After the news about the Keyraider Malware broke out a few weeks ago, another hacking news has alerted the iOS community. When before it was only jailbroken Apple devices that were affected, now legitimate apps that you may have downloaded from the App Store have been infected. So even if your iPhone, iPad, or iPod is not jailbroken, your device’s security may still have been breached.
The security threat is called XcodeGhost, which was able to bypass App Store security and now potentially affects hundreds of millions of Apple users. The App Store has a strict approval team, making it difficult from hackers from China to infiltrate it so they went for the middleman instead. The hackers inserted malicious code in a customized version of Xcode, a tool used by developers to package iOS apps, and made it available to developers in China. The unofficial Xcode was released from untrusted servers in China, and downloaded by unsuspecting developers.
The counterfeit Xcode was then used by developers to work on their apps, and more than 50 apps containing the XcodeGhost were accepted in the App Store. This includes the popular chat app WeChat, which has around 600 million users. These infected apps have been removed from the App Store since it was discovered by research company Palo Alto Networks.
The developers are currently rebuilding these apps using the official Xcode software, but while you wait until the malware has been removed, it is wise to uninstall them from your iPhone, iPad, or iPod right away.
air2 |
AmHexinForPad |
Angry Birds 2 |
baba |
BiaoQingBao |
CamCard |
CamScanner |
CamScanner Lite |
CamScanner Pro |
Card Safe |
China Unicom Mobile Office |
ChinaUnicom3.x |
CITIC Bank move card space |
CSMBP-AppStore |
CuteCUT |
DataMonitor |
Didi Chuxing |
Eyes Wide |
FlappyCircle |
Flush |
Freedom Battle |
golfsense |
golfsensehd |
guaji_gangtai en |
Guitar Master |
High German map |
Himalayan |
Hot stock market |
I called MT |
I called MT 2 |
IFlyTek input |
IHexin |
immtdchs |
InstaFollower |
installer |
iOBD2 |
iVMS-4500 |
Jane book |
jin |
Lazy weekend |
Lifesmart |
Mara Mara |
Marital bed |
Medicine to force |
Mercury |
Micro Channel |
Microblogging camera |
MobileTicket |
MoreLikers2 |
MSL070 |
MSL108 |
Musical.ly |
NetEase |
nice dev |
OPlayer |
OPlayer Lite |
PDFReader |
PDFReader Free |
Perfect365 |
Pocket billing |
PocketScanner |
Poor tour |
Quick asked the doctor |
Quick Save |
QYER |
Railway 12306 |
SaveSnap |
SegmentFault |
snapgrab copy |
Stocks open class |
SuperJewelsQuest2 |
Telephone attribution assistant |
The driver drops |
The Kitchen |
Three new board |
ting |
TinyDeal.com |
Wallpapers10000 |
Watercress reading |
WeLoop |
WhiteTile |
WinZip |
WinZip Sector |
WinZip Standard |
Source: http://bgr.com/2015/09/21/app-store-hack-iphone-malware-apps-list/