XcodeGhost The CIA behind the hack in Apple?

XcodeGhost: Όπως ανακαλύφθηκε από την εταιρεία ασφαλείας Palo Alto , στις 17 Σεπτεμβρίου του 2015, μια τροποποιημένη έκδοση του Xcode της Apple ένα ολοκληρωμένο περιβάλλον ανάπτυξης (IDE) χρησιμοποιήθηκε από Κινέζους προγραμματιστές για να διανέμουν κακόβουλο λογισμικό εν αγνοία τους μέσω ενός compiler που ονομάζεται XcodeGhost.

XcodeGhost

The malicious code was passing through iOS τους, χωρίς να το γνωρίζουν όπως προαναφέραμε. Η Apple φέρεται να μην ανέφερε τίποτα για το θέμα, και μόλις χθες επιβεβαίωσε ότι περίπου 300 malware είχαν περάσει σε iOS εφαρμογές και αφαιρέθηκαν από το .

Christine Monaghan of Apple told the Guardian that

"We have removed the applications from the App Store that we know have been created with this fake software. We work with developers to make sure they are using the right version of Xcode to re-develop their applications. ”

Which CIA hangs though? Intercept reported στις 10 Μαρτίου του 2015, ότι κατά τη διάρκεια μιας μυστικής ετήσιας συνάντησης που οι ασφαλείας εργάζονται με την Κεντρική Υπηρεσία Πληροφοριών (CIA) για να μοιραστούν τις τελευταίες ανακαλύψεις τους, μερικοί από τους ερευνητές που ήταν παρών ανέφεραν ότι δημιούργησαν μια τροποποιημένη έκδοση του Xcode που είναι ικανή να προσθέσει backdoors σε οποιαδήποτε developer develops.

Additionally, iOS apps built using the malicious Xcode IDE had the ability to steal of access by the devices, and send them to a command and control center of their choice.

As revealed in the Intercept publication:

"It remains unclear how the secret services will make developers use the 'teased' version of Xcode."

The malicious software described by CIA security researchers has very similar features to XcodeGhost, and the way it could infect iOS apps matches the one used by XcodeGhost.

It should also be noted that a few days ago, as discovered by PixelsTech, an anonymous Github user posted in a new repository the so-called source code of XcodeGhost, stating in the description that malware would not steal personal information from its users iOS.

He claims that XcodeGhost was designed to demonstrate the fact that Xcode allows you to modify the configuration files and load custom source code.

Note that the only reason this story has happened is that the Chinese developers were looking for a server from which they could quickly download Xcode. Remember that the Asian network APNIC, can be very fast in Asia, but it "crawls" if someone tries to download something from Europe or America.

So the malicious Xcode installers that are distributed through Baidu's cloud file sharing service have become unmoved by Chinese developers.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).