‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected variation of Xcode started flowing in China, and malware-ridden “XcodeGhost” apps made their method into Apples App Store and past the App Store review group.
There were more than 50 known infected iOS apps at the time, consisting of major apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users possibly affected. Its been a long period of time given that the XcodeGhost attack, but Apples trial with Epic is appearing brand-new details.
Trial documents highlighted by Motherboard suggest that an overall of 128 million users downloaded apps with the XcodeGhost malware, consisting of 18 million users in the United States.
XcodeGhost was one of the greatest attacks versus iPhone users to date due to the number of iPhone users that were impacted. The 128 million affected users got malware from downloads of more than 2,500 affected apps.
Based upon e-mails shared in the trial, Apple worked to figure out the impact of the attack and how to best inform those who downloaded contaminated apps. “Due to the large number of customers potentially affected, do we desire to send out an e-mail to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did eventually notify users that downloaded XcodeGhost apps, and also published a list of the leading 25 most popular apps that were compromised. Apple removed all of the infected apps from the App Store, and offered details to developers to assist them validate Xcode going forward.
XcodeGhost was a prevalent attack, but it was ineffective or dangerous. At the time, Apple stated that it had no details to suggest that the malware was ever utilized for any destructive function nor that delicate individual information was stolen, but it did collect app bundle identifiers, network information, and device names and types.

Leave a Reply

Your email address will not be published. Required fields are marked *