Previous Story
Apple purges malware-infected apps from App Store
Posted On Sep 23 2015
Comment: Off
A number of cybersecurity companies including Palo Alto identified that hundreds of verified apps had been infected with a malicious programme, which has been dubbed XcodeGhost, reportsReuters.
Apple has removed the affected apps from its App Store and has asked developers to rebuild their software with Xcode downloaded from legitimate channels.
Last week, security analysts revealed that multiple apps on Apple’s official software store in China that had been infected with malware.
The malicious code is called Xcode Ghost and came hidden in a fake version of Xcode, popular Apple software used to create applications.
After a major attack on Apple’s iTune App Store, the company had removed nearly 40 popular apps that were infected by a malware. She added that the company is working with developers to make sure they are not using the counterfeit software.
The infected apps could potentially transmit information about the user’s device, prompt fake alerts, steal passwords and read and write information on the user’s clipboard. They should also uninstall or update any affected apps. Weibo, known as the Chinese equivalent of Twitter, was also affected, as were taxi service, game, music and financial service apps.
Other apps found to have been infected include the app of state-run mobile carrier China Unicom and 12306, the train-booking website of the country.
When iOS 9 featured the ability to block content and ads on mobile browsing, Peace topped the App Store charts in the next 24 hours of its launch.
Ryan Olson, the director of threat intelligence for Palo Alto Networks, said that the firm traced no instances of data theft or other harm done by Xcodeghost, confirming the statement of the companies.
The tainted version of Xcode was downloaded from a server in China that developers may have used because it allowed for faster downloads than using Apple’s US servers, Olson said. That leads to Chinese web users often seeking an alternate national source for big downloads.
Palo Alto Networks warned users of any future attacks. The malicious code was reportedly embedded in Apps by cyber attackers who had attacked Apple’s program hub. Another security advise is that developers should always leave Gatekeeper enabled on all of their systems to protect against tampered software.
