Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Apple lists top 25 apps hit by malware in first major attack

Reprints
Apple lists top 25 apps hit by malware in first major attack

(Reuters) — Apple Inc. said the WeChat messaging app and car-hailing app DiDi Taxi were among the 25 most popular apps found to be infected with malicious software, the first-ever large-scale attack on its App Store.

Apple on Sunday said it was cleaning up its App Store after several cyber security firms reported that unknown hackers had embedded a malware, dubbed XcodeGhost, in hundreds, possibly thousands, of Chinese apps.

“We have no information to suggest that the malware has been used to do anything malicious,” Apple said in its XcodeGhost Q&A Web page.

The company did not previously disclose which apps had been affected, although many had been identified by third parties.

Infected apps include Baidu Inc.'s Baidu Music app, the 58 Classified-Job, Used Cars, Rent, and a music app from Internet portal NetEase Inc.

Tencent Holdings Ltd. is the owner of WeChat.

This is the first reported case of large number of malicious software programs making their way past Apple's stringent app review process.

Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc.

Apple said it was working with developers to get the apps back on the App Store and was blocking new apps that contained the malware.

The company also said some of the affected apps could be fixed through updates.

The hackers targeted the App Store using a counterfeit version of Xcode “toolkit”, Apple's app-building software.

Many Chinese app developers downloaded the tainted software kit instead of the original one because of the slow download speeds from Apple's official servers located overseas.

Apple said it is working to make Xcode faster for Chinese developers to download.

Read Next

  • Apple persuades U.S. judge to void $533 million iTunes award

    (Reuters) — A federal judge has thrown out a $532.9 million award against Apple Inc. and ordered a new trial on damages, in a case where a jury found that the iPhone maker's iTunes software infringed three patents owned by a Texas company.