Slashdot Mirror

← Back to Stories (view on slashdot.org)

US Gov't Issues Alert About iOS "Masque Attack" Threat

Posted by timothy on from the that'll-teach-'em dept.

alphadogg writes Three days after security company FireEye warned of an iPhone/iPad threat dubbed "Masque Attack", the U.S. government has issued a warning of its own about this new risk by malicious third-party apps to Apple iOS devices. US-CERT warned: "This attack works by luring users to install an app from a source other than the iOS App Store or their organizations' provisioning system. In order for the attack to succeed, a user must install an untrusted app, such as one delivered through a phishing link." Revelations of Masque came on the heels of a related exploit (that also threatens Macs) called WireLurker.

98 comments

  1. Mosque attack?! by Anonymous Coward · · Score: -1

    Sounds good to me!

    1. Re:Mosque attack?! by Anonymous Coward · · Score: -1

      See?! See what happens with Republicans in control?!?

  2. I don't get it... by XaXXon · · Score: 4, Insightful

    Don't you have to jump through all sorts of hoops to even INTENTIONALLY install an app from an alternate source?

    Seems like it would be hard to do it unintentionally.

    1. Re:I don't get it... by Anonymous Coward · · Score: -1, Flamebait

      You Apple apologists are turning me into an iPhobe. Just man up and face the vulns.

    2. Re:I don't get it... by Russ1642 · · Score: 3, Insightful

      You can't stop viruses that are manually installed by ridiculously dumb users unless you have virus scanners, and even then it's hit and miss. I wouldn't even call it an exploit.

    3. Re:I don't get it... by Spy+Handler · · Score: 1

      Yeah my understanding was that you had to jailbreak your iphone first with Cydia or some such tool before you can buy apps from someplace other than Apple.

    4. Re:I don't get it... by XaXXon · · Score: 1

      cydia isn't a jailbreak tool - it's an alternate app store.

      Pangu is a jailbreak tool.

    5. Re:I don't get it... by Anonymous Coward · · Score: 5, Informative

      You have to get a link from someone, go somewhere that clearly isn't the apple store, download the app which the phone will warn you about, install the app which the phone will again warn you about and accept enterprise provisioning which the phone will warn you about yet again before the malware can do it's thing?

      This takes real work on the part of the user to do that they don't normally, or ever see. It's a problem that they let a developer overwrite other apps, but in terms of it being a vulnerability? Welcome to dumb users doing stupid shit they've been told not to do the last 30 damned years.

    6. Re:I don't get it... by NatasRevol · · Score: 1, Insightful

      They have to be smart enough to jailbreak, point to an alternative app store, and install a corrupted app.

      Or be dumb enough to hand it to a smart friend who can do this.

      --
      There are two types of people in the world: Those who crave closure
    7. Re:I don't get it... by milkmage · · Score: 0

      actually, they can put the binaries on any webpage. that's how betas are distributed.
      it's as easy a clicking a link and saying "yes" twice.

    8. Re:I don't get it... by Anonymous Coward · · Score: 1

      So basically they have to click a link and hit next a few times.

    9. Re:I don't get it... by Anonymous Coward · · Score: -1

      It's iOS, you've basically just described their demographic.

    10. Re:I don't get it... by ColdWetDog · · Score: 0

      But we don't have Steve Jobs to tell us that we're doing it wrong!

      All bets are off.

      --
      Faster! Faster! Faster would be better!
    11. Re:I don't get it... by tlambert · · Score: 4, Informative

      actually, they can put the binaries on any webpage. that's how betas are distributed.
      it's as easy a clicking a link and saying "yes" twice.

      No, you can't. They have to be one of:

      (A) signed by Apple (e.g. anything from the App store)
      (B) a developer signed binary running on a device enrolled under the developer's key as one of a limited number of devices
      (C) enterprise enrolled and signed with the enterprise key

      The exploit takes advantage of pirate App stores in china which require you to accept enterprise enrollment in their enterprise key, and then download binaries from their "App Store" after paying a reduced rate for them (they're pirated) that happen to have had malware installed into the app bundle prior to being signed by the enterprise key belonging to the store (and the store is not checking the apps it puts up for sale, because they are all purchased and then uploaded from jailbroken iPhones).

      So it takes a lot of work, and most of the people at risk from this are in China and basically stealing Apps.

    12. Re: I don't get it... by Anonymous Coward · · Score: 0

      What you described is exactly what other people have lambasted Windows and Android for...

      You install crap from a pirate or porn site...

    13. Re:I don't get it... by mjwx · · Score: 0

      You can't stop viruses that are manually installed by ridiculously dumb users unless you have virus scanners, and even then it's hit and miss. I wouldn't even call it an exploit.

      B-B-B-B-But Apple said I was protected and viruses dont happen to them.

      --
      Calling someone a "hater" only means you can not rationally rebut their argument.
    14. Re:I don't get it... by Anonymous Coward · · Score: 0

      Sure you can, by educating users. Of course the user has to want to learn, which excludes most Apple customers.

      "Create a computer any fool can use and only fools will want to use it."

    15. Re:I don't get it... by Anonymous Coward · · Score: 0

      It doesn't need to be jailbroken for this attack.

    16. Re:I don't get it... by Anonymous Coward · · Score: 0

      All of those hoops are removed if the app is signed by an Apple 'enterprise deployment' certificate. Someone anyone can get just by asking.

    17. Re:I don't get it... by Curmudgeon420 · · Score: 1

      Erm, a Walled Garden gathers no weeds.

    18. Re:I don't get it... by Rosyna · · Score: 2

      All of those hoops are removed if the app is signed by an Apple 'enterprise deployment' certificate. Someone anyone can get just by asking.

      No, those are all the hoops you have to go through to accept the "enterprise deployment" certificate profile the first time, then accept the app launching the first time. Also, the phone needs to be unlocked to accept any of these dialogs.

      But then Apple can just revoke the cert (which it did for WireLurker) and blacklist the malware on the Mac side (which it also did for WireLurker).

    19. Re: I don't get it... by Anonymous Coward · · Score: 0

      No, it's not because much of the shit you get from porn/pirate sites doesn't require any user interaction, and it would be the equivalent of having to join your windows machine to an enterprise domain before being able to run the installed app.

    20. Re:I don't get it... by R3d+M3rcury · · Score: 1

      This takes real work on the part of the user to do that they don't normally, or ever see.

      But, in return, when they jump through all these hoops, their iPhone will run 50% faster and they'll be able to make money just by surfing the web.

    21. Re: I don't get it... by Anonymous Coward · · Score: 0

      And yet the government still has to issue a public warning not to do it. Just how stoopid are people that own apple products? Nvm.

    22. Re:I don't get it... by manu0601 · · Score: 1

      How do you install an app from an untrusted source if the iOS device is not jailbroken?

    23. Re:I don't get it... by Anonymous Coward · · Score: 0

      So identical to the Android malware, except there's less of it because iPhones are less popular in China?

    24. Re:I don't get it... by Bogtha · · Score: 1

      They have to be smart enough to jailbreak, point to an alternative app store, and install a corrupted app.

      No, this is unnecessary. The malicious applications are signed as an enterprise application, so no jailbreaking is necessary. They are distributed using Apple's standard OTA distribution mechanism designed for enterprise applications and beta testing, so no alternative App Store is necessary.

      What happens is that the user goes to a malicious/compromised website, this redirects them to the application, and iOS prompts the user with something like:

      malicious-website.com would like to install "Gmail"

      Cancel | Install

      If I remember correctly, there's an additional prompt if it's the first time you've installed an application from that particular developer.

      You still have to be dumb to install an application when you are unexpectedly prompted to, but it's a lot simpler to do than you realise.

      --
      Bogtha Bogtha Bogtha
    25. Re: I don't get it... by Anonymous Coward · · Score: 1

      Considering 92% of the mobile malware is on Android products, how stupid are those users? Yeah, that is what I thought.

