely already looking for new vulnerabilities in order to bring their unofficial App Store to more Apple devices.