Results 1 to 5 of 5

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: "Masque Attack" Vulnerability Allows Malicious Third-Party Apps to be Installed on iOS

  1. #1
    What's Jailbreak? Akshay Masand's Avatar
    Join Date
    Sep 2011
    Location
    New York City
    Posts
    5,897
    Thanks
    3
    Thanked 200 Times in 179 Posts

    Default "Masque Attack" Vulnerability Allows Malicious Third-Party Apps to be Installed on iOS


    A recently-discovered vulnerability in Apple’s mobile operating system could potentially allow attackers to con users into replacing apps that have access to personal information with hacked versions that relay this info to malicious sources. These hacked apps are said to be distributed via email or through web links and installed using iOS’s enterprise provisioning system which allows apps to be added to a device from places other than the App Store.

    According to the security firm, FireEye, the vulnerability, which is dubbed “Masque attack” is possible mainly because iOS doesn’t verify that the code signing certificate is the same for apps that use the same bundle identifier. An app with the same bundle identifier as that of let say Angry Birds could be installed on top of the legitimate Angry Bird app as it basically copies the latter’s user interface but sends login data back to the attackers’ servers instead. The only apps that are said not to be affected are default apps such as Safari and Mail. The security firm claims they notified Apple of the issue at the end of July but the current version of iOS continues to remain vulnerable to the attack.

    Those of you interested in watching a demo of the vulnerability can do so below:



    The Masque attack as a whole can be seen as a form of phishing which is a malicious form of tricking users into submitting sensitive data to real looking website that are in actuality fake. Apple hasn’t responded to the issue just yet but the Cupertino California company likely will as the issue becomes more public.

    Source: FireEye via AppleInsider

    Twitter: @AkshayMasand

  2. #2
    iPhone? More like MyPhone
    Join Date
    Jun 2014
    Location
    US
    Posts
    221
    Thanks
    282
    Thanked 59 Times in 42 Posts

    I wonder if deleting the malicious application would stop the ability of the virus to attack the device.

  3. #3
    I actually had an 'app' try to install after redirected out of cydia. Threw me off guard when I was asked to install an app, I'm glad I hit cancel!

  4. #4
    Most concerning that they notified apple in July and still persists into a brand new iOS version which has received several updates already. Either apple doesn't think it's a legitimate threat to most users or they are not addressing it in a timely manner.

  5. #5
    I hope the creators of PMP (protect my privacy) a Cydia App, update their App soon, that was a great App. Anytime a App was trying to access information, PMP would let you know and you could accept or deny access to that information. You'd be amazed at how many games (as an example) try to access your address book, pictures or something like that. I'd hit deny if it had no business in there. A lot of time Apps try to get usage data (I.e Facebook) and PMP would protect against that.

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •