iPad My iPad was hacked and even updating/resetting the malware persists.

[r31brf]

Hello guys.
I'm a "high value target" for hackers, my iPad was hacked using iOS 15 and even updating or resetting the malware persists, what can I do in this situation and who should I turn to?

 

[PieTunes]

Call 1-800-MY-APPLE (800-692-7753).

 

[Burnincoco]

Take it to an Apple Store to be checked or sell it. After getting a new one make a new iCloud account and enable lockdown mode.

Copy your old pictures, files and videos to an external SSD and keep them there.
We don’t really know how these advanced attacks work, so don’t put any pictures, videos or files from your old iPad into the new one.
More about Lockdown Mode here, https://support.apple.com/en-us/HT212650

 

[HDFan]

my iPad was hacked using iOS 15 and even updating or resetting the malware persists,

What are the symptoms of the attack?

What is the name of the malware?

Which iPad, OS version?

 

[Nekomichi]

...I don't think I've heard of any sort of malware for iOS, excluding maybe very early versions. It's as solid as a rock now (even though that's the only real benefit to iOS).

Malware does exist in the modern day on iOS, but it's highly targeted and sophisticated. The most frequently mentioned is Pegasus, which is a spyware suite used to monitor certain individuals without their knowledge or consent.

Thing is, Pegasus is nowhere like the spyware most people assume it to be. For starters, it's not something that can be mass-distributed so it's not like someone can upload it to some website and trick a bunch of people into clicking a link that installs it on their device. iOS spyware is highly targeted and each malware payload has to be specifically compiled for the target device. That means if one individual device is infected, it cannot then be transmitted to another one even if it's the same model running the same iOS version. This also means that the attacker must already know something about their victim and has a very specific reason to monitor that one individual.

Another thing is that because of how complex Pegasus is and how it's only distributed by one company, it costs an attacker around $500,000 just to compile and deploy it onto a single target device. No hacker is going to fork out half a million just to infect some rando's device that probably doesn't even have anything interesting on it. iOS spyware isn't used by your average hacker who wants to steal people's bank details, it's used by certain governments to spy on various individuals for political reasons or mercenary groups to monitor their intended victims. 99.99% of people won't encounter it because they're simply not interesting enough for someone to spend $500k to spy on.

Edit: Also, a device infected with spyware generally doesn't exhibit any abnormal behaviour. Spyware is designed to stay hidden and if it alerts the user to its presence, then it kinda defeats the point of being spyware. So when people claim their device is infected by spyware because their device is doing weird things, it shows that they clearly don't know what spyware is.

 

[Digitalguy]

Malware does exist in the modern day on iOS, but it's highly targeted and sophisticated. The most frequently mentioned is Pegasus, which is a spyware suite used to monitor certain individuals without their knowledge or consent.

Things is, Pegasus is nowhere like the spyware most people assume it to be. For starters, it's not something that can be mass-distributed so it's not like someone can upload it to some website and trick a bunch of people into clicking a link that installs it on their device. iOS spyware is highly targeted and each malware payload has to be specifically compiled for the target device. That means if one individual device is infected, it cannot then be transmitted to another one even if it's the same model running the same iOS version. This also means that the attacker must already know something about their victim and has a very specific reason to monitor that one individual.

Another thing is that because of how complex Pegasus is and how it's only distributed by one company, it costs an attacker around $500,000 just to compile and deploy it onto a single target device. No hacker is going to fork out half a million just to infect some rando's device that probably doesn't even have anything interesting on it. iOS spyware isn't used by your average hacker who wants to steal people's bank details, it's used by certain governments to spy on various individuals for political reasons or mercenary groups to monitor their intended victims. 99.99% of people won't encounter it because they're simply not interesting enough for someone to spend $500k to spy on.

Edit: Also, a device infected with spyware generally doesn't exhibit any abnormal behaviour. Spyware is designed to stay hidden and if it alerts the user to its presence, then it kinda defeats the point of being spyware. So when people claim their device is infected by spyware because their device is doing weird things, it shows that they clearly don't know what spyware is.

Good points. People know nothing about security on IOS. It's perfectly fine for virtually anyone to use a device that is not / cannot be updated. Having said that this threads sound very much like trolling from the OP

 

[HDFan]

The most frequently mentioned is Pegasus,

NSO group which created the product is blacklisted in the U.S.

Spyware firm NSO Group continues lobbying efforts to resume business-as-usual in the U.S. - OpenSecrets News

Since 2020, NSO Group has paid foreign agents more than $2.9 million for foreign influence and lobbying operations in the U.S.

www.opensecrets.org

 

[gpat]

I wish jailbreakers were this good. Instead they struggle to even run a Nintendo emulator on iPad.

 

[eRondeau]

Buy a new iPad.

BTW people who really are "high-value targets" probably shouldn't go on public forums and announce they're "high-value targets".

 

[MarkNewton2023]

Hello guys.
I'm a "high value target" for hackers, my iPad was hacked using iOS 15 and even updating or resetting the malware persists, what can I do in this situation and who should I turn to?

😱😬 Contact Apple Support.

 

[Apple_Robert]

What the OP posted is not possible. It looks like the OP won't be back but, thought I would allay concerns from onlookers.

 

[LeeW]

A real manager of IT security would have strict contingent protocols in place

They are actually the worst for having none.

 

[Reverend Benny]

Hello guys.
I'm a "high value target" for hackers, my iPad was hacked using iOS 15 and even updating or resetting the malware persists, what can I do in this situation and who should I turn to?

If you are a high value target.....update your gadgets.....

 

[Apple_Robert]

Well, I received one helpful response and many non technical hateful comments. No wonder ppl asking for help never come back. What exactly is not possible? There is much on the Internet and Apple posts about compromised MDMs, C&C, much more.

It is not possible for the iPad to contain Malware after it has been fully erased. However, it is possible for one's iCloud account to be compromised if the proper security measures are not in place. If the account is compromised, a restored iPad can show iCloud files of unknown origin, as well as other third party files, provided the compromise went that far.

Edited to add: Is it possible you didn't do a full erase all content and settings and only did reset all settings?

Edited to add: I wasn't rude to you in my previous posting. I stated fact with hardly any useful information given by you in your opening post.

 

[sparksd]

Well, I received one helpful response and many non technical hateful comments. No wonder ppl asking for help never come back. What exactly is not possible? There is much on the Internet and Apple posts about compromised MDMs, C&C, much more.

And the high-value target is coming to a forum to fix this?