‘XcodeGhost’ Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Back in 2015, a malware-infected variation of Xcode started circulating in China, and malware-ridden “XcodeGhost” apps made their method into Apples App Store and past the App Store evaluation group.
There were more than 50 known infected iOS apps at the time, including significant apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially impacted. Its been a long period of time considering that the XcodeGhost attack, however Apples trial with Epic is emerging brand-new details.
Trial files highlighted by Motherboard show that a total of 128 million users downloaded apps with the XcodeGhost malware, including 18 million users in the United States.
XcodeGhost was among the most significant attacks against iPhone users to date due to the number of iPhone users that were affected. The 128 million affected users got malware from downloads of more than 2,500 impacted apps.
Based on emails shared in the trial, Apple worked to determine the impact of the attack and how to best inform those who downloaded contaminated apps. “Due to the a great deal of clients potentially affected, do we wish to send out an email to all of them?” Apples App Store vice president Matt Fischer asked.
Apple did eventually inform users that downloaded XcodeGhost apps, and also released a list of the top 25 most popular apps that were compromised. Apple eliminated all of the contaminated apps from the App Store, and provided info to developers to help them confirm Xcode going forward.
XcodeGhost was a prevalent attack, but it was ineffective or dangerous. At the time, Apple stated that it had no info to recommend that the malware was ever used for any destructive function nor that sensitive individual information was taken, however it did gather app bundle identifiers, network information, and device names and types.

Leave a Reply

Your email address will not be published. Required fields are marked *