‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected version of Xcode started flowing in China, and malware-ridden “XcodeGhost” apps made their method into Apples App Store and past the App Store review group.
There were more than 50 recognized infected iOS apps at the time, consisting of major apps like WeChat, NetEase, and Didi Taxi, with as much as 500 million iOS users potentially affected. Its been a long period of time because the XcodeGhost attack, but Apples trial with Epic is appearing new information.
Trial documents highlighted by Motherboard show that a total of 128 million users downloaded apps with the XcodeGhost malware, including 18 million users in the United States.
XcodeGhost was among the most significant attacks versus iPhone users to date due to the number of iPhone users that were affected. The 128 million impacted users got malware from downloads of more than 2,500 impacted apps.
Based on emails shared in the trial, Apple worked to identify the impact of the attack and how to finest notify those who downloaded contaminated apps. “Due to the large number of clients possibly impacted, do we want to send an email to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did eventually inform users that downloaded XcodeGhost apps, and likewise released a list of the top 25 most popular apps that were compromised. Apple removed all of the contaminated apps from the App Store, and offered info to developers to help them validate Xcode moving forward.
XcodeGhost was an extensive attack, but it was not efficient or hazardous. At the time, Apple stated that it had no info to suggest that the malware was ever used for any malicious function nor that delicate personal data was stolen, but it did collect app bundle identifiers, network details, and device names and types.

Leave a Reply

Your email address will not be published. Required fields are marked *