Researchers Show How Apple's App Approval Process Can Be Beaten by Malicious Apps

NewImageResearchers from Georgia Tech submitted to the App Store and received approval for a malicious app, according to Technology Review. The researchers submitted an innocuous app that included inactive malware-type code hidden from Apple's app approval system.

When downloaded onto a test device after the app was approved, the app 'phoned home' and gained a variety of abilities that compromised the host phone.

This malware, which the researchers dubbed Jekyll, could stealthily post tweets, send e-mails and texts, steal personal information and device ID numbers, take photos, and attack other apps. It even provided a way to magnify its effects, because it could direct Safari, Apple’s default browser, to a website with more malware.

The researchers, including Long Lu, a Stony Brook University researcher who was part of the team at Georgia Tech, only put the app on the App Store very briefly and it was not downloaded by anyone other than research team members.

The team said that using monitoring code built into the app, they determined that Apple's app approval team only ran the app for a few seconds and that malicious code was not discovered by Apple's team. "The message we want to deliver is that right now, the Apple review process is mostly doing a static analysis of the app, which we say is not sufficient because dynamically generated logic cannot be very easily seen," said Lu.

Apple spokesman Tom Neumayr told Technology Review that the company made some changes to the iOS operating system in response to the paper, though he did not specify what the changes were.

Top Rated Comments

(View all)
Avatar
91 months ago

I've come to a conclusion that all these analysts / researchers lack any thrill in their lives ..all they want to see is apple or any other company fail ..

I don't understand how pointing out a flaw that can be fixed represents a desire to see Apple fail.:confused:
Score: 12 Votes (Like | Disagree)
Avatar
91 months ago
Sorry, I thought this was already public knowledge. Any app developer can embed malicious code, then have it 'turn on' at a specific time. There is no code check, Apple only launch the app - they never get a copy of the source code of each app so have no way of knowing what's inside of it.

The only way this will ever change is if the compilation of the apps is done on Apple servers.
Score: 11 Votes (Like | Disagree)
Avatar
91 months ago
Hats off to Georgia Tech!
Score: 8 Votes (Like | Disagree)
Avatar
91 months ago
Brace yourself. This Thread is about to turn into such a heated debate not even the Marshmallows will survive. :cool:
Score: 7 Votes (Like | Disagree)
Avatar
91 months ago

Fortunately with Apple's system - if something malicious is discovered it can be quickly pulled before harming anyone else.

Try getting the word out about a bad program and having it's website pulled. Much tougher as proven by all the spyware windows applications available.


Too bad this malicious malware wasn't discovered.
Score: 5 Votes (Like | Disagree)
Avatar
91 months ago

As long as they reported the issue to Apple privately long before dangling a treat in front of criminals.


Well, the fact that you can deactivate malicious code in your app until your app passed Apples review is well known to basically everyone who writes software.

Does anybody remember HiddenApps (https://www.macrumors.com/2013/03/11/hiddenapps-hides-stock-apps-iads-and-more-on-non-jailbroken-ios-devices/), the app that could be used to hide app icons on your device?
That app fetched a file from a webserver, if the file said "hide malicious code" the app showed some useless tricks on how to save battery. Once the app passed review the file said "do evil stuff" and the app executed the parts that would have lead to an rejection immediately.

There is no way to catch all evil code in an App. Not even access to the source code will make you a hundred percent safe. Because you have to read and understand it all to make a judgement. Ain't nobody got time for that.
Score: 4 Votes (Like | Disagree)

Top Stories

Apple Confirms This Year's iPhone 12 Models Will Be a Little Bit Late

Thursday July 30, 2020 2:34 pm PDT by
During today's earnings call covering the third fiscal quarter of 2020 (second calendar quarter) Apple CFO Luca Maestri confirmed that Apple is expecting to release this year's iPhones later than usual. Maestri said that Apple last year started selling iPhones in late September, but this year, Apple projects supply will be "available a few weeks later." Multiple rumors have suggested that ...

Just How Small Will the 5.4-Inch iPhone 12 Screen Be? Try It Out for Yourself

Tuesday July 28, 2020 12:57 pm PDT by
As rumors of the iPhone 12 have continued to build over the past few months, the one model that has the most excitement around it is the smallest 5.4" model. The iPhone 12 is believed to be coming in 5.4", 6.7", and 6.1" sizes. Dummy models have shown how much smaller the 5.4" is compared to the rest of the iPhone lineup. The upcoming 5.4" iPhone falls in-between the size of the original...

