BOSTON (Reuters) – Apple (NASDAQ said Sunday he is cleaning its App Store to remove malware for iPhones and iPads, the first large-scale attack on the popular shop applications.
The company said its efforts after several cyber security firms reported finding a program called XcodeGhost who infiltrated hundreds of legitimate applications.
This is the first reported cases of counterfeit software programs to breaking through in the strict review process Apple applications.
Before this attack, had met only five malicious applications on the App Store, according to security firm computer Palo Alto Networks Inc.
Hackers infiltrated malware to convince developers of legitimate software to use a counterfeit version of Apple’s software for creating applications for iOS and Mac, which is known as Xcode, it said.
“We have removed the applications from the App Store that we have created with this counterfeit software,” said Apple spokeswoman Christine Monaghan, in an email.
“We are working with developers to ensure that they are using the correct version of Xcode to rebuild their applications,” he said.
He said they should do the users of iPhones and iPads to determine if your device is infected.
Director of Palo Alto Networks Threat, Ryan Olson, said the malware had limited functionality and company had no examples of data theft or other damage as a result of the attack .
However, he said it was “a big issue” because it showed that the App Store could be compromised if hackers infect machines software developers who create legitimate applications. Other attackers can copy that method, which is difficult to defend, he said.
“Developers will are now a huge target,” he said.
The researchers said the infected applications included WeChat popular Tencent Holdings Ltd, Didi kuaidi and a music application Internet portal NetEase Inc.
The Xcode corrupted version has been downloaded from a server in China that developers can be used because it allows downloads faster than the use of servers in the United States Apple, Olson said.
The Chinese security company Qihoo360 Technology Co. said in his blog that he had discovered 344 applications with XcodeGhost affected.
Apple would not say how many applications had detected
Fusion Media or anyone Involved With Fusion Media will not accept any liability for loss or damage as a result of reliance on the information Including data, quotes, charts and buy / sell signals Contained Within this website. Please be fully Informed Regarding the Risks Associated With costs and trading the financial markets, it is one of the riskiest investment forms possible.
No comments:
Post a Comment