Author Topic: Detecting XCodeGhost Activity iPhones, iTouchs and iPads  (Read 1267 times)

Offline Hardhead

  • Administrator
  • Sr. Member
  • *****
  • Posts: 496
    • View Profile
Detecting XCodeGhost Activity iPhones, iTouchs and iPads
« on: October 20, 2015, 05:42:29 am »
Quote
End of last week, Palo Alto Networks published information about the "XCodeGhost" malware. Johannes already talked about it in today's podcast episode but I searched for more details about this story. Apple is known to be very strict with its application validation process. Every time a developer submits a new (or an updated) app, it must pass multiple security checks. Why so many applications infected by XCodeGhost successfully passed them? Could we imagine that Apple has some kind of trust with reputed developers or popular applications? Until now, ~50 applications have been reported vulnerable and mainly used in China. But some are popular worldwide like WeChat.

https://isc.sans.edu/forums/diary/Detecting+XCodeGhost+Activity/20171/

More info below on more apps.
http://www.apple.com/cn/xcodeghost/
http://researchcenter.paloaltonetworks.com/2015/09/malware-xcodeghost-infects-39-ios-apps-including-wechat-affecting-hundreds-of-millions-of-users/