Slashdot Mirror

← Back to Stories (view on slashdot.org)

First iOS Malware Discovered In Apple's App Store

Posted by timothy on from the still-a-pretty-good-track-record dept.

New submitter DavidGilbert99 writes "Security experts have discovered what is claimed to be the first ever piece of malware to be found in the Apple App Store. While Android is well known for malware, Apple has prided itself on being free from malicious apps ... until now. The app steals your contact data and uploads it to a remote server before sending spam SMS messages to all your contacts, but the messages look like they are coming from you."

4 of 171 comments (clear)

  1. App is/was also available for Android by Anonymous Coward · · Score: 5, Informative

    So they targeted both groups.

  2. Re:First *malware* perhaps by jittles · · Score: 4, Informative

    I don't believe this is the first instance of iOS malware at all. Its the first time they have found it. And they only found it because the app author was stupid. There are probably tons of iOS apps that steal all of your contact info, you just have no way of knowing about it. I am pretty sure such apps have been acknowledged by apple in the past, and subsequently removed from the app store.

  3. Not surprising... by Anonymous Coward · · Score: 5, Informative

    One of my beefs about iOS is that even though it will ask the user if an app attempts to use the GPS or notification, there are plenty of juicy things that can be obtained and copied elsewhere. Photos are protected against being deleted, but they can be slurped up and copied off without the user knowing. Same with contacts and music.

    I'm surprised this was caught. If a person jailbreaks their device and runs PMP (Protect My Privacy) and Firewall IP, they will see a lot of apps digging in places where they shouldn't be, and sending lots of data to sites that have zero relevance to the task at hand. One major news app connects to so many sites without DNS (just via IP addresses) that I ended up just blacklisting all but the few sites it gets news info.

    I would say where the rubber meets the road, iOS has been more secure, because Apple guards the gateway and does it well. However, if anything malicious does make it past, it can have a field day.

  4. Re:First *malware* perhaps by GameboyRMH · · Score: 5, Informative

    Addendum: Looks like I'm right:

    http://apple.slashdot.org/comments.pl?sid=2959773&cid=40554831

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel