Skip to main content
  1. Home
  2. Mobile
  3. News

Apple to alert affected users about major iOS security breach

By

App Store
arisara / Shutterstock.com
While Apple says it so far has no evidence suggesting that malware-infected apps discovered recently in its iOS store have stolen personal data or caused any other issues for users, it’ll nevertheless be contacting anyone who’s downloaded one or more of the infected apps with advice on what steps to take.

A Q&A posted by the Cupertino company on Tuesday aimed to ease the concerns of iPhone and iPad users who fear they may be using infected apps built with a modified version of Xcode, Apple’s app-building tool. The incident, which first hit the headlines over the weekend, is believed to be the most serious security breach in the App Store’s seven-year history.

Recommended Videos

Initial reports suggested around 40 apps were carrying the malware – among them Chinese messaging app WeChat and China-based Uber competitor Didi Kuaidi – though other reports have suggested a far higher number.

Related

Apple responds

Responding to the issue in the Q&A, Apple said it’d removed infected apps that it’s aware of from its iOS App Store and is now blocking submissions of new apps that contain the malware.

“We’re working closely with developers to get impacted apps back on the App Store as quickly as possible for customers to enjoy,” the tech giant said, at the same time promising to release a list of the top 25 most popular apps impacted by the malware “so users can easily verify if they have downloaded the latest versions of these apps.”

The company confirmed it’ll be contacting customers who downloaded an app/apps that could have been compromised, adding, “Once a developer updates their app, that will fix the issue on the user’s device once they apply that update.”

Developers who created the malware-ridden software did so without realizing. Their mistake was to grab Xcode from a third-party site instead of from Apple’s own, as the version they downloaded had been altered to ensure apps created with the tool would incorporate the malicious software.

Some developers, mostly based in China, are known to head to third-party sites for the tool because they offer a faster download time. Apple is urging developers to stick with its own site for the tool, and is also promising to work on speeding up download times.

Security firm Palo Alto Networks (PAN) said the malware potentially impacts “hundreds of millions of users,” and described the malicious software as “a very harmful and dangerous malware that has bypassed Apple’s code review and made unprecedented attacks on the iOS ecosystem.”

Editors’ Recommendations

Topics
Trevor Mogg
Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Tim Cook wants you to know he’s confident in Apple’s AI future
Apple's September 2023 event Tim Cook

If you own an iPhone 16 series, you likely purchased it to be among the first to use Apple Intelligence. However, a month after the latest iPhones were released, this highly anticipated AI suite from the largest company in the world has not yet been released to the public. Tim Cook thinks the wait will be worth it.

In a long-ranging interview with The Wall Street Journal, the Apple CEO defends his company’s speed at which it is introducing AI into its products. He also sees a bright future for Apple Vision, even though the first product in a likely series of alternate reality devices, the very expensive Apple Vision Pro, has largely failed to catch on with most users.

Read more
Apple’s internal tests show Siri isn’t quite ready to beat ChatGPT
Apple Intelligence update on iPhone 15 Pro Max.

With the introduction of the new iPad Mini, Apple made it clear that a software experience brimming with AI is the way forward. And if that meant making the same kind of internal upgrades to a tablet that costs nearly half as much as its flagship phone, the company would still march forward.

However, its ambitions with Apple Intelligence lack competitive vigor, and even by Apple’s own standards, the experience hasn’t managed to wow users. On top of that, the staggered rollout of the most ambitious AI features — many of which are still in the future — has left enthusiasts with a bad impression.

Read more
iOS 18.1 brings two sorely needed email features to the iPhone
Setting primary email address after iOS 18.1 update.

With the introduction of iOS 18.1, Apple has made a crucial change that will make life easier for users eyeing an inbox address change for their account activities. Up till now, if you sought to change the primary email associated with your Apple account, the existing email address had to be deleted first.

Only after deleting the current email address were users able to add a new one for their Apple account. Following the iOS 18.1 update, users can simply change it without any erasure hassle.

Read more