‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected version of Xcode started distributing in China, and malware-ridden “XcodeGhost” apps made their way into Apples App Store and past the App Store evaluation team.
There were more than 50 known infected iOS apps at the time, including major apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially affected. Its been a long period of time since the XcodeGhost attack, however Apples trial with Epic is appearing brand-new details.
Trial documents highlighted by Motherboard indicate that a total of 128 million users downloaded apps with the XcodeGhost malware, consisting of 18 million users in the United States.
XcodeGhost was among the most significant attacks against iPhone users to date due to the variety of iPhone users that were affected. The 128 million affected users got malware from downloads of more than 2,500 impacted apps.
Based on emails shared in the trial, Apple worked to determine the impact of the attack and how to finest inform those who downloaded infected apps. “Due to the big number of consumers possibly affected, do we want to send an email to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did ultimately notify users that downloaded XcodeGhost apps, and also published a list of the top 25 most popular apps that were jeopardized. Apple got rid of all of the infected apps from the App Store, and offered info to designers to assist them verify Xcode moving forward.
XcodeGhost was a widespread attack, however it was not effective or hazardous. At the time, Apple said that it had no info to recommend that the malware was ever used for any destructive function nor that delicate individual information was stolen, but it did collect app package identifiers, network details, and device names and types.