U.S. Government Warns iOS Users About 'Masque Attack' Vulnerability

by

The United States government today issued a bulletin warning iPhone and iPad users about the recent "Masque Attack" vulnerability, a security flaw that first surfaced on Monday of this week, reports Reuters. Masque Attack is a vulnerability that can allow malicious third-party iOS apps to masquerade as legitimate apps via iOS enterprise provision profiles.

Written by the National Cybersecurity and Communications Integration Center and the U.S. Computer Emergency Readiness Teams, the bulletin outlines how Masque Attack spreads -- luring users to install an untrusted app through a phishing link -- and what a malicious app is capable of doing.

An app installed on an iOS device using this technique may:
-Mimic the original app's login interface to steal the victim's login credentials.
-Access sensitive data from local data caches.
-Perform background monitoring of the user's device.
-Gain root privileges to the iOS device.
-Be indistinguishable from a genuine app.

The post also advises iOS users to protect themselves by avoiding apps that have been installed from sources other than the App Store or an organization they're affiliated with, avoiding tapping "Install" on third-party pop-ups when viewing web pages, and tapping "Don't Trust" on any iOS app that shows an "Untrusted App Developer Alert."

Masque Attack in action

Computer security alerts issued by the government are fairly rare, and only 13 have been sent over the course of 2014. Other vulnerabilities that have prompted alerts include Heartbleed and an SSL 3.0 flaw called "Poodle."

FireEye, the team that discovered Masque Attack, has notified Apple about the vulnerability, but it has not been patched in the recent iOS 8.1.1 beta thus far. It also affects iOS 7.1.1, 7.1.2, 8.0, and 8.1, and as of today, Apple has not yet commented on Masque Attack.

Masque Attack, along with WireLurker, another vulnerability outlined earlier this month, is unlikely to affect the average iOS user so long as Apple's security features are not bypassed. Masque Attack works by circumventing the iOS App Store to install apps, while WireLurker is similar, infecting machines via third-party software downloaded outside of the Mac App Store.

Both WireLurker and Masque Attack can be avoided by staying away from suspicious apps and avoiding links that prompt users to install apps outside of Apple's App Stores.

Popular Stories

iOS 26 Feature

iOS 26.1 to iOS 26.4 Will Add These New Features to Your iPhone

Wednesday October 1, 2025 1:26 pm PDT by
iOS 26 was released last month, but the software train never stops, and iOS 26.1 beta testing is already underway. So far, iOS 26.1 makes both Apple Intelligence and Live Translation on compatible AirPods available in additional languages, and it includes some other minor changes across Apple Music, Calendar, Photos, and Safari. More features and changes will follow in future versions,...
Read Full Article
iPhone 17 vs Air and Pros Feature

New iPhones See 'Stronger Than Expected' Demand With One Exception

Thursday October 2, 2025 7:26 am PDT by
Nearly two weeks after the iPhone 17 series launched, analysts at investment banking firm Morgan Stanley said demand for the devices has been "modestly stronger than we originally expected," based on a combination of extended shipping estimates on Apple's online store and information it gathered from Apple's supply chain. There has been strong early demand for the iPhone 17, iPhone 17 Pro,...
Read Full Article246 comments
space black mbp

Here's Every New Apple Product That Leaked Yesterday

Wednesday October 1, 2025 8:27 am PDT by
A handful of upcoming Apple products leaked yesterday, through a combination of YouTube videos out of Russia and U.S. Federal Communications Commission (FCC) documents that were released, despite Apple's confidentiality requests. The leaked products include an iPad Pro with an M5 chip, as well as updated MacBook Pro and Apple Vision Pro models. All of these devices had already been rumored...
Read Full Article38 comments
Apple 2025 Thumb 1

Apple's 2025 Product Roadmap: What's Still Coming

Wednesday October 1, 2025 3:56 pm PDT by
Apple's two big yearly events, WWDC and the iPhone launch, are done and over with, but there are still some new products that we're expecting to see before the end of the year. Apple TV The Apple TV hasn't been updated since 2022, so it's due for a refresh. It doesn't look like Apple is going to change the design of its set-top box, but we can expect a faster chip Apple code suggests...
Read Full Article91 comments
macbook air prime day 2025

