+ Reply
Results 1 to 12 of 12

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Potential Malware Makes it Through App Store Review Process

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
...
  1. #1
    MMi Staff Writer Michael Essany's Avatar
    Join Date
    Aug 2009
    Location
    Valparaiso, Indiana
    Posts
    3,418
    Thanks
    17
    Thanked 1,471 Times in 558 Posts

    Default Potential Malware Makes it Through App Store Review Process


    Should we start with the good news or the bad news? Let's start with the good.

    This week, an iOS app available in Apple's App Store was found to contain an embedded Trojan horse. Auspiciously, the app isn't nefarious and no immediate danger is presented.

    The bad news, however, is that this potential malware threat - regardless of how innocuous it may be - found its way past Apple's review process and managed to land inside of what some believe to be a secure fortress from malware.

    "The app Simply Find It, a $2 game from Simply Game, seems harmless enough. But if you run Bitdefender Virus Scanner—a free app in the Mac App Store—it will warn you about the presence of a Trojan horse within the app," says Lex Friedman of MacWorld. "A reader tipped Macworld off to the presence of the malware, and we confirmed it."

    Although Android has been proven to be a cesspool of malware, iOS territory is still considered to be a largely malware-free environment. This latest incident, of course, could suggest that the App Store isn't as immune to these threats as previously thought.

    Security expert Rich Mogull tells Friedman that the app causing all of this trouble in the first place is "certainly harmless."

    “If Apple tested the app by running it in a sandbox and watching the app’s activities, that would be more effective than scanning MP3s for malware strings,” Mogull explains. But it remains unclear how Apple actually tests apps. “Thus,” Mogull concludes, “we don’t know for sure if [any Apple malware-scanning] process worked or not. A malware link that never runs isn’t a threat, and there are very legitimate ways of testing that won’t find something like this if it isn’t a valid exploit.”

    Source: MacWorld

  2. #2
    iPhone? More like MyPhone
    Join Date
    Aug 2007
    Posts
    146
    Thanks
    0
    Thanked 21 Times in 12 Posts

    If I had to make a guess? the developer themselves were infected with a trojan and when they compiled this app, the trojan probably attached to the app before it was submitted to apple for review.. keep in mind that both mac and pc use intel or intel compatable processors so this is probably an intel based trojan which couldn't run on an ARM based ios device .. that renders the trojan as nothing more than a harmless string of characters in the binary.

    What this does show is that apparently apple doesn't do any kind of heuristic scanning, or general scanning for know malware.. though unless the malware can run in an ARM environment, it would be useless anyway for the reason I mentioned above..
    Last edited by oneduality; 05-03-2013 at 12:22 PM.

  3. #3
    Green Apple
    Join Date
    Jan 2013
    Posts
    93
    Thanks
    22
    Thanked 12 Times in 10 Posts

    Apple try hard but to keep these things out but the odd one slipping through should be expected! I'm just thankful apple do try where as google seem to allow any app to be posted!

  4. #4
    Go Wings Zokunei's Avatar
    Join Date
    Jun 2010
    Location
    Michigan
    Posts
    6,277
    Thanks
    106
    Thanked 453 Times in 366 Posts

    Quote Originally Posted by Michael Essany View Post
    Android has been proven to be a cesspool of malware
    Not really.

  5. #5
    Super Sweet Moderator thetoothfairy's Avatar
    Join Date
    Aug 2007
    Location
    In Michigan And Florida
    Posts
    6,507
    Thanks
    3,588
    Thanked 997 Times in 561 Posts

    Looks like Apple needs to be careful.

    "Always remember your special and unique!"

  6. #6
    iPhone? More like MyPhone
    Join Date
    Nov 2010
    Location
    NY
    Posts
    275
    Thanks
    0
    Thanked 14 Times in 13 Posts

    "iOS territory is still considered to be a largely malware-free environment"

    Most hilarious sentence I've read all week, LOL!

    There are endless "legitimate" App store apps that steal your; Device ID (UDID), Address book content, Call history, SMS/MMS content, Location (current/historical), Music/Video collection list, Play lists, post to social networks without your permission. I can keep going. They also don't just phone home with your info either but send it to 3rd parties as well. All of this is the definition of MALWARE! So excuse me if I whole heartily disagree with the statement above. Oh, and BUY (don't pirate) FIREWALL-IP and be prepared to have mind blown!!

  7. #7
    iPhone? More like MyPhone 5kylar's Avatar
    Join Date
    Mar 2013
    Location
    Ontario
    Posts
    227
    Thanks
    17
    Thanked 27 Times in 21 Posts

    So everyone is going crazy over this trojan app because it CAN'T infect your phone? lol

  8. #8
    Starbucks Artist mmaboi21's Avatar
    Join Date
    Jan 2011
    Location
    Bakersfield CA.
    Posts
    2,389
    Thanks
    158
    Thanked 207 Times in 160 Posts

    Quote Originally Posted by 5kylar View Post
    So everyone is going crazy over this trojan app because it CAN'T infect your phone? lol
    Yep

  9. #9
    Livin the iPhone Life steve-z17's Avatar
    Join Date
    Sep 2007
    Location
    Utah
    Posts
    2,194
    Thanks
    91
    Thanked 141 Times in 121 Posts

    I wouldn't go as far to say that Android is a cesspool of malware, but it is more susceptible to it seeing as it's open source. One app out of probably hundreds or thousands that get processed every day...not a big deal!

  10. #10
    iPhone? More like MyPhone BhadKarma's Avatar
    Join Date
    Nov 2011
    Posts
    250
    Thanks
    25
    Thanked 27 Times in 16 Posts

    Double lol

  11. #11
    My iPhone is a Part of Me vinaygoel2000's Avatar
    Join Date
    Mar 2009
    Location
    Tampa, FL
    Posts
    747
    Thanks
    396
    Thanked 76 Times in 61 Posts

    Quote Originally Posted by 5kylar View Post
    So everyone is going crazy over this trojan app because it CAN'T infect your phone? lol
    No. Read the title of the post.

  12. #12
    My iPhone is a Part of Me
    Join Date
    Jan 2009
    Posts
    695
    Thanks
    32
    Thanked 61 Times in 44 Posts

    "that would be more effective than scanning MP3s for malware strings"

    LOLWUT?! I recall an MP3 buffer overflow exploit in Windows where the mouse-over pop-up tooltip text would trigger a buffer overflow, but that's not what we are talking about here, is it? It required a very particular version of Windows Media Player or some Explorer DLL or something for Windows XP and was patched almost instantly, just like the JPG exploit.
    Last edited by CZroe; 05-12-2013 at 08:21 AM.

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts