Posted by: David Harley | September 23, 2015

XcodeGhost – more spookiness

[Update: also some interesting commentary (as ever)  from Graham Cluley: XcodeGhost continues to haunt users of the iOS App Store]

From Palo Alto:

Update: XcodeGhost Attacker Can Phish Passwords and Open URLs through Infected Apps

While John Leyden hypothesizes for The Register on why so many developers cut corners by using ‘dodgy code’:

 XcodeGhost attack tapped into dev distaste for Apple’s Gatekeeper – Slow, unwieldy downloads, $99 dev ID fee also contribute to App Store appocalypse

SANS NewsBites Vol. 17 Issue #74 includes some patchy commentary, but lots of links on this issue (among others). (NewsBites subscription signup here.)

David Harley

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.


%d bloggers like this: