Apple is working to find and fix infected apps – but they’re still looking, so we could definitely learn about more hacked apps in the days ahead.
Advertisement
But while there are steps users can take to combat malware on Android devices, fighting this rare iOS exploit is mostly up to the developers.
“I wouldn’t say that the floodgates for iOS malware are open now, but this vector is probably something that other attackers are going to try to replicate in the future”, said Ryan Olson, director of threat intelligence for Palo Alto Networks, in an interview. Some of the apps affected by the malware include a handful of China’s most popular titles – an older version of WeChat, and Didi Kuadi, the country’s version of Uber, to name two. Apple hasn’t said how many apps are affected, but one Chinese security firm put the number at 344.
Anti-censorship group Greatfire.org, which tracks Chinese Internet restrictions, called the news “the most widespread and significant spread of malware in the history of the Apple app store, anywhere in the world”. It can also read and write data in the user’s clipboard, which could be used to get passwords, according to Palo Alto.
A new report by Forbes claims that a minimum of 39 apps running on about a hundred million Apple iPads and iPhones are infected by malware.
According to Palo Alto Networks, the malicious code enabled hackers to upload users’ device information to a command and control server, which gave them the ability to send prompts to the device. That leads to Chinese web users often seeking an alternate national source for big downloads.
“Apple’s “walled garden” approach does make it harder for cybercriminals to compromise apps”, said Kaspersky Lab principle security researcher David Emm.
But Tencent Ltd. said its popular WeChat app was hit; the company released a new version after spotting the offending code. The Chinese media reported that apps for banks, airlines and a popular music service were affected post the security breach. Also the effect to any users who downloaded the app is still not clear. The Cupertino tech giant said on Sunday, Sept 20, that it is already cleaning up its app store, removing malicious software for both iPad and iPhone which have been identified in the attack. A preliminary investigation revealed there had been leakage or no data theft of user information, the firm said.
Advertisement
It is is the first sustained security breach of the App Store that Apple has acknowledged.
