In the biggest Apple accounts hacking ever, 250,000 Apple accounts were stolen with malware. What if we told you there’s a way to avoid being next? Here goes: Don’t jailbreak your phone. The iOS malware only affects jailbroken iPhones so the rest of you can breathe easy and eagerly await the iPhone 6s

The iOS malware, dubbed KeyRaider by Palo Alto networks, not only lets hackers get your password, but also allows them to download and buy apps, for free, without your permission. Keyraider works via the Cydia app which helps download and manage apps on jailbroken phones. Palo Alto Networks explains how the malware works saying,

“KeyRaider steals Apple push notification service certificates and private keys, steals and shares App Store purchasing information, and disables local and remote unlocking functionalities on iPhones and iPads.”

Meaning you’re unable to unlock devices even with a correct passcode of password. KeyRaider also makes it easier for a hacker to hold a device for ransom because it allows messages to be sent directly without passing Apple's push server. So far users, most of those with compromised accounts located in China, have discovered the malware by detecting unusual App Store behavior. 

[via Gizmodo]