First iOS Malware Discovered In Apple's App Store

New submitter DavidGilbert99 writes "Security experts have discovered what is claimed to be the first ever piece of malware to be found in the Apple App Store. While Android is well known for malware, Apple has prided itself on being free from malicious apps ... until now. The app steals your contact data and uploads it to a remote server before sending spam SMS messages to all your contacts, but the messages look like they are coming from you."

App is/was also available for Android

[Anonymous Coward]

So they targeted both groups.

Re:First *malware* perhaps

[jittles]

I don't believe this is the first instance of iOS malware at all. Its the first time they have found it. And they only found it because the app author was stupid. There are probably tons of iOS apps that steal all of your contact info, you just have no way of knowing about it. I am pretty sure such apps have been acknowledged by apple in the past, and subsequently removed from the app store.

Not surprising...

[Anonymous Coward]

One of my beefs about iOS is that even though it will ask the user if an app attempts to use the GPS or notification, there are plenty of juicy things that can be obtained and copied elsewhere. Photos are protected against being deleted, but they can be slurped up and copied off without the user knowing. Same with contacts and music.

I'm surprised this was caught. If a person jailbreaks their device and runs PMP (Protect My Privacy) and Firewall IP, they will see a lot of apps digging in places where they shouldn't be, and sending lots of data to sites that have zero relevance to the task at hand. One major news app connects to so many sites without DNS (just via IP addresses) that I ended up just blacklisting all but the few sites it gets news info.

I would say where the rubber meets the road, iOS has been more secure, because Apple guards the gateway and does it well. However, if anything malicious does make it past, it can have a field day.

Re:First *malware* perhaps

[GameboyRMH]

Addendum: Looks like I'm right:

http://apple.slashdot.org/comments.pl?sid=2959773&cid=40554831 [slashdot.org]

Re:No doubt...

[mlts]

Once malware gets rooted out and Apple slams the banhammer down, it is a lot harder for a shady developer to get around closed accounts than on the Google Marketplace. This by itself keeps the bad guys on notice.

That is the main security mechanism of iOS which keeps the bad stuff at bay: As soon as Apple gets wind of something malicious or violating the rules, it gets tossed out immediately. The same action doesn't get repeated.

Now, once an app does get past the gatekeeper, it has a lot of room to play because only locations and alerts are granted/denied by the user. So, in theory, an app can copy pictures and contacts off, as well as send text messages all it wants. However, if users find something doing this, Apple squashes it.

Since Apple's reputation is on the line for security, the strong gatekeeper has shown that it is more secure than the weak gatekeeper/strong OS security of the Android ecosystem. Google needs to get with it and start having a tier of the Marketplace that requires apps to be actively approved, similar to what Amazon does.

Re:Why doesn't this count?!

[realsilly]

http://www.theregister.co.uk/2011/11/08/apple_excommunicates_charlie_miller/ [theregister.co.uk]

Here is a link to back up your post.

Re:Are you sure?

[evilRhino]

Didn't the iOS LinkeIn App get caught doing similar over a month ago? http://blog.skycure.com/2012/06/linkedout-linkedin-privacy-issue.html [skycure.com]