Over a dozen iPhone apps talked to a known malware server
Apple’s App Store has generally had fewer security concerns than the Google Play Store, but that hasn’t stopped questionable apps from slipping through the cracks. Security researchers from Wandera have discovered 14 games that all communicated with the same server used to control Golduck malware for Android. While the apps themselves appeared innocuous, they were loaded with ads. It would have been feasible to use ads to trick users into granting permission for malware installed outside the App Store, Wandera told TechCrunch.
Apple hadn’t commented when TechCrunch reached out, but access to the apps is now limited. They were still on the App Store, but were listed as unavailable in the US.
It’s relatively easy for Apple to address an incident like this by removing the apps. However, this could leave a significant number of potential victims if the creators decide to push malware. Sensor Tower estimated that the 14 apps had been downloaded nearly 1 million unique times. That’s a lot of potential infections, even if only a fraction of that group taps links to malware. All told, the findings are another reminder to download only those apps you know you can trust, even if the store operator is normally good about screening rogue software.