SoylentNews is people
SoylentNews
Apple has said it is taking steps to remove malicious code added to a number of apps commonly used on iPhones and iPads in China.
It is thought to be the first large-scale attack on Apple's App Store.
The hackers created a counterfeit version of Apple's software for building iOS apps, which they persuaded developers to download.
Apps compiled using the tool allow the attackers to steal data about users and send it to servers they control.
Cybersecurity firm Palo Alto Networks - which has analysed the malware dubbed XcodeGhost - said the perpetrators would also be able to send fake alerts to infected devices to trick their owners into revealing information.
It added they could also read and alter information in compromised devices' clipboards, which would potentially allow them to see logins copied to and from password management tools.
takyon: Affected apps include WeChat, NetEase's music downloading app, Didi Kuaidi's Uber-like car hailing app, the business card scanner CamCard, and more.
(Score: 0) by Anonymous Coward on Tuesday September 22 2015, @04:35PM
Apple's fawning press army doesn't read Soylent. So forget about them, let the pain pass, and talk about tech instead of marketing. We who read Soylent are people who build, not people who sell, so it behooves us to spend more time thinking about how we make our builds verifiable and how we make our source code verifiable, than worrying about the avalanche of press-release-turned-story and asroturf that we already know will suffice to draw in page-views to advertising circlejerk of the "news" sites.
The first step to getting past the bullshit is fixing your sights on what is more important, like security best-practices.