M5 MacBook Air: Release Date, Features, and Performance Predictions

Friday October 3, 2025 3:39 am PDT by
The MacBook Air is Apple's most popular laptop – a thin, fanless machine that wields quiet power thanks to the efficiency of Apple silicon. While the M4 model isn't exactly old, attention is already turning to its successor. Apple doesn't telegraph new product launches ahead of time, but we can draw a surprisingly clear picture of what to expect by looking at Apple's silicon roadmap,...
Read Full Article65 comments
Tim Cook Rainbow

Apple Event in October? Here's What to Expect

Monday September 29, 2025 9:31 am PDT by
Apple's annual iPhone event is in the rearview mirror, but rumors suggest the company plans to release a handful of additional products before the year ends. Will there be another Apple event this October? We discuss the possibility below. Apple in October Apple's most recent October events were in 2021 and 2023. In 2022 and 2024, Apple did not host an October event. Instead, it...
Read Full Article63 comments
apple wallet drivers license feature iPhone 15 pro teal 1

Apple's iPhone Driver's License Feature Now Available in 11 U.S. States

Tuesday September 30, 2025 6:40 am PDT by
In select U.S. states, residents can add their driver's license or state ID to the Wallet app on the iPhone and Apple Watch, providing a convenient and contactless way to display proof of identity or age at select airports and businesses, and in select apps. Apple recently revealed that the feature would soon be available in North Dakota, and starting today, the feature has officially gone...
Read Full Article54 comments
iPhone 17e Feature 1

iPhone 17e: All the Rumors So Far

Thursday October 2, 2025 4:55 am PDT by
Earlier this year, Apple released the $599 iPhone 16e – a budget-friendly late addition to its iPhone 16 series and a replacement for its long-running entry-level iPhone SE line. Given the iPhone 17 lineup has now launched, can we expect an iPhone 17e anytime soon? If you're holding out for a more affordable device with the 17 moniker attached, here's everything we know so far about the...
Read Full Article59 comments
iOS 26 Everything New Feature

26 Hidden iOS 26 Tricks to Change How You Use Your iPhone

Wednesday October 1, 2025 9:16 am PDT by
Apple released iOS 26 in mid-September, bringing a range of new features and changes to iPhones across the globe. But not all of the included improvements have been showcased with Apple's typical fanfare, and many are likely to have been overlooked. Below, we've highlighted 26 lesser known additions and enhancements that could potentially change how you use your iPhone on a daily basis. Got...
Read Full Article40 comments

Top Rated Comments

spectrumfox Avatar
spectrumfox
142 months ago
"iOS Enterprise Certificates".

Then it isn't a security flaw. I love how this Apple-centric site fails to mention that you actually have to install the certificate. This is blown way out of proportion!
If the US government is putting out an official warning, then it's not being blown out of proportion.

Stop apologizing for Apple. This is exactly how these situations come about in the first place: Too many people excusing Apple for problems with their software instead of pressing them to fix the problems.
Score: 22 Votes (Like | Disagree)
shenan1982 Avatar
shenan1982
142 months ago
"iOS Enterprise Certificates".

Then it isn't a security flaw. I love how this Apple-centric site fails to mention that you actually have to install the certificate. This is blown way out of proportion!

Sadly a large part of the iPhone user base will click ACCEPT to anything that pops up, without even reading it. It's what America has become... we don't read, then we complain we've been scammed.
Score: 18 Votes (Like | Disagree)
Rogifan Avatar
Rogifan
142 months ago
So basically they're just telling people don't be stupid.
Score: 14 Votes (Like | Disagree)
SolarShane Avatar
SolarShane
142 months ago
"iOS Enterprise Certificates".

Then it isn't a security flaw. I love how this Apple-centric site fails to mention that you actually have to install the certificate. This is blown way out of proportion!
Score: 13 Votes (Like | Disagree)
KdParker Avatar
KdParker
142 months ago
So - You only want apps that you get from the app store.

Don't apps have to be from the app store unless your phone is jailbroken?
Score: 8 Votes (Like | Disagree)
spectrumfox Avatar
spectrumfox
142 months ago
As much as trivial and "common sense"ish this may seem, there is absolutely nothing wrong with this type of warning. I don't understand the hate for it. If the US government released a warning about "please lock your doors at night.." will people be fundamentally against that also?

We have a lot warning labels on cars, on machines, on prescription drugs..this is no different.

Having the US government comment on the security of an Apple product negates the idea that Apple products are infallible. And apparently that upsets some people.
Score: 7 Votes (Like | Disagree)
Read All Comments