The Trojan In Free Jailbreak Tweak Can Steal Revenues Through Google’s AdMob
With every iOS update, hackers begin their quest for a jailbreak which they eventually achieve. The major reason why some users choose to jailbreak is customization beyond iOS boundaries that the stock version fails to provide. From changing visual appearance of the user interface to enhancing functionality, Cydia has been a good source for providing tweaks and packages.
However, some tweaks have functionality that extends in functionality beyond their original purpose. They may be harmful and malicious to your device and not installing them is a viable option. Recently, 'Lock Saver' free tweak appeared on Cydia that has some adverse effect which we will be telling you about. The tweak has been made available by ModMyi's repo that switches off battery consuming aspects of your device while it is locked.
Lock Saver Installs Malicious Files That Can Interfere With Device Permissions
However, the device is said to contain a trojan that even exists after you remove the tweak. The trojan sticks to your Google's AdMob and steals revenues which are generated from the host device. It also collects UDIDs and sends them to a remove server destination. When a user installs the Lock Saver, the tweak copy's trojan files to the following destination: /Library/MobileSubstrate/
Developer Alan Kerr states that the tweak makes the directory (/Library/MobileSubstrate/
If you have Lock Saver installed, remove it immediately. After you do so, the free tweak leaves behind two malicious files namely, 'Service.plist' and 'Service.dylib'. You will have to iFile to remove these files from the following location: /Library/MobileSubstrate/