‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected variation of Xcode started circulating in China, and malware-ridden “XcodeGhost” apps made their method into Apples App Store and past the App Store evaluation team.
There were more than 50 known contaminated iOS apps at the time, consisting of significant apps like WeChat, NetEase, and Didi Taxi, with as much as 500 million iOS users possibly impacted. Its been a long period of time given that the XcodeGhost attack, but Apples trial with Epic is surfacing new information.
Trial documents highlighted by Motherboard indicate that an overall of 128 million users downloaded apps with the XcodeGhost malware, including 18 million users in the United States.
XcodeGhost was one of the biggest attacks against iPhone users to date due to the number of iPhone users that were impacted. The 128 million affected users got malware from downloads of more than 2,500 impacted apps.
Based on emails shared in the trial, Apple worked to identify the effect of the attack and how to finest alert those who downloaded infected apps. “Due to the a great deal of clients possibly affected, do we want to send an e-mail to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did eventually inform users that downloaded XcodeGhost apps, and likewise published a list of the leading 25 most popular apps that were compromised. Apple eliminated all of the contaminated apps from the App Store, and offered info to designers to help them verify Xcode moving forward.
XcodeGhost was a widespread attack, however it was hazardous or not reliable. At the time, Apple stated that it had no info to suggest that the malware was ever utilized for any malicious function nor that delicate personal data was taken, however it did gather app bundle identifiers, network information, and device names and types.