Apple’s iOS App Store suffers first major attack
BOSTON: Apple Inc has said that it is cleaning up its iOS App Store to remove malicious iPhone and iPad programs identified in the first large-scale attack on the popular mobile software outlet. The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost
By our correspondents
September 22, 2015
BOSTON: Apple Inc has said that it is cleaning up its iOS App Store to remove malicious iPhone and iPad programs identified in the first large-scale attack on the popular mobile software outlet.
The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost that was embedded in hundreds of legitimate apps.
It is the first reported case of large numbers of malicious software programs making their way past Apple's stringent app review process. Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc.
The hackers embedded the malicious code in these apps by convincing developers of legitimate software to use a tainted, counterfeit version of Apple's software for creating iOS and Mac apps, which is known as Xcode, Apple said.
"We’ve removed the apps from the App Store that we know have been created with this counterfeit software," Apple spokeswoman Christine Monaghan said in an email.
"We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps."
She did not say what steps iPhone and iPad users could take to determine whether their devices were infected.
Palo Alto Networks Director of Threat Intelligence Ryan Olson said the malware had limited functionality and his firm had uncovered no examples of data theft or other harm as a result of the attack.
Still, he said it was "a pretty big deal" because it showed that the App Store could be compromised if hackers infected machines of software developers writing legitimate apps. Other attackers may copy that approach, which is hard to defend against, he said.
"Developers are now a huge target," he said.
Researchers said infected apps included Tencent Holdings Ltd’s popular mobile chat app WeChat, car-hailing app Didi Kuaidi and a music app from Internet portal NetEase Inc.
The tainted version of Xcode was downloaded from a server in China that developers may have used because it allowed for faster downloads than using Apple's U.S. servers, Olson said.
Chinese security firm Qihoo360 Technology Co said on its blog that it had uncovered 344 apps tainted with XcodeGhost. Apple declined to say how many apps it had uncovered.
The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost that was embedded in hundreds of legitimate apps.
It is the first reported case of large numbers of malicious software programs making their way past Apple's stringent app review process. Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc.
The hackers embedded the malicious code in these apps by convincing developers of legitimate software to use a tainted, counterfeit version of Apple's software for creating iOS and Mac apps, which is known as Xcode, Apple said.
"We’ve removed the apps from the App Store that we know have been created with this counterfeit software," Apple spokeswoman Christine Monaghan said in an email.
"We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps."
She did not say what steps iPhone and iPad users could take to determine whether their devices were infected.
Palo Alto Networks Director of Threat Intelligence Ryan Olson said the malware had limited functionality and his firm had uncovered no examples of data theft or other harm as a result of the attack.
Still, he said it was "a pretty big deal" because it showed that the App Store could be compromised if hackers infected machines of software developers writing legitimate apps. Other attackers may copy that approach, which is hard to defend against, he said.
"Developers are now a huge target," he said.
Researchers said infected apps included Tencent Holdings Ltd’s popular mobile chat app WeChat, car-hailing app Didi Kuaidi and a music app from Internet portal NetEase Inc.
The tainted version of Xcode was downloaded from a server in China that developers may have used because it allowed for faster downloads than using Apple's U.S. servers, Olson said.
Chinese security firm Qihoo360 Technology Co said on its blog that it had uncovered 344 apps tainted with XcodeGhost. Apple declined to say how many apps it had uncovered.
-
Chloe Kim Set For Historic Halfpipe Gold Showdown At Milano Cortina -
Brooklyn Beckham Gives Cold Response To Cruz's Olive Branch Amid Feud -
Woman Arrested Months After Allegedly Staging Husband’s Murder As Suicide -
Senior US Politician Makes Formal Accusation Against Andrew As Woman Under Him Is Sex Trafficked -
X Product Head Warns AI Spam Can Make IMessage And Gmail Unusable -
Tyler Childers, Wife Senora May Expecting Second Baby -
‘Smiling Electrons’ Discovered In Earth’s Magnetosphere In Rare Space Breakthrough -
Cardi B Airs Chilling Threat To Authorities Over Arresting Her Fans -
Bangladesh Sees High Turnout In Landmark National Election -
Lufthansa Cancels Hundreds Of Flights Amid Pilot And Cabin Crew Strike -
Video: Prince Harry Tears Up Talking Of His Court Case & Children: ‘Don’t Feel Shame Even If A Judge Makes Demands' -
King Charles Issues New Statement For ‘carers’ Two Days After Promising To Support Police Action Against Andrew -
Gene Simmons Makes Major Claim Against Rock & Roll Hall Of Fame -
Vladyslav Heraskevych Disqualified From Winter Olympics 2026 Over Helmet Controversy -
Late James Van Der Beek Inspires Bowel Cancer Awareness Post Death -
ByteDance’s New AI Video Model ‘Seedance 2.0’ Goes Viral