Search

Malicious iOS Apps: Apple Urges Developers to Validate Their Xcode Installation

Advertisement
Malicious iOS Apps: Apple Urges Developers to Validate Their Xcode Installation

Less than a week after Apple confirmed that about 40 apps in the iOS App Store are affected with malicious code, or malware, the Cupertino-giant is urging developers to validate their copy of Xcode, its suite of developer tools that is used to develop apps for iOS and OS X.

The company has sent a reminder to developers via email and a message posted on its website noting that they should only use Xcode downloaded from the Mac App Store or the company's official developer website.

The email comes days after several Chinese app developers including some associated with big brands such as WeChat, Didi Kuaidi, and CamCard, among others, were caught intentionally bypassing warnings from Apple's "Gatekeeper" software while installing a counterfeit version of Xcode. These developers, it is worth pointing out, didn't deliberately do this to make their products less secure, but instead, they did it because China's Great Firewall makes it slower to access and download files hosted on US servers. This is the reason many used Baidu, a file-sharing website - where a version of Xcode was hosted - to download a copy of the app developing program. As it turned out, the version of Xcode hosted on Baidu was compromised.

"We recently removed apps from the App Store that were built with a counterfeit version of Xcode which had the potential to cause harm to customers. You should always download Xcode directly from the Mac App Store, or from the Apple Developer website, and leave Gatekeeper enabled on all your systems to protect against tampered software," the company notedon its developer website.

(Also see: Apple Hack Exposes Flaws in Building Apps Behind 'Great Firewall')

Gatekeeper ships with OS X and with its default settings, it is designed to allow only those apps to run whose authenticity can be verified. Users have the option to disable Gatekeeper to let it run apps from any source, which is what developers would've needed to do to run the compromised version of Xcode. If the copy of Xcode they had downloaded from any other source was genuine, they wouldn't have needed to disable Gatekeeper at all.

"When you download Xcode from the Mac App Store, OS X automatically checks the code signature for Xcode and validates that it is code signed by Apple. When you download Xcode from the Apple Developer website, the code signature is also automatically checked and validated by default as long as you have not disabled Gatekeeper. Whether you downloaded Xcode from Apple or received Xcode from another source, such as a USB or Thunderbolt disk, or over a local network, you can easily verify the integrity of your copy of Xcode."

Of course, many third-party utilities on OS X continue to be unsigned, so it's possible that developers had disabled Gatekeeper to run those apps, and thus compromised copy of Xcode slipped under the radar.

For users who're affected, it is suggested that they change the password of their Apple ID. One should also not engage with a push dialog box asking for personal information. As noted by security firm before, it has been found that "XcodeGhost" may have been able to push dialog boxes to users' devices asking for personal information. Apple's VP of Marketing Phil Schiller, meanwhile, has assured that Apple doesn't know of any cases where these malicious apps transmitted user information, which is always comforting to know. The company has set up a page on its website to let users know about this hack, and offer answers to many of the questions they might have. Apple also plans to alert users who have downloaded the affected apps.

(Also see: Apple Plans Steps to Prevent Future App Store Attacks)

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

 
Show Full Article
Please wait...
Advertisement

Related Stories

Popular Mobile Brands
  1. Samsung Galaxy Buds 3 Pro's Amazon Prime Day 2025 Offer Revealed
  2. OnePlus Nord 5, OnePlus Nord CE 5 Launched in India at These Prices
  3. Samsung Galaxy Unpacked 2025 Event Today: How to Watch Livestream
  4. AI+ Pulse, AI+ Nova 5G With 50-Megapixel Rear Cameras Launched in India
  5. Apple Releases iOS 26 Beta 3 Update for iPhone With These New Features
  6. OnePlus Nord CE 5 Review
  7. Oppo Reno 14 Gets a New Variant With a Colour Changing Rear Panel
  8. Tecno Phantom Ultimate G Fold Tri-Fold Phone Design Leaked; May Launch Soon
  9. iQOO 13, iQOO Neo 10R and More Get Discounts During Prime Day 2025 Sale
  10. AI+ Nova 5G, Pulse Phones India Launch Today: How to Watch Live Event
  1. Samsung Galaxy Unpacked 2025 Event Today: Galaxy Z Fold 7, Z Flip 7 Launch Expected, How to Watch Livestream
  2. Vivo V60 Reportedly Listed on SIRIM and TUV Websites, Could Launch Soon
  3. Amazon Prime Day 2025 Sale: iQOO 13, iQOO Neo 10R, iQOO Z10x and More to Go on Sale at Discounted Prices
  4. Swiggy Instamart Teams Up With Jio for Instant Delivery of JioBharat V4 and JioPhone Prima 2
  5. Apple Maps in iOS 26 Beta Version Come With An Upgraded Search Feature: Report
  6. WhatsApp Rolls Out AI-Powered Chat Wallpaper Feature; Threaded Message Replies Spotted in Development
  7. Samsung Galaxy Watch 8 Series Could Launch With Gemini Voice Assistant
  8. Amazon Prime Day 2025 Sale: Samsung Galaxy Buds 3 Pro to Be Available at a Discounted Price
  9. Oppo Reno 14 Launched in New Finish With Temperature-Sensitive Colour Changing Rear Panel
  10. Microsoft Edge Can Now Load Websites Faster After Migration to WebUI 2.0, Says Company
Gadgets 360 is available in
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »