Apple’s iOS App Store Suffers Malware Attack

Apple’s iOS App Store Suffers Malware Attack

A number of iOS apps were infected with malware in the past few days. The Apple’s App store had to suffer its first major malware attack and Apple had to remove the malware infected App store to reduce further damages. Apple acted swiftly on hearing the news of a malware attack on iOS app store and immediately removed it before it caused serious havoc.

Apple has acknowledged this major security breach on their iOS App store. The malware called XcodeGhost found a way through into many apps in the iOS app store. It convinced the app developers to use the modified version of the Xcode that is used to create the Mac and iOS software.

Apple’s spokesperson Christine Monaghan has said that the company have removed all the infected apps from the iOS App store that were created using he duplicate Xcode software. Apple is currently coordinating with the app developers to ensure that they are making use of the right version of the Xcode software to rebuild the apps that have been pulled out of the App store.

The notable app that has been affected the most is WeChat, the Chinese messaging app, Chinese Uber rival app Didi Chuxing and business card scanner app CamCard. WeChat was quick to confirm that the malware only caused problems in a previous version app that was released on September 10. WeChat has over 600 million active users every month. The present version that came two days later is safe and clean.

The XodeGhost intrusion is investigated by security firm Palo Alto Networks. The investigations found out that the malware was able to read and write clipboard data, open URLs and prompt fake phishing dialogs. The security firm has said that the malware was dangerous and harmful and has affected at least 39 apps in the iOS Apple App store.

There is nothing to suggest that there was any data theft that had occurred. The XcodeGhost malware, though, is a worrying sign as how genuine app developers can be made use for creating malicious software by bypassing the code review of Apple. The problematic XcodeGhost has come from a server in China.

There have been many developers who have used the malicious Xcode software as it was faster to download than the free 3.59GB official Xcode version that is offered on the App store of Apple. Xcode is a complex and huge program and it is a very important software for all app developers.

References:

www.mashable.com

www.theverge.com

September 21st, 2015 by