US EUROPE AFRICA ASIA 中文
Business / Technology

Apple's iOS App Store suffers first major attack

(Agencies) Updated: 2015-09-21 09:32

Apple's iOS App Store suffers first major attack

A sales assistant shows features of iOS 9 on an Apple iMac at an Apple reseller shop in Bangkok September 18, 2015.[Photo/Agencies]

Apple Inc said on Sunday it is cleaning up its iOS App Store to remove malicious iPhone and iPad programs identified in the first large-scale attack on the popular mobile software outlet.

The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost that was embedded in hundreds of legitimate apps.

It is the first reported case of large numbers of malicious software programs making their way past Apple's stringent app review process. Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc.

The hackers embedded the malicious code in these apps by convincing developers of legitimate software to use a tainted, counterfeit version of Apple's software for creating iOS and Mac apps, which is known as Xcode, Apple said.

"We've removed the apps from the App Store that we know have been created with this counterfeit software," Apple spokeswoman Christine Monaghan said in an email. "We are working with the developers to make sure they're using the proper version of Xcode to rebuild their apps."

She did not say what steps iPhone and iPad users could take to determine whether their devices were infected.

Palo Alto Networks Director of Threat Intelligence Ryan Olson said the malware had limited functionality and his firm had uncovered no examples of data theft or other harm as a result of the attack.

Still, he said it was "a pretty big deal" because it showed that the App Store could be compromised if hackers infected machines of software developers writing legitimate apps. Other attackers may copy that approach, which is hard to defend against, he said.

"Developers are now a huge target," he said.

Researchers said infected apps included Tencent Holdings Ltd's popular mobile chat app WeChat, car-hailing app Didi Kuaidi and a music app from Internet portal NetEase Inc.

The tainted version of Xcode was downloaded from a server in China that developers may have used because it allowed for faster downloads than using Apple's US servers, Olson said.

Chinese security firm Qihoo360 Technology Co said on its blog that it had uncovered 344 apps tainted with XcodeGhost.

Apple declined to say how many apps it had uncovered.

Hot Topics

Editor's Picks
...
主站蜘蛛池模板: 波多野结衣gvg708| 成人看片黄在线观看| 日本人亚洲人jjzzjjzz页码1| 人人妻人人做人人爽| 触手强制h受孕本子里番| 国产资源在线观看| 三级三级久久三级久久| 旧里番yy4480在线高清影院| 亚洲综合图片小说区热久久| 老司机午夜免费福利视频| 国产真实偷乱小说| 99精品视频在线视频免费观看| 无码日韩精品一区二区三区免费| 亚洲人成网站在线观看青青| 男生和女生一起差差差很痛视频| 国产乱人视频在线播放| jizzjizz之xxxx18| 夜色www国产精品资源站| 久久99国产精品视频| 极品丝袜老师h系列全文阅读| 亚洲综合久久精品无码色欲| 美女内射毛片在线看3D| 国产手机在线播放| 91影院在线观看| 妖精的尾巴ova| 中文字幕韩国电影| 日韩国产欧美在线观看一区二区| 亚洲欧洲精品国产区| 男人j进入女人p狂躁免费观看 | 91精品国产闺蜜国产在线闺蜜| 工作女郎在线看| 久久久久亚洲精品中文字幕| 校花被折磨阴部流水| 亚洲电影唐人社一区二区| 秋霞理论最新三级理论最| 国产一级毛片免| 黄瓜视频在线观看视频| 国产精品久久久| 91香蕉视频下载导航| 天天综合天天做天天综合| 不卡高清av手机在线观看|