‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected variation of Xcode started flowing in China, and malware-ridden “XcodeGhost” apps made their way into Apples App Store and past the App Store review team.
There were more than 50 known contaminated iOS apps at the time, consisting of major apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially impacted. Its been a very long time since the XcodeGhost attack, however Apples trial with Epic is appearing brand-new information.
Trial files highlighted by Motherboard show that a total of 128 million users downloaded apps with the XcodeGhost malware, including 18 million users in the United States.
XcodeGhost was one of the biggest attacks versus iPhone users to date due to the variety of iPhone users that were impacted. The 128 million impacted users got malware from downloads of more than 2,500 impacted apps.
Based upon emails shared in the trial, Apple worked to identify the effect of the attack and how to finest inform those who downloaded infected apps. “Due to the a great deal of clients possibly impacted, do we wish to send an email to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did ultimately notify users that downloaded XcodeGhost apps, and likewise published a list of the leading 25 most popular apps that were compromised. Apple removed all of the contaminated apps from the App Store, and provided information to developers to assist them validate Xcode moving forward.
XcodeGhost was an extensive attack, but it was not efficient or harmful. At the time, Apple said that it had no info to recommend that the malware was ever used for any malicious purpose nor that sensitive individual information was stolen, but it did gather app package identifiers, network details, and device names and types.