View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
September 21, 2015

Apple’s Chinese App Store hit by malware attack

The company has removed the apps from the store.

By CBR Staff Writer

Apple is taking steps to remove malicious iPhone and iPad programmes found in the Chinese iOS App Store.

Various cyber-security companies identified a malicious programme, known as XcodeGhost, which enables hackers to gather data from devices.

The programme was found in several apps used by owners of iPhones and iPads in China including Tencent’s WeChat messaging and calling app.

Apple spokeswoman Christine Monaghan said in an email, "We’ve removed the apps from the App Store that we know have been created with this counterfeit software.

"We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps."

Tencent said that the security issue impacts an older version of the WeChat 6.2.5 app. The company said the latest versions were not affected.

US cyber security firm Palo Alto Networks said several users were affected by the infected apps.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

The company said: "We believe XcodeGhost is a very harmful and dangerous malware that has bypassed Apple’s code review and made unprecedented attacks on the iOS ecosystem."

Earlier this month, cyber-thieves stole login names and passwords for over 225,000 Apple accounts in China.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.