The App Store was hit hard. It just experienced its worst security breach ever, because hackers managed to fool legitimate developers into using a hacked, tainted version of Xcode, Apple's software development kit for creating iOS and Mac apps. 

Last week security researchers from Palo Alto Networks discovered that 39 iPhone and iPad apps were infected with malware, potentially impacting hundreds of millions of unsuspecting users. Among the infected apps (including IMs, banking apps, mobile carrier's app, maps, stock trading apps, SNS apps and games) were also WeChat, and the Chinese mobile messaging app, which is used by 600 million people, media reports.

Researchers discovered that the malicious code is capable of receiving commands from the attacker through the C2 server to perform the following actions:

  • Prompt a fake alert dialog to phish user credentials;
  • Hijack opening specific URLs based on their scheme, which could allow for exploitation of vulnerabilities in the iOS system or other iOS apps;
  • Read and write data in the user's clipboard, which could be used to read the user's password if that password is copied from a password management tool.

Below you can find a list of 85 apps, that were infected with malicious software codes (media reports claim that there are more than infected 300 apps; if you are using them, uninstall them until it is safe to use them again):

air2
AmHexinForPad
Angry Birds 2
baba
BiaoQingBao
CamCard
CamScanner
CamScanner Lite
CamScanner Pro
Card Safe
China Unicom Mobile Office
ChinaUnicom3.x
CITIC Bank move card space
CSMBP-AppStore
CuteCUT
DataMonitor
Didi Chuxing
Eyes Wide
FlappyCircle
Flush
Freedom Battle
golfsense
golfsensehd
guaji_gangtai en
Guitar Master
High German map
Himalayan
Hot stock market
I called MT
I called MT 2
IFlyTek input
IHexin
immtdchs
InstaFollower
installer
iOBD2
iVMS-4500
Jane book
jin
Lazy weekend
Lifesmart
Mara Mara
Marital bed
Medicine to force
Mercury
Micro Channel
Microblogging camera
MobileTicket
MoreLikers2
MSL070
MSL108
Musical.ly
NetEase
nice dev
OPlayer
OPlayer Lite
PDFReader
PDFReader Free
Perfect365
Pocket billing
PocketScanner
Poor tour
Quick asked the doctor
Quick Save
QYER
Railway 12306
SaveSnap
SegmentFault
snapgrab copy
Stocks open class
SuperJewelsQuest2
Telephone attribution assistant
The driver drops
The Kitchen
Three new board
ting
TinyDeal.com
Wallpapers10000
Watercress reading
WeChat
WeLoop
WhiteTile
WinZip
WinZip Sector
WinZip Standard

Sept. 22, 2015 Living photo: Apple
Apple App Store infection malware

More like this:

Must have: Apple and Google reveal the best apps of 2015

Must have: Apple and Google reveal the best apps of 2015

Find your way in LA with the ''Go LA" app

Find your way in LA with the ''Go LA" app

Leaked photos of Blackberry’s first Android phone

Leaked photos of Blackberry’s first Android phone

This website uses cookies.
To comply with the EU regulations you must confirm your consent to their use.

You can do that by clicking "OK" or simply continuing to browse this website.
If you do not wish to have cookies set, you can opt out in cookie settings

close