Apple’s iOS App Store suffers first major malware attack

BOSTON – Apple Inc APPL.O said on Sunday it is cleaning up its iOS App Store to remove malicious iPhone and iPad programs identified in the first large-scale attack on the popular mobile software outlet.

 

The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost that was embedded in hundreds of legitimate apps.

It is the first reported case of large numbers of malicious software programs making their way past Apple’s stringent app review process. Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc (PANW.N).

The hackers embedded the malicious code in these apps by convincing developers of legitimate software to use a tainted, counterfeit version of Apple’s software for creating iOS and Mac apps, which is known as Xcode, Apple said.

“We’ve removed the apps from the App Store that we know have been created with this counterfeit software,” Apple spokeswoman Christine Monaghan said in an email. “We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps.”

She did not say what steps iPhone and iPad users could take to determine whether their devices were infected.

Palo Alto Networks Director of Threat Intelligence Ryan Olson said the malware had limited functionality and his firm had uncovered no examples of data theft or other harm as a result of the attack.

Still, he said it was “a pretty big deal” because it showed that the App Store could be compromised if hackers infected machines of software developers writing legitimate apps. Other attackers may copy that approach, which is hard to defend against, he said.

“Developers are now a huge target,” he said.

Researchers said infected apps included Tencent Holdings Ltd’s (0700.HK) popular mobile chat app WeChat, car-hailing app Didi Kuaidi and a music app from Internet portal NetEase Inc.

The tainted version of Xcode was downloaded from a server in China that developers may have used because it allowed for faster downloads than using Apple’s U.S. servers, Olson said.

Chinese security firm Qihoo360 Technology Co (QIHU.N) said on its blog that it had uncovered 344 apps tainted with XcodeGhost.

Apple declined to say how many apps it had uncovered.

Share this:

Arts & Entertainment

Arts & Entertainment

Damian Marley’s deep love for Africa

24th May 2017 Staff Reporter 0

Damian Marley’s 2010 collaboration album with Nas, Distant Relatives is littered with references to Africa’s rich cultural background. During the recording of the album Marley and Nas dug through archives of African music in search […]

Arts & Entertainment

James Bond’s Roger Moore dies at 89

23rd May 2017 Staff Reporter 0

James Bond actor Roger Moore has died, aged 89. His family confirmed the news via his Twitter account, issuing a statement that explained the British star had passed away in Switzerland following a “short but […]

55 Trackbacks & Pingbacks

  1. Google
  2. real work at home jobs
  3. anal stimulator
  4. bragi
  5. mulvadi kona coffee beans
  6. 木瓜
  7. OMG-OCEB-B300 Certification Dumps
  8. rotating g-spot rabbit vibrator
  9. earn money working from home
  10. Buy installs
  11. free cash
  12. low carb diet plan
  13. eyebrows shapes
  14. desinfectionpunaisedelit
  15. Lovehoney
  16. thrusting silicone vibrator
  17. Download NSE7 Certification Dumps
  18. amazon product Seo
  19. buy youtube views usa
  20. pc apps for windows 10
  21. cheapest smm panel
  22. sex kit
  23. adam and eve coupon code
  24. adamandeve.com
  25. Buy Phentermine
  26. dirty sex
  27. Primary butyl sealant
  28. pc app free download
  29. full apps pc download
  30. 福井脱毛
  31. piano lessons atlanta
  32. LED light sources Sanlibang
  33. best kona
  34. iPad repair
  35. Water softener
  36. Popular Sex Toys
  37. jazzercise instructor
  38. denpasar
  39. Happy birthday sister
  40. Birthday memes
  41. Women Sex Toys
  42. Footwear for deployed military soldiers
  43. web application development companies in usa
  44. rehab clinic
  45. women
  46. how can i make money
  47. 100% kona coffee
  48. everyday deals company
  49. online jobs to make money
  50. Samsung
  51. barcode kaufen
  52. Internet Marketing
  53. lefkoşa satılık daire fiyatları
  54. chinese antiquities
  55. vintage collectibles

Leave a Reply

Your email address will not be published.


*