Millions of iPhone and iPad are at risk because of a security breach after a group of hackers managed to enter the malicious code inside of some of the most popular Chinese applications. This is the first large-scale attack against the apple devices. Hackers have managed to persuade some developers to use an unofficial version of Xcode, the software dedicated to the creation of applications for systems with iOS and OSX. In this way applications containing malware have escaped through security Apple, undisturbed reaching the App Store and, as a result, user devices.
Apple confirmed to be at work on removing these apps. A decision made in response to several reports from security companies that, by analyzing some applications, have revealed the presence of a program called XcodeGhost. There is talk of a few hundred app, a really high number: so far only five apps were branded as evil in-store digital apple. “We have removed from the store applications created with the program forged” said an Apple spokesman. “We are working with developers to ensure that they use the correct version of Xcode to rebuild their apps.”
As a result of the attack , researchers at Palo Alto Networks have detected no data theft or other malicious actions carried out to the detriment of users thanks to the fact that malware has limited functionality. In any case the attack still has a considerable importance, because it showed that the App Store can be attacked if hackers manage to infect tools and software used to create applications. Among the victims of this attack are giants such as Tencent, developer of the popular messaging app wechat, readily updated to resolve the issue. Developers have downloaded the counterfeit version of Xcode because contained in Chinese servers that offered download speeds of more than US Apple.
No comments:
Post a Comment