Skip to main content
  1. Home
  2. Mobile
  3. News

Apple to alert affected users about major iOS security breach

Trevor Mogg
By

App Store
arisara / Shutterstock.com
While Apple says it so far has no evidence suggesting that malware-infected apps discovered recently in its iOS store have stolen personal data or caused any other issues for users, it’ll nevertheless be contacting anyone who’s downloaded one or more of the infected apps with advice on what steps to take.

A Q&A posted by the Cupertino company on Tuesday aimed to ease the concerns of iPhone and iPad users who fear they may be using infected apps built with a modified version of Xcode, Apple’s app-building tool. The incident, which first hit the headlines over the weekend, is believed to be the most serious security breach in the App Store’s seven-year history.

Recommended Videos

Initial reports suggested around 40 apps were carrying the malware – among them Chinese messaging app WeChat and China-based Uber competitor Didi Kuaidi – though other reports have suggested a far higher number.

Related

Apple responds

Responding to the issue in the Q&A, Apple said it’d removed infected apps that it’s aware of from its iOS App Store and is now blocking submissions of new apps that contain the malware.

“We’re working closely with developers to get impacted apps back on the App Store as quickly as possible for customers to enjoy,” the tech giant said, at the same time promising to release a list of the top 25 most popular apps impacted by the malware “so users can easily verify if they have downloaded the latest versions of these apps.”

The company confirmed it’ll be contacting customers who downloaded an app/apps that could have been compromised, adding, “Once a developer updates their app, that will fix the issue on the user’s device once they apply that update.”

Developers who created the malware-ridden software did so without realizing. Their mistake was to grab Xcode from a third-party site instead of from Apple’s own, as the version they downloaded had been altered to ensure apps created with the tool would incorporate the malicious software.

Some developers, mostly based in China, are known to head to third-party sites for the tool because they offer a faster download time. Apple is urging developers to stick with its own site for the tool, and is also promising to work on speeding up download times.

Security firm Palo Alto Networks (PAN) said the malware potentially impacts “hundreds of millions of users,” and described the malicious software as “a very harmful and dangerous malware that has bypassed Apple’s code review and made unprecedented attacks on the iOS ecosystem.”

Editors' Recommendations

Topics
Trevor Mogg
Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
10 reasons you should buy an iPhone in 2024
Purple iPhone 14 (left) and a green iPhone 15 in hand.

The iPhone 15 lineup — which includes the standard iPhone 15 and the iPhone 15 Pro — is the iPhone at its best. It's the latest series of iPhones available today and the default choice if you're buying a new iPhone in 2024.

But it’s not the only choice of iPhones you can purchase. In fact, Apple still sells the iPhone 14, iPhone 13, and the iPhone SE on its website. You could also find other iPhone models available – refurbished or new — from other retailers or carrier stores.

Read more
We now know when Apple is adding RCS to the iPhone
The iPhone 14 Plus held in a man's hand.

Last November, Apple made a surprise announcement when it confirmed that RCS was coming to the iPhone in 2024. It's something iPhone and Android phone users alike have been waiting years for, but there was just one small problem: Apple never said when in 2024 RCS was coming. Thanks to Google, of all companies, we now have a better idea of when RCS is heading to the iPhone.

As spotted by 9to5Google, the Android website was recently updated with a new page dedicated to Google Messages. If you click on the "See more features" button for the section talking about RCS, there's a section titled "Better messaging for all" with the following text: "Apple has announced it will be adopting RCS in the fall of 2024. Once that happens, it will mean a better messaging experience for everyone."

Read more
iOS 18 could make my iPhone look like Android, and I hate it
The Apple iPhone 15 Pro Max and the Samsung Galaxy S23 Ultra's rear panels.

If rumors are to be believed, iOS 18 will allow you to customize the home screen on your iPhone more substantially than ever before. This feature will be familiar to Android phone owners, but I don’t want my iPhone to look like an Android phone.

It’s a weird double-edged sword, as by giving you more freedom to make the home screen look unique, iOS may also lose what makes it unique compared to the less constrained world of Android.
iOS 18 and your iPhone home screen

Read more