App Store Hack: WeChat and Other Apps Infected with Malware

After the news about the Keyraider Malware broke out a few weeks ago, another hacking news has alerted the iOS community. When before it was only jailbroken Apple devices that were affected, now legitimate apps that you may have downloaded from the App Store have been infected. So even if your iPhone, iPad, or iPod is not jailbroken, your device’s security may still have been breached.

The security threat is called XcodeGhost, which was able to bypass App Store security and now potentially affects hundreds of millions of Apple users. The App Store has a strict approval team, making it difficult from hackers from China to infiltrate it so they went for the middleman instead. The hackers inserted malicious code in a customized version of Xcode, a tool used by developers to package iOS apps, and made it available to developers in China. The unofficial Xcode was released from untrusted servers in China, and downloaded by unsuspecting developers.

The counterfeit Xcode was then used by developers to work on their apps, and more than 50 apps containing the XcodeGhost were accepted in the App Store. This includes the popular chat app WeChat, which has around 600 million users. These infected apps have been removed from the App Store since it was discovered by research company Palo Alto Networks.

The developers are currently rebuilding these apps using the official Xcode software, but while you wait until the malware has been removed, it is wise to uninstall them from your iPhone, iPad, or iPod right away.

air2
AmHexinForPad
Angry Birds 2
baba
BiaoQingBao
CamCard
CamScanner
CamScanner Lite
CamScanner Pro
Card Safe
China Unicom Mobile Office
ChinaUnicom3.x
CITIC Bank move card space
CSMBP-AppStore
CuteCUT
DataMonitor
Didi Chuxing
Eyes Wide
FlappyCircle
Flush
Freedom Battle
golfsense
golfsensehd
guaji_gangtai en
Guitar Master
High German map
Himalayan
Hot stock market
I called MT
I called MT 2
IFlyTek input
IHexin
immtdchs
InstaFollower
installer
iOBD2
iVMS-4500
Jane book
jin
Lazy weekend
Lifesmart
Mara Mara
Marital bed
Medicine to force
Mercury
Micro Channel
Microblogging camera
MobileTicket
MoreLikers2
MSL070
MSL108
Musical.ly
NetEase
nice dev
OPlayer
OPlayer Lite
PDFReader
PDFReader Free
Perfect365
Pocket billing
PocketScanner
Poor tour
Quick asked the doctor
Quick Save
QYER
Railway 12306
SaveSnap
SegmentFault
snapgrab copy
Stocks open class
SuperJewelsQuest2
Telephone attribution assistant
The driver drops
The Kitchen
Three new board
ting
TinyDeal.com
Wallpapers10000
Watercress reading
WeChat
WeLoop
WhiteTile
WinZip
WinZip Sector
WinZip Standard

Source: http://bgr.com/2015/09/21/app-store-hack-iphone-malware-apps-list/