    26. Re:I don't get it... by Anonymous Coward · · Score: 0

      It is. With enough effort you can circumvent 'them' and get a virus... but at the point you have intentionally violated their security measures, it's no long 'them'... it's you.

    27. Re: I don't get it... by Anonymous Coward · · Score: 1

      Actually no. You can't install untrusted apps on iOS without hacking. Not something grandma has to worry about.

    28. Re:I don't get it... by anethema · · Score: 3, Insightful

      Let's also keep in mind that apple apps ONLY run in a sandbox, and this virus does not break out of it. The worst the app can do is be installed if you don't actually go into it and do stuff.

      The main danger is that the app could masquarade as a legit app like browser/banking etc and maybe trick you into using it.

      But the sheer number of steps needed to install it, then almost crazy foolishly using it afterwards, it isn't much of a threat.

      --


      It's easier to fight for one's principles than to live up to them.
    29. Re: I don't get it... by Anonymous Coward · · Score: 0

      You can't install untrusted apps on iOS without hacking. Not something grandma has to worry about.

      You brute! Why are you lying to my poor feeble old grandma?

      FireEye warned of the “Masque Attack” flaw in iOS 7 and iOS 8 that is on about 95 per cent of all iPhones and iPads, which means data-pilfering malicious apps can disguise themselves as legitimate programs.

      In an example of how an attack would work, FireEye sent a link to a test case user inviting them to download a new Flappy Bird update. When the person clicked the link, they unknowingly downloaded a hacked update to the legitimate app.

      FireEye said the bug affects all Apple mobile devices running iOS 7 or later, regardless of whether the device is jailbroken -- a user-initiated state that lets you install any app off the Internet. That means roughly 95 percent of all Apple mobile devices currently in use are vulnerable.

    30. Re:I don't get it... by Anonymous Coward · · Score: 0

      A flaw in iOS.

    31. Re: I don't get it... by ruir · · Score: 1

      Yes, you can for sure install untrusted apps on iOS without hacking. I can remember from the top of my head at least three ways. Phones in dev mode (not the problem here), Enterprise certs and beta software distributed through TestFlight.

    32. Re:I don't get it... by ruir · · Score: 1

      Yes, you can for sure install untrusted apps on iOS without hacking. I can remember from the top of my head at least three ways. Phones in dev mode (not the problem here), Enterprise certs and beta software distributed through TestFlight.

    33. Re:I don't get it... by Anonymous Coward · · Score: 0

      If they have to be manually installed, they're not even viruses. By definition.

      And how do they receive the links? Through spam.

      Idiots who respond to spam in any way piss me off. They deserve everything they get, from 'v14gr4' that's chalk with rat poison and blue paint over credit card fraud to trojans and other malware. Compassion is NOT in place here. To protect the rest of the world, buying anything from a spammed advert should be punished with taking away their net access and forbidding them to own, use, or come within 50 yards of any smart device or computer for the next five or ten years.

    34. Re:I don't get it... by Anonymous Coward · · Score: 0

      The same kind of popups are shown to the people who install malware to their Windows machines. And yet they just click next-next-next-ok, as the ad banner promised something cool, like free money or pictures of . No matter what your iGod, Steve the great lied to you, the Apple devices are just as vulnerable to stupid users as any device out there.

    35. Re: I don't get it... by phishybongwaters · · Score: 1

      How do you comment without actually reading the article?

    36. Re: I don't get it... by Anonymous Coward · · Score: 0

      Actually no. You can't install untrusted apps on iOS without hacking.

      Yes you can, it's called Enterprise capability.

      If you want to insist that this is 'not a big deal' and 'won't ever happen' then you're admitting that iPlatform is only useful for idiot consumer end-users and has no place in a serious business/enterprise environment.

      If, however, you hope to see Apple used for more than a status symbol worn by 15 year old girls, this IS a big deal and a serious security problem.

    37. Re:I don't get it... by jittles · · Score: 1

      Or you just need one malicious actor in charge of an enterprise deployment server. This is especially an issue if you have a BYOD policy and one bad apple that wants to steal peoples banking credentials. If I am used to installing apps from my corporation on my phone, anyone who has control of that deployment machine could potentially attack my device. That includes nefarious people who gain access to the deployment server over the internet.

    38. Re:I don't get it... by Aaden42 · · Score: 2

      You also have to enter your phone’s unlock code (assuming you set one) to install the provisioning profile.

      I’d have a *tiny* amount of concern if it was tap-tap-tap-pwn3d, but it’s not something anyone could realistically do accidentally. Do without realizing the impact of it yes, but not “tap the wrong thing and you’re dead”.

      At the point that you’re keying in your phone’s password (something you’d never do when installing a normal Apple app store app, unless your iTunes account & phone use the same password, in which case WTF???), you have to be pretty willfully ignorant OR dead set on installing some l33t p1r4t3 w4r3z to go though all those hoops. If the former, seriously, get a clue. If your das compüterbox is asking you to do something it’s never asked you to do before and you have no idea why, STOP and ask a grown up FFS! (If the latter, enjoy your malware. You earned it!)

      As much as I hate to admit it, this thing actually validates Apple’s original stance that users can’t handle side-loading intelligently. Before the enterprise provisioning program was created, this attack would have been impossible. The only way to run non-Apple signed code would have been with a developer profile which requires each individual phone UDID to be encoded in it with an Apple-imposed maximum of 100 devices. Enterprise provisioning profiles are pretty much exactly equivalent to Android side-loading.

      This is why we can’t have nice things...

    39. Re:I don't get it... by Aaden42 · · Score: 1

      But we don’t have Steve Jobs to tell us that we’re doing it wrong!

      He did tell you. He was against the Enterprise provisioning system from day one. I can only assume it was because it would make attacks like this possible. The other ways of running non-Apple signed code are all per-device limited (you need an Apple-signed profile with each device’s UDID in it, max of 100 devices). Enterprise provisioning allows running on unlimited devices without needing to know the UDID’s in advance.

    40. Re:I don't get it... by macs4all · · Score: 2

      You Apple apologists are turning me into an iPhobe. Just man up and face the vulns.

      No. The GP is right.

      This is NOT something that ANYONE can install accidently. You have to jump through some serious hoops to make it happen.

    41. Re:I don't get it... by macs4all · · Score: 1

      So basically they have to click a link and hit next a few times.

      No. You're thinking of Android.

    42. Re:I don't get it... by macs4all · · Score: 1

      The same kind of popups are shown to the people who install malware to their Windows machines. And yet they just click next-next-next-ok, as the ad banner promised something cool, like free money or pictures of . No matter what your iGod, Steve the great lied to you, the Apple devices are just as vulnerable to stupid users as any device out there.

      One question: Is there any reasonable security scheme that can defeat social engineering 100% of the time?

      I'm not trolling; I seriously want to know what Apple could have done to prevent this, and still allow for "corporate" apps.

    43. Re:I don't get it... by macs4all · · Score: 1

      B-B-B-B-But Apple said I was protected and viruses dont happen to them.

      Find me one instance where Apple said that.

      [Crickets]

    44. Re:I don't get it... by Anonymous Coward · · Score: 0

      As a reminder, and as demonstrated the other day in pwn2own,
      it is possible to break out of sandboxes:

      "one of the bugs executed a full Safari sandbox escape"

      http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Mobile-Pwn2Own-2014-The-day-one-recap/ba-p/6669592#.VG

    45. Re:I don't get it... by macs4all · · Score: 1

      All of those hoops are removed if the app is signed by an Apple 'enterprise deployment' certificate. Someone anyone can get just by asking.

      Bzzzt! Wrong!

      You have to be Registered as an "Enterprise" Developer; which is a different level from the regular $99/yr. iOS Dev. Registration.

      And since that means these Apps are "signed", it should be about 5 seconds before their Cert. was revoked by Apple.

    46. Re:I don't get it... by macs4all · · Score: 2

      Yes, you can for sure install untrusted apps on iOS without hacking. I can remember from the top of my head at least three ways. Phones in dev mode (not the problem here), Enterprise certs and beta software distributed through TestFlight.

      I believe that the limit on TestFlight is 100 phones, and those have to be added to a "List".

      Enterprise Certs are easily determinable and Revokable by Apple.

      The system is just about as secure as could reasonably be designed.

    47. Re:I don't get it... by Anonymous Coward · · Score: 0

      With Android you have to explicitly tell it to allow external applications, so no, you haven't a clue.

    48. Re:I don't get it... by Anonymous Coward · · Score: 0

      Well, there was this.

    49. Re:I don't get it... by angel'o'sphere · · Score: 1

      All the modes you mention count as hacking, as an ordinary user can not do that.
      Perhaps you forgot are not even aware what 'hacking' actually means.

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
    50. Re: I don't get it... by angel'o'sphere · · Score: 1

      Repeating the same post several times makes it not more true nor does it give credit to what your mind is remembering ...

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
    51. Re:I don't get it... by ruir · · Score: 0

      I am well aware what hacking means, what craking means, and what developers are, since I am one. I am also aware you are an idiot with true much free time on your hands. I only have doubts wether my time is well applied replying to you, which clearly is not.

    52. Re:I don't get it... by angel'o'sphere · · Score: 1

      If you are aware of the differences how can you claim a mere user does not need to 'hack' to get random software on an iOS device?

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
  3. iOS Users by The+Joe+Kewl · · Score: -1, Troll

    Is their user base so unaware of (gullible to) this possibility that it really warrants a Gov't warning?

    Oh wait...

    1. Re:iOS Users by ProzacPatient · · Score: 1, Insightful

      A large amount of malware on other platforms, mostly Windows, has been due to ignorant users willfully installing malware; bundled toolbars and adware that come with otherwise legit software are probably the best example.
      Granted there are zero-day exploits and sometimes exploits in third party software (*cough* adobe *cough*) but the stuff I mentioned a moment ago is most common vector for malware infection.

      Now Apple's platform is finally popular enough among average users that it is profitable for the less than honest to target it with such malware, and to make matters worse most Apple users are arguably overconfident in that they are absolutely convinced they are invincible from any kind of malware making them a prime target for such attacks at this point in time. A lot of Apple users, in my personal experience, never ask themselves why there is so much malware in other platforms but rather just repeat what they've been told; that iOS and OS X are immune to such threats.

    2. Re:iOS Users by grantspassalan · · Score: 1

      Users who steal software deserve to get their devices infected with every piece of malware in existence. A lot of software in the Apple Store is free and most of the rest of it is rather inexpensive. I don’t sympathize even a tiny little bit with anyone who tries desperately hard to get something for nothing and then gets royally ripped off. Anyone who goes to certain sections of a large city has a good chance of getting mugged. Anyone who goes to certain places on the Internet stands a good chance of getting their devices infected and possibly their bank account emptied. Anyone, whether they use OS X or iOS are in fact TOTALLY IMMUNE if they don’t go places on the Internet where they shouldn’t be in the first place. That goes for Windows users (mostly) also these days.

      --
      A sufficiently advanced simulation is indistinguishable from reality.
    3. Re:iOS Users by reikae · · Score: 1

      Remember that "places where they shouldn't be in the first place" includes sites that serve ads from 3rd party servers.

  4. tried a smart phone by Anonymous Coward · · Score: -1

    hated almost everything about it
    dont use it and will never buy one again

    1. Re:tried a smart phone by Anonymous Coward · · Score: -1

      Was it a Motorola A920? If so I can understand why that Symbian-based lump of junk put you off. The current crop aren't half bad.

    2. Re:tried a smart phone by ColdWetDog · · Score: 0

      Group hug!

      --
      Faster! Faster! Faster would be better!
    3. Re:tried a smart phone by sexconker · · Score: 0

      Whereas the Sybian-based ones will get you off.

    4. Re:tried a smart phone by Anonymous Coward · · Score: -1

      I had two Android phones that drove me nuts before I finally bought a Blu Win HD, which is a Windows phone. I love it. It doesn't have all of the lag, odd system resource use and various other annoying things that Android does. Unlike other smartphones, it works like an actual device.

      I break it down like this: If you want a smartphone that is a pocket computer, with all of the flexibility and headaches, get an Android phone. If you want a smartphone that is a device, with stability and consistency, get a Windows phone. If you just want something cheap to talk or text with, get a $20 dumbphone.

    5. Re:tried a smart phone by macs4all · · Score: 0

      hated almost everything about it dont use it and will never buy one again

      And this is relevant, how?

    6. Re:tried a smart phone by macs4all · · Score: 0

      Group hug!

      If we're talking about "getting off", shouldn't that be "Group Tug"?

  5. Why are we naming vulnerabilities now? by Anonymous Coward · · Score: 0

    This is almost as dumb as the Weather Channel naming winter storms.

  6. Retaliation by mikes.song · · Score: 0

    Apple, took a look at it's bottom line, and had to call the government on their BS. This is the retaliation.

    Install some others source with your own cert, and it can cause issues.

    Apple's issue, if there is one, would be shipping a device with working encryption.

  7. false flag? by Noah+Haders · · Score: 3, Interesting

    since when does the govt issue virus alerts? My best guess is that NSA is alarmed by uncrackable iphone encryption, so they're doing everything they can to scare people off their iphones and on to something more easy to control like droid or bby

    1. Re:false flag? by Guy+Harris · · Score: 3, Informative

      since when does the govt issue virus alerts?

      Since at least 2009,, possibly earlier.

    2. Re:false flag? by BitwiseX · · Score: 1

      Mr. Hader's probably just isn't used to Slashdot referring to CERT as "The gub-ment".

      http://it.slashdot.org/story/1...
      http://it.slashdot.org/story/1...
      http://books.slashdot.org/stor...

    3. Re:false flag? by bradgoodman · · Score: 1

      Mod Up. Exactly what I thought upon reading the OP.

  8. Blast from the past by piranha32 · · Score: 5, Funny

    Hi,
        This is an Albanian virus. As you know we are not so technical
        advanced as in the West. We therefore ask you to delete all your
        files on your harddisk manually and send this email to all your
        friends.

        Thanks for helping us,
        The Albanian Hackers

    When I saw it many years ago it looked like a good joke

    1. Re:Blast from the past by HyperQuantum · · Score: 1

      There is a bug in the e-mail. It should be 'We therefore ask you to send this email to all your friends and then delete all your files on your harddisk manually'.

      You still need some of those files on your harddisk in order to send an e-mail. Friends with less than average intelligence might not realize that.

      --
      I am not really here right now.
    2. Re:Blast from the past by Anonymous Coward · · Score: 0

      Hi,

      This is a C64 virus. Please press REC+PLAY and wait. Then send the casette to your best friend.

  9. In other words by Vadim+Makarov · · Score: 0

    security of a smartphone is not better than that of a PC. What a news.

    --
    17779 eligible voters in a district, 17779 'vote' as one. This is Russia.
    1. Re:In other words by mellon · · Score: 2

      Actually in the case of iOS it is substantially better. Application sandboxing makes it a lot harder to get pwned.

    2. Re:In other words by ColdWetDog · · Score: 1

      No so hard, as it turns out.

      --
      Faster! Faster! Faster would be better!
    3. Re:In other words by Anonymous Coward · · Score: 0

      Because sandboxing and VMing is unheard of in the PC world.

    4. Re:In other words by Anonymous Coward · · Score: 0

      More opinion than knowledge? Don't let that stop you. After all, this is Slashdot!
      PC's continually have un-patched vulnerabilities that are exploited without the end user's assistance by intentionally violating the security of the OS.
      For this virus to infect an iPhone you have to go through many deliberate steps, ignore several warnings, and assist in intentionally violating Apple's system that restricts individuals to using their App Store. In fact, you have to violate the End User Agreement and lie about belonging to the Enterprise you download the virus from. So it takes intentional technical expertise and a legal violation to catch the virus. Your PC like that?

      Also, there is no known example of anyone's data being violated. The virus they found did nothing. If code is added that actually does something, that will be easier to identify and may very well be thwarted at another level.

      How's that PC running? Slower than when it was new? Want to guess why? No, defrag isn't going to help.

    5. Re:In other words by Anonymous Coward · · Score: 0

      Sandboxing and VMing is the PC world is down inside of an operating system that has been shown to have ongoing vulnerabilities.

      iOS devices live completely within a Sandbox. They are in a fully contained ecosystem, (until you intentionally violate it).
      They don't have a safe sandbox inside of a vulnerable OS.

    6. Re:In other words by Anonymous Coward · · Score: 0

      Forget PC or smartphone, it's not the platform that is insecure in cases like this.
      It's the user, and they should stop blaming the platform for the users's stupidity.

  10. WOot fp by Anonymous Coward · · Score: -1

    [amazingkreskin.com] includes wh3re you in a head spiining has ground to a that should be

  11. This should be a feature by Anonymous Coward · · Score: 0

    "install an app from a source other than the iOS App Store"

  12. Too many Cooks by Anonymous Coward · · Score: -1

    W: Too many Cooks
    B: Too many Cooks
    M: Too many Cooks
    B: Too many Cooks
    W: Too many Cooks
    B: Too many Cooks
    M: Too many
    W: It takes a lot to make a stew
    M: When it comes to me and you
    W: And him and her and the baby, too
    B: Too many Cooks, it's true
    M: The saying goes, it'll spoil the broth
    W: Honey, I think that's not true
    M: Well, maybe too many Cooks will spoil the broth, but they'll fill our hearts with
    B: So much, so much lo-o-ove
    Too many Cooks

    1. Re:Too many Cooks by sexconker · · Score: 0

      Gwydion Lashlee-Walton approves.

  13. Damn! I tried to install this malware... by jnork · · Score: 2

    ...but it's written for iOS 7 and above. Won't run on my 3Gs.

    I feel so left out!

    --
    Cleverly disguised as a responsible adult.
  14. No. by tlambert · · Score: 3, Insightful

    So identical to the Android malware, except there's less of it because iPhones are less popular in China?

    No. Anyone who wants to can put up an Android app store, or sell an android app with malware in it for side-loading onto the Android phone. Android is *much* more vulnerable, depending on who you trust; trust the wrong person/company, and you're compromised.

    To get that enterprise provisioning on your iPhone, you have to give up all other enterprise provisioning and sign up as a device enrolled as an "employee" of that App store, and you do it knowing full well that you're doing it to get pirated apps at a cut rate or free pricetag because you are a criminal.

    1. Re:No. by Anonymous Coward · · Score: 0
      Just like in this instance with iOS then?

      In an example of how an attack would work, FireEye sent a link to a test case user inviting them to download a new Flappy Bird update. When the person clicked the link, they unknowingly downloaded a hacked update to the legitimate app.

      FireEye said the bug affects all Apple mobile devices running iOS 7 or later, regardless of whether the device is jailbroken -- a user-initiated state that lets you install any app off the Internet. That means roughly 95 percent of all Apple mobile devices currently in use are vulnerable.

    2. Re:No. by gl4ss · · Score: 1

      either the article is wrong or they're doing a jailbreak.
      and that would be interesting for would be jailbreakers.

      because basically, on ios you need to add the testers phones to a list before they can get the testing version. there's a limit on how many testers you can have.

      on android, all you need is the tester to switch a setting to allow him/her to install your .apk that is not from a trusted source. the tester doesn't even need a google account.

      on windows phone, you just need to jump off a cliff, upload it to the store and test as beta from there(after you add the microsoft account email addresses of the testers), or just jump off the cliff.

      now this makes early testing with a large group a pretty shitty endeavor on everything else than android, though ios/wp way has some access control if you're worried about leaking. but as you may have noticed only on android you're not putting the app through systems of another company. it's a kind of tradeoff.

      of course, as an user, the android way is the best way - unless you enjoy using computers where you don't have admin rights(but that have shitty browsers that run as root).

