Home > News > Apple’s App Store Targeted by Chinese Hackers • Bookmark   • Newsletters   • Register Search Options

NEWS STORY

Apple’s App Store Targeted by Chinese Hackers

Apple’s App Store Targeted by Chinese Hackers
Get XBIZ News
Sep 21, 2015 3:00 PM PDT    Text size: 

LOS ANGELES — Apple’s longstanding reputation for flawless security is in jeopardy, following reports of dozens of malware-infected apps being distributed through its proprietary App Store.

It is a first for the distribution outlet that prides itself on its scrutiny and security of the products it carries — and an attack potentially impacting many millions of users.

The malware was payloaded onto some of the store’s most popular Chinese apps for iPad and iPhone users, including mobile chat app WeChat, which boasts a half-billion users; the Uber-inspired Didi Kuaidi; and a Spotify-style music app from NetEase.

It appears that rather than a direct attack on Apple, the malware authors took an innovative approach, by spreading a tainted version of Apple’s Xcode toolset, which then secretly installed the malware on any app it was used to create. The tainted Xcode file was labeled XcodeGhost by security researchers, and provides a stern example on the dangers of using pirated software — while exposing information about the app user’s device, passwords and more to the criminal attackers.

According to Palo Alto Networks security researcher Claud Xiao, the hack allows attackers to take control of iOS devices.

“We believe XcodeGhost is a very harmful and dangerous malware that has bypassed Apple’s code review and made unprecedented attacks on the iOS ecosystem,” Xiao stated.

For its part, Apple says the company is addressing the problem.

“To protect our customers, we’ve removed the apps from the App Store that we know have been created with this counterfeit software,” an Apple rep stated. “We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps.”

So far, no sensitive customer data release has been reported.

“At present, we haven’t discovered any loss of user information or assets as a result of this, though the WeChat team will continue to monitor and do tests,” a WeChat parent Tencent rep revealed, noting that an updated version of the WeChat app is available from the app store.

Altogether, it is an embarrassing breach of Apple’s closed app distribution channel, which has long kept legitimate adult entertainment apps from its ecosystem due to corporate censorship of carnal content.

More ways to get XBIZ News:  RSS Feeds  |  E-Newsletters  |  Desktop Widget  |  Mobile
Looking for porn star news and behind-the-scene videos? Check out XFANZ.com !

LEGAL PERSPECTIVES

Dissecting an $11.9M Affiliate Marketing Judgment

The Federal Trade Commission scored another major win in early October when the 2nd U.S. Circuit Court of Appeals upheld a lower court ruling, requiring LeadClick Media LLC to pay an $11.9 million award. The... More »

Legal Protection for Amateur Shoots

Any adult industry professional who creates video content with actual first-time amateurs will come to an early knowledge that later performer regret is commonplace. Recognized performers who regularly... More »

Legal Options to Address Pirated Cam Performances

Many webcam performers have experienced a new trend in online piracy — the illegal recording and publication of live webcam performances. The “business model” is disturbingly simple:... More »
XBIZ NEWSLETTERS
Stay informed of the latest industry developments. Get XBIZ newsletters delivered to your inbox. Subscribe today!
Enter email address:

* To manage existing subscriptions click here.






POPULAR PRODUCTS & SERVICES
Submit your press release to
multiple news outlets with 1 click.
Subscribe to RSS news feeds or
add free content to your website.
Access XBIZ news and articles
with your mobile device.
Subscribe to XBIZ World magazine, the industry's leading e-commerce trade publication, delivering in-depth coverage of the online, mobile and ancillary digital markets.

UPCOMING EVENTS

XBIZ 2017

Jan 09 - Jan 13
Hollywood, CA

XBIZ Awards 2017

Jan 12 - Jan 12
Los Angeles, CA

ANME Founders Show

Jan 14 - Jan 15
Los Angeles Marriott Burbank Airport

Everything To Do With Sex Show

Jan 20 - Jan 22
Montréal, Québec
Everyday thousands of business professionals browse XBIZ's industry directory for quality products and services. Not listed yet? Your company could be losing potential new business. Submit your company today!
Use XBIZ RSS feeds to stay informed of the latest industry developments or as a content syndication tool for your website!