A new threat has emerged for iOS users in Vietnam and Thailand, as a malicious program called GoldPickaxe is targeting biometric data, according to a report by VnExpress International. This program, believed to be related to the previously reported GoldDigger Trojan, has been causing concern among cybersecurity experts.
In a disturbing incident reported by the Vietnamese Ministry of Information and Communications’ Authority of Information Security, a user in Hanoi fell victim to the Trojan after installing a fake public service application. The user was tricked into providing a video clip for identity verification, only to find out that their stocks were sold and funds were transferred without their consent.
Experts warn that GoldPickaxe poses a significant risk to users in Vietnam and Thailand, particularly as it can harvest biometric data from both iOS and Android devices. This data collection can be used for fraudulent activities, such as deepfake and AI-powered scams.
Hackers are employing social engineering tactics to dupe users into installing the Trojan, with some posing as authority figures or offering fake applications for tax payments or utility bills. Once installed, GoldPickaxe can block important functions like SMS filters and Internet access, while also demanding personal documents and video footage for verification.
To protect against such threats, users are advised not to provide personal data or install applications from unknown sources. Banks and financial institutions are urged to proactively enhance their security measures to safeguard their customers from potential attacks.
As the cybersecurity landscape continues to evolve, staying vigilant and adopting best practices is crucial in preventing cybercrimes. With hackers constantly devising new ways to exploit vulnerabilities, it is essential for individuals and organizations to prioritize security to avoid falling victim to malicious programs like GoldPickaxe.
