‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected version of Xcode began distributing in China, and malware-ridden “XcodeGhost” apps made their way into Apples App Store and past the App Store evaluation group.
There were more than 50 recognized contaminated iOS apps at the time, including significant apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially impacted. Its been a long time because the XcodeGhost attack, but Apples trial with Epic is appearing brand-new details.
Trial documents highlighted by Motherboard show that a total of 128 million users downloaded apps with the XcodeGhost malware, consisting of 18 million users in the United States.
XcodeGhost was one of the biggest attacks against iPhone users to date due to the number of iPhone users that were affected. The 128 million impacted users got malware from downloads of more than 2,500 affected apps.
Based upon emails shared in the trial, Apple worked to identify the effect of the attack and how to finest notify those who downloaded contaminated apps. “Due to the large number of consumers potentially impacted, do we desire to send an e-mail to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did eventually inform users that downloaded XcodeGhost apps, and likewise released a list of the leading 25 most popular apps that were compromised. Apple removed all of the infected apps from the App Store, and offered info to developers to help them verify Xcode going forward.
XcodeGhost was an extensive attack, however it was ineffective or hazardous. At the time, Apple stated that it had no details to recommend that the malware was ever used for any destructive function nor that sensitive individual data was stolen, however it did collect app package identifiers, network information, and gadget names and types.