A new scam campaign is targeting iOS users who are looking for a way to jailbreak their device. Threat actors have set up a website that advertises checkra1n, a soon-to-be-released app that exploits the “checkm8” flaw, which affects hundreds of millions of iOS devices, including iPhones, iPads and iPods. Last month, a researcher found the vulnerability, which can be exploited in order to revoke Apple’s control over affected devices and run customer firmware on them.
The name of the scam website (checkrain.com) closely resembles that of the official site for the upcoming jailbreak (checkra1n.com). When users try to download the advertised app, they end up with a malicious configuration file that puts a fake app on their phone. If users open the app, they are secretly redirected to websites where the fake configuration file registers clicks on pay-per-click (PPC) advertising. The researchers warn that while “this malicious website simply leads to click fraud,” the malicious configuration file “could be used for more malicious and critical actions.”
Read more: Fake iOS Jailbreak Site Lures in Apple Users
