In rather shocking news, researchers have recently discovered a piece of iOS malware, XcodeGhost, in several apps in the Apple App Store. This is the sixth malware that has made its way into the official App store after LBTM, InstaStock, FindAndCall, Jekyll and FakeTor, according to Palo Alto Networks.
XcodeGhost can steal data and potentially trick people into providing personally identifiable information, explains Lookout Mobile Security. Its creators were able to sneak the malicious code into the apps without the app developers’ knowledge.
The malware made it through to the expanding list of apps that were published live to the Apple App Store. It removes information like the device’s name, country, and unique identifiers off the device. Palo Alto Networks says that it may also have the ability to push dialogue boxes to the iPhone or iPad’s screen, which could be used to steal username, password and other personal information (theoretically).
Furthermore, it may also be able to open websites in the mobile browser, which could be used for various malicious purposes including phishing and installing other potentially malicious software.
The affected apps include WeChat, CamCard, WinZip, CamScanner, PDFReader, WeLoop, SaveSnap and many others.
In an emailed statement, Apple told International Business Times:
“Apple takes security very seriously and iOS is designed to be reliable and secure from the moment you turn on your device. We offer developers the industry’s most advanced tools to create great apps. A fake version of one of these tools was posted by untrusted sources which may compromise user security from apps that are created with this counterfeit tool. To protect our customers, we’ve removed the apps from the App Store that we know have been created with this counterfeit software and we are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps.”


SpaceX Eyes Starlink Mobile Phone Service to Challenge Verizon, AT&T, and T-Mobile
Australia Sues Amazon Over Prime Video Ads and Subscription Terms
Lenovo Shares Slide as AI-Driven Memory Demand Signals Higher DRAM and NAND Prices
OpenAI May Delay IPO to 2027 Amid $1 Trillion Valuation Goal
UBS Raises TSMC Price Target to T$3,400 on Strong AI Chip Demand Outlook
Firmus Partners With Nvidia to Deliver 170,000 AI GPUs in $30 Billion Cloud Infrastructure Deal
Morgan Stanley Raises Tesla Q2 Delivery Forecast on Strong Europe and China Demand
Italy Investigates Microsoft Over Microsoft 365 AI Subscription Price Hike
Microsoft Reportedly Plans New Job Cuts Across Sales, Consulting, and Xbox
Apple Challenges India Antitrust Probe, Says CCI Copied Rivals’ Claims in App Store Case
US Seizes Nearly 400 Illegal World Cup Streaming Domains in Global Anti-Piracy Crackdown
SpaceX, Charter Communications Explore Mobile Partnership to Expand Starlink Wireless Service
Australia Plans Higher Fines for Social Media Firms Failing to Block Underage Users
Super Micro Shares Slide After Taiwan Raids Over Alleged Nvidia AI Chip Smuggling Probe
Apple Supplier Stocks Slide as Samsung, SK Hynix Lead Selloff After Apple Price Hikes
AI can be a personal trainer in your pocket – but is it safe?
Nvidia Stock Rises as SemiAnalysis Sees AI Data Center Revenue Beating Wall Street Forecasts 



