Posted by: David Harley | September 23, 2015

XcodeGhost – more spookiness

[Update: also some interesting commentary (as ever)  from Graham Cluley: XcodeGhost continues to haunt users of the iOS App Store]

From Palo Alto:

Update: XcodeGhost Attacker Can Phish Passwords and Open URLs through Infected Apps

While John Leyden hypothesizes for The Register on why so many developers cut corners by using ‘dodgy code’:

 XcodeGhost attack tapped into dev distaste for Apple’s Gatekeeper – Slow, unwieldy downloads, $99 dev ID fee also contribute to App Store appocalypse

SANS NewsBites Vol. 17 Issue #74 includes some patchy commentary, but lots of links on this issue (among others). (NewsBites subscription signup here.)

David Harley

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Categories

%d bloggers like this: