Once the malware was in the store, it was only a tap away for anyone with an iPhone.Īpple could have been alerted to the malware by physically testing the apps during the App Store's review process, according to Nikias Bassen, a mobile security researcher for Zimperium who was also part of the team of hackers responsible for jailbreaking past versions of iOS.īassen told Tech Insider that apps containing XcodeGhost would not necessarily look infected to Apple during a scan of their contents, since the malicious activity occurred only when the app was installed on an iPhone and was communicating with the hacker's servers.Ī warning could have been raised if Apple would have noticed multiple apps from different developers communicating with the same server, according to Bassen. But XcodeGhost didn't need that level of access if it could get into the App Store, which it was able to do by hiding itself within normal looking apps from trusted developers.
0 kommentar(er)