Leaker Jon Prosser Claims iPhone 12 and New iPads Will Launch in October

Wednesday July 29, 2020 4:15 pm PDT by
Leaker Jon Prosser, who has a somewhat mixed track record when it comes to predicting Apple's plans, today said that new iPhone 12 models and new iPads will launch in October. Multiple rumors have suggested that some or all of the iPhone 12 models coming this year will see a later than normal launch. Apple typically unveils and releases new iPhones in the month of September, but problems...

Apple Watch Series 6 to Feature Blood Oxygen Monitoring Sensor

Friday July 31, 2020 1:56 am PDT by
The Apple Watch Series 6 will add blood oxygen monitoring to its features list when it's launched later this year, according to a new report from DigiTimes. Apple Watch 6 will feature biosensors that can monitor sleeping conditions, detect blood oxygen and measure pulse rates, heartbeats and atrial fibrillation, and will also incorporate MEMS-based accelerometer and gyroscope, all allowing the ...

Emails Reveal Why Steve Jobs and Phil Schiller Blocked In-App Purchase of Kindle Books

Friday July 31, 2020 6:25 am PDT by
Internal Apple emails, made public by the House Judiciary Committee's antitrust inquiry, have revealed information about why Apple blocked in-app purchases of Kindle books on iOS devices, reports The Verge. Two sets of emails between Steve Jobs, Phil Schiller, Eddy Cue, and various other senior Apple executives, disclose the exact thinking behind how Apple approached Kindle on iOS. The...

Apple Launches New Gift Card for 'Everything Apple'

Friday July 31, 2020 3:45 am PDT by
Apple has introduced a new single gift card in the U.S. for all things Apple. First spotted by iCulture, the card can be used at the App Store and other online services, but you can also use it to buy products and accessories in the Apple Store. Previously, there were two separate Apple gift cards available: iTunes cards, which can be used for App Store, iTunes Store, and iCloud storage...

Apple Reports 3Q 2020 Results: $11.25B Profit on $59.7B Revenue, 4-for-1 Stock Split Announced

Thursday July 30, 2020 1:39 pm PDT by
Apple today announced financial results for the third fiscal quarter of 2020, which corresponds to the second calendar quarter of the year. For the quarter, Apple posted revenue of $59.7 billion and net quarterly profit of $11.25 billion, or $2.58 per diluted share, compared to revenue of $53.8 billion and net quarterly profit of $10.0 billion, or $2.18 per diluted share, in the year-ago...

Battery Likely for Upcoming Apple Watch Series 6 Filed in Certification Listings

Saturday August 1, 2020 5:46 am PDT by
A battery likely for the upcoming Apple Watch Series 6 has been filed at the Korea Testing and Research Institute and discovered by a Twitter user @yabhishekhd. Certification for a 1.17Wh battery with a capacity of 303.8mAh was issued on June 23 by the KTR, a Korean regulatory body that approves and tests new hardware ahead of public sale. The battery seems to be destined for a future...

Some Apple Watch Series 5 Owners Seeing Issues With Inconsistent Battery Levels and Random Shutdowns

Thursday July 30, 2020 12:29 pm PDT by
Some Apple Watch Series 5 owners have been experiencing battery issues with their devices that cause random shutdowns even when the Apple Watch is reporting high battery levels. An inconsistent reading of actual battery level appears to be at fault, as in most cases, the Apple Watch reports near 100 percent battery levels for most of the day before dropping down to close to 50 percent and...

Apple Offered to Halve App Store Fee to Get Amazon Prime Video on iOS and Apple TV

Thursday July 30, 2020 6:27 am PDT by
Apple offered Amazon lower App Store fees to convince it to launch its Prime Video app on the App Store and Apple TV, documents published by the U.S. antitrust subcommittee have revealed. According to email correspondence between Apple's services chief Eddy Cue and Amazon CEO Jeff Bezos, Apple struck a deal to bring Amazon Prime Video into the App Store by agreeing to take a 15% revenue share...