Įven two months after the initial reports, security firm FireEye reported that hundreds of enterprises were still using infected apps and that XcodeGhost remained "a persistent security risk".
This opened the door for the malware to be inserted into high profile apps used on iOS devices. Security firm Palo Alto Networks surmised that because network speeds were slower in China, developers in the country looked for local copies of the Apple Xcode development environment, and encountered altered versions that had been posted on domestic web sites.
Over 4000 apps are infected, according to FireEye, far more than the 25 initially acknowledged by Apple, including apps from authors outside China. The problems were first identified by researchers at Alibaba, a leading e-commerce firm in China. It was thought to be the "first large-scale attack on Apple's App Store", according to the BBC. The software first gained widespread attention in September 2015, when a number of apps originating from China harbored the malicious code.
XcodeGhost (and variant XcodeGhost S) are modified versions of Apple's Xcode development environment that are considered malware.
0 kommentar(er)
