Jump to content

XcodeGhost iOS malware leaves China, strikes US enterprises


Recommended Posts

More bad news:


XcodeGhost, malware tailored for iOS applications, is back with a new twist.




"A new variant of XcodeGhost has been discovered in the wild, leaving China behind to tackle US companies.


In September this year, researchers discovered malware able to infect legitimate Apple iOS applications. The malicious code, known as XcodeGhost, lurked within at least 4000 legitimate iOS apps offered to the Chinese market, placing millions of users at risk.


The malware was able to hijack apps through the developer toolkit Xcode, which is used to develop software for Apple's ecosystem. By adding the code to Xcode packages hosted on third-party websites rather than Apple domains, cybercriminals were able to bypass Apple's stringent security protocols and infect popular apps such as WeChat, PDF Reader and WinZip without developer knowledge or consent.


Apple reacted immediately to the threat, removing malicious apps from the iOS App Store and improving security features in an attempt to prevent the situation raising its head again.


However, it appears the malware is still as strong as ever.

This week, a new variant of the malware was discovered. Researchers from Symantec say the variant has been found in unofficial versions of Xcode 7. While the iOS development kit should only be downloaded from Apple's App Store or Developer website, some developers chose to find regional sources for quicker download speeds since Xcode is over 4 gigabytes in size -- which paves the way for cyberattackers to take advantage of this trend.


Cyberforensics firm FireEye has monitored the threat posed by XcodeGhost and says the malware has now left the confines of the Chinese market in order to enter into the US enterprise sphere. After monitoring the malware for four weeks, the company says 210 enterprises have been recorded with XcodeGhost-infected apps running inside their networks -- generating over 28,000 attempts to connect to the malware's command-and-control (C&C) servers."


The whole article is here: http://www.zdnet.com/article/xcodeghost-ios-malware-leaves-china-strikes-us-enterprises/?tag=nl.e589&s_cid=e589&ttag=e589&ftag=TREc64629f


Safe computing!

http://www.rvroadie.com Email on the bottom of my website page.
Retired AF 1971-1998

When you see a worthy man, endeavor to emulate him. When you see an unworthy man, look inside yourself. - Confucius


“Those who can make you believe absurdities, can make you commit atrocities.” ... Voltaire

Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

RVers Online University



RV Destinations

Find out more or sign up for Escapees RV'ers Bootcamp.

Advertise your product or service here.

RVTravel.com Logo

  • Create New...