How do I check my iPhone for spyware/malware

Jareddddd wrote:

What did you do about this? This is happening to me right now.

”This” being a security breach across multiple devices, across multiple unrelated platforms and services, and the breach(es) persisting or being reintroduced after device and password resets and related steps?

If so…

That scale and scope puts your report here well outside what anybody here can assist with, as what you report would require you to be targeted by immensely rich entities using espionage-level tooling.

i tried switching devices and i didnt use any old accounts on my new ones . i even went as far as closing my comcast account and opening a new one same with all emails everything . it changes nothing , but how poor i am.

BDFULLER wrote:

How do I check for malware on my iPhone

What malware is around for iPhone is rare and targeted, and generally seeks to avoid detection. For what is known around, Apple already checked for it with the built-in anti-malware, built-in scanner, and built-in removal tools.

If that’s not enough assurance, then factory reset it, reinstall, don’t restore a backup, and verify your entire environment:

• Restore your iPhone, iPad, or iPod to factory settings - Apple Support
• Personal Safety User Guide - Apple Support

Most common exploits target the user. You. Me. Us. Not our devices. Weak or re-used passwords or phishing or other such, or cases with knowledge of our passcode and with physical access to our device. You will need to check that yourself using Security Check and related steps, and with your own personal security practices.

If that’s all not enough assurance, then you effectively believe you are the target for immensely expensive espionage tooling, and will accordingly need specialized and dedicated and tailored assistance with the entirety of your security. This direct assistance is well beyond what can be offered around here, or in any other online forum.

And again, and as some replies around the forums have also indicated, if you believe you are being targeted by national security agencies or immensely rich parties or foreign espionage services, or if your security issues have been ongoing for many months or years and with multiple previous discussions offering suggestions about security, then you are well beyond what assistance can be provided around here.

An an iphone be cloned with the SIM card or device itself if they had access to it. Or if you have 2 devices both logged onto the same cloud and one is stolen can they get access to watch your screen listen to your microphone and access your data and saved files on the phone? I still have one of the iPhones and one was stolen which I put in lockdown mode and bc they knew the screen code took it out of lost mode. Somehow they are still able to access my files on my phone and see or hear the screen and mic. I know they have said they can clone phones and had a software or device able to do it with iPhones but even after changing my pad they are still accessing and even remotely controlling the phones mic and editing and deleting files saved on the device only. How is this possible and could it have something to do with the google accounts I also have on my I phone or is it the SIM card or remote accessing my device like was done with desktop computers by tech support.

That sounds like an issue with Twitter. Nothing to do with your iPhone.

If your Twitter account is missing, you will need to contact Twitter Support for help with it.

Im trying to reach someone who is facing with this issue.

1) If someone doing this to you from your company, friend or someone close to your home. Make sure getting a new wifi network and manage it to `` Guest Mode`` so If they reach out ur phone they would probably reached ur Wi-Fi network as well.

2) Don't use same Apple ID or backup from iCloud or anything. It would probably re effect your new iPhone.

3) Calm down and take a deep breath, make a search about the programs not the malwares. This piece of s*** spy programs. They are not malwares.

4) If there is any relatives in your home with old iPhone or android probably they are affected by the same person bcs same Wi fi network.

5) If you can't do anything about it sell ur iPhone and don't use any smart phone, buy a phone with no any internet connection. If there is a internet in a device, its not safe.

Btw these spy programs now doesn't require any physical touch, reaching, You can't see with ur own eyes like settings or photos app. Completely invisible in your phone. Anyone can track your phone by sending a link. It can be by sms, e-mail. You name it.

Stay safe. Missing old 2000s...

Will “xLSx123x” please reply to me? I have had the same issues since March 2023. In fact, there is a key logger logging my text as I write this. I have done inumerable things to right the situation, just as you did, with the same resilts. It is so frustrating, I’m tempted to just throw the phone—an iPhone 14 Pro Max—away. IF I can access it. I can’t even use my phone number. When I call out to ANY customer service line, I get this “help desk” with the same people who try to deter me from what I am attempting to achieve and who never have answers for me. I cannot call, for example, my own father or even 911.

Please get back yo me.

katherine

[Edited by Moderator]

hanes64 wrote:

XLSx123x-

I have experienced what you describe also. I have had someone in my cloud for over a year. I’m in the process of completely deleting a cloud account. If you’re not watching everything done on phone is synced..password, literally everything. So it’s impossible to get rid of them without deleting the email address completely

The email address is not associated with a compromise. It's an identifier that is intentionally and necessarily public.

If an Apple ID has been compromised for as long as has been reported here, and given you will have already received and acted upon advice on how to increase the security of your Apple ID, then there are other issues or concerns here, or your adversaries have capabilities well outside of what we can assist with in a forum such as here in ASC.

