Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×
IOS Security Apple

Number of XcodeGhost-Infected iOS Apps Rises 169

An anonymous reader writes: As the list of apps infected with the XcodeGhost malware keeps expanding, Apple, Amazon and Baidu are doing their best to purge their online properties of affected apps, malicious Xcode installers, and C&C servers used by the attackers to gather the stolen information and control the infected apps/devices. China-based jailbreaking Pangu Team claims that the number of infected app is higher than 3,400, and have offered for download a free app that apparently detects the Trojanized apps.
This discussion has been archived. No new comments can be posted.

Number of XcodeGhost-Infected iOS Apps Rises

Comments Filter:
  • Detects and exploits (Score:4, Interesting)

    by xxxJonBoyxxx ( 565205 ) on Tuesday September 22, 2015 @09:02AM (#50573801)

    >> free app that apparently detects the Trojanized apps

    "detects and exploits" probably

  • by Anonymous Coward

    Still better than that malware Android

    • Still better than that malware Android

      Android doesn't trade on it's walled-garden security.

      • by cfalcon ( 779563 )

        And this isn't about Apple's security. Remember, YOU MUST JAILBREAK for this to bite you. Much more than just jailbreak. Not only do you have to give some Chinese hacker group admin permission on your PC (which seems to be totally safe, but hey, this would normally be a red flag, right?), then you have to tell your phone that you trust what's going on. Then you have to take the jailbroken thing which provides its own repo of code, and say "nope, still not dangerous enough", then find some russian hacker

  • by ilsaloving ( 1534307 ) on Tuesday September 22, 2015 @10:33AM (#50574673)

    So let me get this straight...

    First they downloaded a dodgy version of a free development tool...

    Then they completely disabled Gatekeeper, which would have warned them that they were using a problematic version of xcode...

    People/Companies who demonstrate such a shockingly poor level of judgement shouldn't be allowed to flip burgers, let alone be near a computer.

    • by Malc ( 1751 )

      They probably already had Gatekeeper disabled. I know I had to do this simply because of the number of tools I use as a software developer that wouldn't run otherwise. Gatekeeper's pretty good if you only play Farmville or don't do anything beyond Safari, although I wonder why you'd have a high end computer for that rather than a generic Windows system or some other portable device.

      • They probably already had Gatekeeper disabled. I know I had to do this simply because of the number of tools I use as a software developer that wouldn't run otherwise. Gatekeeper's pretty good if you only play Farmville or don't do anything beyond Safari, although I wonder why you'd have a high end computer for that rather than a generic Windows system or some other portable device.

        1. You can reduce GateKeeper to the "Warn" level

        2. You can always Right-Click and Force a Run

        3. It only happens once per App. Deal with it.

      • by bsolar ( 1176767 )
        When Gatekeeper stops an application from running it's then possible to go under Security & Privacy to allow it. This means you need to allow your tools only once, the first time you run them (and of course eventually after you update them).
      • by k2r ( 255754 )

        > I know I had to [disable gatekeeper] because of the number of tools I use as a software developer that wouldn't run otherwise.

        I don't want to publicly question your qualifications as a software developer but please explain which tools exactly malfunction made you feel like (permanently?) disabling gatekeeper...

        Basically I think that someone who considers disabling gatekeeper to be a good idea should not have an admin account on a Mac. But I may be wrong.

    • by narcc ( 412956 )

      Yet, they still managed to get their apps inside Apple's walls. They'd make the Greeks proud.

"Stupidity, like virtue, is its own reward" -- William E. Davidsen

Working...