RV_ Posted November 4, 2015 Report Share Posted November 4, 2015 More bad news: XcodeGhost, malware tailored for iOS applications, is back with a new twist. Excerpt: "A new variant of XcodeGhost has been discovered in the wild, leaving China behind to tackle US companies. In September this year, researchers discovered malware able to infect legitimate Apple iOS applications. The malicious code, known as XcodeGhost, lurked within at least 4000 legitimate iOS apps offered to the Chinese market, placing millions of users at risk. The malware was able to hijack apps through the developer toolkit Xcode, which is used to develop software for Apple's ecosystem. By adding the code to Xcode packages hosted on third-party websites rather than Apple domains, cybercriminals were able to bypass Apple's stringent security protocols and infect popular apps such as WeChat, PDF Reader and WinZip without developer knowledge or consent. Apple reacted immediately to the threat, removing malicious apps from the iOS App Store and improving security features in an attempt to prevent the situation raising its head again. However, it appears the malware is still as strong as ever. This week, a new variant of the malware was discovered. Researchers from Symantec say the variant has been found in unofficial versions of Xcode 7. While the iOS development kit should only be downloaded from Apple's App Store or Developer website, some developers chose to find regional sources for quicker download speeds since Xcode is over 4 gigabytes in size -- which paves the way for cyberattackers to take advantage of this trend. Cyberforensics firm FireEye has monitored the threat posed by XcodeGhost and says the malware has now left the confines of the Chinese market in order to enter into the US enterprise sphere. After monitoring the malware for four weeks, the company says 210 enterprises have been recorded with XcodeGhost-infected apps running inside their networks -- generating over 28,000 attempts to connect to the malware's command-and-control (C&C) servers." The whole article is here: http://www.zdnet.com/article/xcodeghost-ios-malware-leaves-china-strikes-us-enterprises/?tag=nl.e589&s_cid=e589&ttag=e589&ftag=TREc64629f Safe computing! Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.