The malicious code Xcode Ghost has been detected in over fifty apps in the App Store and can have affected over 500 million users, particularly in China.
Chinese app developers have discovered malicious code, known as malware, in a number of applications in the Apple store app store. In total, over 50 apps with malware found, reports security company Palo Alto Networks.
Malware code is called Xcode Ghost and come from a malicious version of Apple’s developer tools Xcode as developers duped into install. The fake version of Xcode was posted on the cloud service Baidu, and was taken away from home by some developers.
At the forefront are the apps targeted at the Chinese market and potentially over 500 million users may be affected. One of the affected apps, chat client Wechat is very popular in China and Southeast Asia. Some apps are also available outside the region, such CamCard used to scan business cards. Among the list of affected apps is also the famous game Angry Birds 2, reports 9to5Mac.
Apps that include Xcode Ghost collects information about the devices they are installed, and then sends the information to the servers controlled by fraudsters. The information collected is for example the unit time, country, language settings and ID number.
Worse though is that infected devices can also receive commands from the servers when a connection is established. Through this example, messages are displayed where the app to request passwords and other sensitive data. Xcode Ghost can also read information stored in the clipboard, for example a password or account number to be copied from one app to another.
Palo Alto Networks said they are working with Apple to come deal with the problem. Several of the affected developers have also updated their apps to remove the malicious code. A spokesperson for Apple said to Reuters:
“We have removed the apps from the App Store that we know are made of this fake software. We are working with the developers to ensure that they use a proper version of Xcode to exchanged their apps. “
Users who have any of the affected apps installed should immediately remove them or update to the new versions without Xcode Ghost. For security reasons, users who have had any of the apps installed also change the password to iCloud and other services used on the affected device. Developed should ensure they are using the official version of Xcode 7 or beta version 7.1 from Apple.
Here is a list of known applications that are affected:
Xcode Ghost
Angry Birds 2
CamCard
CamScanner
Card Safe
China Unicom Mobile Office
CITIC Bank move CardSpace
Didi Chuxing
> Eyes Wide
Flush
Freedom Battle
High German map
Himalayan
Hot Stock Market
called MT
called MT 2
iFLYTEK input
Jane book
Lazy weekend
Life Smart
Mara Mara
Marital bed
Medicine to force
Micro Channel
Microblogging camera
Netease
OPlayer
Pocket billing
Poor tour
Quick asked the doctor
Railway 12306
SegmentFault
Stocks Open Class
Telephone attribution assistant
The driver drops
The Kitchen
Three new board
Watercress reading
WeChat
View more
No comments:
Post a Comment