In the unlikely case you have not already encountered it: Personal Safety User Guide - Apple Support

Probably either with a recovery key and/or security keys or both for the highest security, with Lockdown Mode enabled.

I was messing around with my terminal and had my phone in developer mode hooked into my Mac running a certain developer terminal command. It won't delete I've wiped both my MacBook and my iPhone the anecpmpilerservice.cpu rescource. I actually still have terminal code running on my iPhone right now. "ANECompilierservice". I ran into a problem with iCloud. It said I couldn't use iCloud. The website is "cloudos". Jetsam-event is running how do I delete this completely. I have completely restored and erased my data 5 times with iPhone. I have wiped my hard drive disk twice and used utility service to track where the bug is. I don't have admin permission to edit on my Mac hard drive to edit and read.

quest2346 wrote:

hooked into my Mac

Key event here. It needs to be connected to a computer for something like that to happen.

Yes, you can mess up your iPhone, but most normal users are not doing any of this. And remote access to an iPhone to install software is not yet known to be possible.

The fact it needs to be connected to a computer set to some developer mode and then some terminal command needs ot be issues, precludes this happening in the wild, much less remotely.

Brp30 wrote:

Absolute same here! For over a year. Every phone, device, tv, blink cameras, Alexa’s, Apple Watches, tablets. I have same managed device, the Apache thing, apple developer account I never made, my iPhone is newer so no sim in phone but the sim kept being transferred to another device, I also have the AAA root that I can’t remove bc it’s greyed out, as well as the Linux Ubuntu or Linux Debian, something linux. There’s so much code. Unknown files. Different time zones. There is NOTHING I can do to remove it. I think it sniffs Bluetooth or travels over the internet to every nearby device and infecting it. I also think I know the culprit (my bf) but can’t be 1000% sure I didn’t just get virus or hacked. My phone provider is Xfinity and their reps said they think someone took my phone and used usb to download this. I also believe the calls and texts are not only recorded but can be somewhat controlled by whoever is doing this. Also I think my bf jailbroke my phone without my knowledge. When I go to my modem or router settings page there is an ip address added for a remote access. Do you think this is someone you know personally? Or do you think someone hacked/virus that you do not know. Ps usbs can be used to install Linux

[Edited by Moderator]

What you report happening would necessarily involves either physical access to and reconfiguration of ~everything (which would normally have been resolved by a reset, but for your “There is NOTHING I can do to remove it” indicates firmware or hardware persistence or remote re-exploitation), or involves exploit tooling for multiple platforms (“Every phone, device, tv, blink cameras, Alexa’s, Apple Watches, tablets”).

The exploit tooling involved for what is reported is worth multiple millions of dollars in aggregate. The iPhone and iPad access reported here involves exploits worth more than a million dollars each.

Which in aggregate makes you an exceedingly valuable target for an exceedingly wealthy entity.

Which makes this case exceedingly far outside the scope of what anybody here can assist with.

Not without substantial technical skills, direct access to your personal info and equipment, and pragmatically not without assisting you in learning how to segment your information and how to operate in an exceedingly hostile environment. None of which will be free.

Or none of this happened of course, and the concerns here are based on misinterpreting mundane and benign details of the various platforms involved. That’ll still be a substantial effort to research and explain each area and each detail and each telemetry entry and each log entry, and well past what can be offered here. That all likely involving an explanation of public key cryptography, and some basics of forensics and of distributed authentication and distributed security, too.

And complicating all this, it’s ~impossible to prove a negative; that your gear hasn’t somehow been exploited.

Disneyfan24 wrote:

There isn’t a way to specifically check for spyware on an iPhone.

Answer these three questions:

1. Have you jailbroken your iPhone?
2. Has anyone had unsupervised access to your unlocked iPhone for more than a couple of minutes?
3. Are you a high-profile journalist, activist, or politician whose data would be worth hundreds of thousands of dollars to acquire?

If the answer to each of those questions is "No", you don't have spyware.

There isn’t a way to specifically check for spyware on an iPhone. Which is frustrating. You can only look for signs that it might be bugged.

I recently made a twitter account using my phone number instead of email just for convenience. Now twitter is saying that suspicious activity has been detected, and when I try to login with my number it says the account cannot be found. My phone has never been lost for an extended amount of time and nobody other than trusted friends and family have ever even held it. I also bought it new from an apple store so the sim card can't have been duplicated. Could this be someone somehow receiving the security code sent to me by twitter? Or do you think it may be an issue on the side of twitter? Any help would be appreciated.

If you know how to code and know certain binary codes to run. It doesn't matter what type of iOS you're running. Especially if you work in developer mode in your iPhone. ESPECIALLY if you don't know what you're doing like me.