      --
      world was created 5 seconds before this post as it is.
    3. Re: No. by Anonymous Coward · · Score: 0

      How many people do you know to have had an Android virus/trojan?

    4. Re:No. by Anonymous Coward · · Score: 0

      either the article is wrong

      I see. So you're saying FireEye are holding it wrong?

    5. Re:No. by Anonymous Coward · · Score: 1

      either the article is wrong

      I see. So you're saying FireEye are holding it wrong?

      No, he's saying that the author of the article is either being deliberately misleading or is an idiot.

    6. Re:No. by Anonymous Coward · · Score: 1

      This isn't quite correct. You can do an Enterprise distribution using an Enterprise developer account and deploy out without jailbreaking the phone or adding the devices to a list or anything. However the Enterprise developer account is more expensive than an individual account (around $500 or so iirc), and Apple can revoke it if they find out it is being used to distribute a bad app. The window that it would be possible to exploit this should be fairly short I would think, measured in days not weeks.

      I develop iOS apps that are distributed to thousands of iPads across our enterprise so I know of what I speak.

  15. One valid reason for enterprise side loading... by tlambert · · Score: 2

    Users who steal software deserve to get their devices infected with every piece of malware in existence. A lot of software in the Apple Store is free and most of the rest of it is rather inexpensive. I don’t sympathize even a tiny little bit with anyone who tries desperately hard to get something for nothing and then gets royally ripped off.

    One valid reason for enterprise side loading is if the App is not offered through iTunes in your region. In many cases, it's not offered worldwide, due to all sorts of regulatory restrictions; this is the same as for music you get from iTunes, where the developer wants market segmentation, or the regulators (government, etc.) in a given area wants segmentation or control.

    In those cases, the only way to get the app for your region is to pirate it. For example, in China, as in Russia and the Ukraine, as well as other countries, there are regulations against having strong encryption which does not contain a government back door. In other places, they don't want you to be able to use a particular type of VPN to get around the government firewall which is content based, and media companies don't want you using VPNs to get around regional distribution schemes. As an example, RIAA and MPAA have been trying very hard to get VPNs to be declared illegal, or to declare their actual origin of the their customers, in Australia, the U.K., and elsewhere.

    So there are valid political free speech reasons you might want to do this, and there are commercial unavailability reasons you might want to do this. Both of these are internal grey or black market reasons, while being externally viewed as white or grey market, at worst.

    Not that that's not what's happening here with the prirate app stores in China that are using voluntary enterprise enrollment in order to install pirate copies of apps on peoples iPhones.

    1. Re:One valid reason for enterprise side loading... by ruir · · Score: 1

      Call the bulls by their names, RIAA and MPAA are no more than dummies of Disney, Sony and Paramount Studios to name a few, because it is not socially acceptable to antagonize your customers. Boycott the bastards. If it were for them, we would all burn in the stake.

  16. Stupid user exploit by Anonymous Coward · · Score: 0

    So I call these kinds of exploits stupid user exploits. They only occur because a user specifically has to jump through some obvious hoops to install this kind of
    malware. Its not like it seeks out your phone and installs it without a lot of dumb user help. If you don't install apps outside of the official app store you really have nothing to worry about. I know, there is still a lot of very dumb and cheap people out there who fall for such stuff. Just mention "free" and they will click yes to anything. Not reducing the significance of a exploit. But holes are prevalent in any OS and if as a user you purposely jump in the hole and drown. Who's fault is that?

  17. A total non article .. by lippydude · · Score: 1

    "In order for the attack to succeed, a user must install an untrusted app, such as one delivered through a phishing link."

    What is the point about this 'security alert'. If anyone installs an app from some malicious third-party site then of course they are going to get exploited. This is nothing more than social engineering, nothing to see here, moving on. What is this even doing as an article on slashdot?