Apple App Store under attack

In rather shocking news, researchers have recently discovered a piece of iOS malware, XcodeGhost, in several apps in the Apple App Store. This is the sixth malware that has made its way into the official App store after LBTM, InstaStock, FindAndCall, Jekyll and FakeTor, according to Palo Alto Networks.

XcodeGhost can steal data and potentially trick people into providing personally identifiable information, explains Lookout Mobile Security. Its creators were able to sneak the malicious code into the apps without the app developers’ knowledge.

The malware made it through to the expanding list of apps that were published live to the Apple App Store. It removes information like the device’s name, country, and unique identifiers off the device. Palo Alto Networks says that it may also have the ability to push dialogue boxes to the iPhone or iPad’s screen, which could be used to steal username, password and other personal information (theoretically).

Furthermore, it may also be able to open websites in the mobile browser, which could be used for various malicious purposes including phishing and installing other potentially malicious software.

The affected apps include WeChat, CamCard, WinZip, CamScanner, PDFReader, WeLoop, SaveSnap and many others.

In an emailed statement, Apple told International Business Times:

“Apple takes security very seriously and iOS is designed to be reliable and secure from the moment you turn on your device. We offer developers the industry’s most advanced tools to create great apps. A fake version of one of these tools was posted by untrusted sources which may compromise user security from apps that are created with this counterfeit tool. To protect our customers, we’ve removed the apps from the App Store that we know have been created with this counterfeit software and we are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps.”