• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Trojan Horse Discovered Inside iOS App Store


    If you have downloaded the 'Find and Call' application from the iOS App Store recently, a trojan horse has probably, and likely, affected you. The news comes from a Kaspersky blog post and the application was also available in the Google Play store and affected Android devices in the same way. Kaspersky claims to have alerted both Apple and Google about the issue.

    Find and Call, after being installed on oneís iPhone, would basically upload your contact book information to a third party server, where the server could then send messages to each and every one of your contacts telling them to download the Find and Call application from the iOS App Store with a link to download it. Additionally, the application would pretend that you were the one sending the message by causing the caller ID on your friendís phone to display as if you sent the message to them.

    Because the caller ID on your friendís phone would show that you sent the message instead of an automated service, your friend would have a higher chance of downloading the application and being infected by it since they would probably trust you if you had recommended an application to them. After installing the application, your friendís contact list would also be uploaded to the third party server, causing a vicious cycle of issues.

    While itís known that the contact information was used to try to get more people to download the infection, itís not known what else the contact information uploaded to the third party server was being used for.

    As we know, iOS 6 will be adding a feature to the mobile operating system that tightens security on applications by allowing the user to choose whether or not an application can have access to your personal data by prompting you every time it tries to access it. Hopefully outbreaks such as this one, involving 'Find and Call,' can be controlled by this new feature and we wonít see this same issue happen in the iOS App Store again.

    Sources: Kaspersky Blog via MacWorld
    This article was originally published in forum thread: Trojan Horse Discovered Inside iOS App Store started by Anthony Bouchard View original post
    Comments 26 Comments
    1. i.Annie's Avatar
      i.Annie -
      Well, luckily I didn't download that. I don't download things that aren't in English usually...since I don't know what it's saying so I wouldn't know what the app is for...
    1. Anthony Bouchard's Avatar
      Anthony Bouchard -
      Quote Originally Posted by i.Annie View Post
      Well, luckily I didn't download that. I don't download things that aren't in English usually...since I don't know what it's saying so I wouldn't know what the app is for...
      I guess it would again raise the question as to whether or not Apple is actually checking to see what applications are getting submitted into the App Store.
    1. i.Annie's Avatar
      i.Annie -
      Apple doesn't check until it's too late haha, but the good thing is Apple pulls it immediately. Like the tethering apps that have slipped into the App Store a couple times already.
    1. Anthony Bouchard's Avatar
      Anthony Bouchard -
      Quote Originally Posted by i.Annie View Post
      Apple doesn't check until it's too late haha, but the good thing is Apple pulls it immediately. Like the tethering apps that have slipped into the App Store a couple times already.
      I wouldn't mind if the tethering apps stayed
    1. Mrteacup's Avatar
      Mrteacup -
      Quote Originally Posted by Anthony Bouchard View Post
      I guess it would again raise the question as to whether or not Apple is actually checking to see what applications are getting submitted into the App Store.
      they really dont... they only check for things that are highlighted in media (not saying anythings wrong with highlighting) but otherwise they just ignore haha
    1. i.Annie's Avatar
      i.Annie -
      Quote Originally Posted by Anthony Bouchard View Post
      I wouldn't mind if the tethering apps stayed
      I wouldn't either lol. Sometimes I would like to try my phone unjailbroken, but tethering is a must and I don't want to pay extra to Verizon.
    1. LittleJob's Avatar
      LittleJob -
      a Trojan horse is usually "malicious code" that usually steals some kind of information, or records settings/ tracks ect.
      this just sends people texts to buy an app...
      yes its a pain in the ***, and yes its not right...but not very harmful...
    1. Anthony Bouchard's Avatar
      Anthony Bouchard -
      Quote Originally Posted by LittleJob View Post
      a Trojan horse is usually "malicious code" that usually steals some kind of information, or records settings/ tracks ect.
      this just sends people texts to buy an app...
      yes its a pain in the ***, and yes its not right...but not very harmful...
      It is stealing your contact information, recording it to their server, and then sending messages with your name all over it, all without your permission.
    1. jonathan1683's Avatar
      jonathan1683 -
      Quote Originally Posted by LittleJob View Post
      a Trojan horse is usually "malicious code" that usually steals some kind of information, or records settings/ tracks ect.
      this just sends people texts to buy an app...
      yes its a pain in the ***, and yes its not right...but not very harmful...

      Did you not read? It steals the contact info and uploads it to their servers.
    1. steve-z17's Avatar
      steve-z17 -
      So this isn't JUST an iOS App Store problem, it's also in the Android store....The title of the article makes it sound like it's just an Apple issue. Oh well! I'm not sure why anyone would DL this app lol, it's looks very suspicious as is with no English.
    1. Parana6's Avatar
      Parana6 -
      Why they don't go after the guy who submitted it and prosecute him.
    1. mmaboi21's Avatar
      mmaboi21 -
      Just downloaded! Thanks for the info, great app!
    1. i.Annie's Avatar
      i.Annie -
      Quote Originally Posted by mmaboi21 View Post
      Just downloaded! Thanks for the info, great app!
      This confused me for a second lol.
    1. celeron's Avatar
      celeron -
      Quote Originally Posted by mmaboi21 View Post
      Just downloaded! Thanks for the info, great app!
      Lmao
    1. luvmytj's Avatar
      luvmytj -
      Who else besides russian & curious people would download this when it's in Russian language? By the way, it appears to be gone from the US app store.
    1. ChicagoV's Avatar
      ChicagoV -
      Sounds like it's almost basically "finding and calling"... heh.

      Fortunately, I haven't seen this pop up around my way, meaning none of my contacts (or theirs) have fallen for it.
    1. PoEtikly's Avatar
      PoEtikly -
      Quote Originally Posted by steve-z17 View Post
      So this isn't JUST an iOS App Store problem, it's also in the Android store....The title of the article makes it sound like it's just an Apple issue. Oh well! I'm not sure why anyone would DL this app lol, it's looks very suspicious as is with no English.
      That's because this site issues news about everything Apple (for the most part), so of course the headline is going to read that, but if you read the article it clearly states that Android has also been effected.
    1. H4CK3R's Avatar
      H4CK3R -
      Pay $99 for this to happen.... Interesting....

      Wow, just wow.
    1. Mrteacup's Avatar
      Mrteacup -
      Quote Originally Posted by steve-z17 View Post
      So this isn't JUST an iOS App Store problem, it's also in the Android store....The title of the article makes it sound like it's just an Apple issue. Oh well! I'm not sure why anyone would DL this app lol, it's looks very suspicious as is with no English.
      Because its rare to be in the apple AppStore. Android is open source there are lots of viruses on it
    1. radioBirdman's Avatar
      radioBirdman -
      Quote Originally Posted by H4CK3R View Post
      Pay $99 for this to happen.... Interesting....

      Wow, just wow.
      Hang on what? This was a $99 app? What was it actually supposed to do for the $99?