Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Apple Outlines Steps for Developers to Validate Xcode Following Malware Attack
Following last week's disclosure of new iOS malware called XcodeGhost, which arose from malicious versions of Xcode hosted on third-party servers, Apple has outlined instructions for developers to ensure the version of Xcode they are using is valid.
When downloading Xcode from the Mac App Store, or Apple's website so long as Gatekeeper is enabled, OS X automatically checks the app's code signature and validates it against Apple's code. If you must obtain Xcode elsewhere, follow these steps:
When downloading Xcode from the Mac App Store, or Apple's website so long as Gatekeeper is enabled, OS X automatically checks the app's code signature and validates it against Apple's code. If you must obtain Xcode elsewhere, follow these steps:
To verify the identity of your copy of Xcode run the following command in Terminal on a system with Gatekeeper enabled:Apple issued a statement in response to XcodeGhost over the weekend, noting that it has removed all infected apps it is aware of from the App Store and is working with developers to ensure they are using a legitimate version of Xcode.
spctl --assess --verbose /Applications/Xcode.app
where /Applications/ is the directory where Xcode is installed. This tool performs the same checks that Gatekeeper uses to validate the code signatures of applications. The tool can take up to several minutes to complete the assessment for Xcode.
The tool should return the following result for a version of Xcode downloaded from the Mac App Store:
/Applications/Xcode.app: accepted
source=Mac App Store
and for a version downloaded from the Apple Developer web site, the result should read either
/Applications/Xcode.app: accepted
source=Apple
or
/Applications/Xcode.app: accepted
source=Apple System
Any result other than ‘accepted’ or any source other than ‘Mac App Store’, ‘Apple System’ or ‘Apple’ indicates that the application signature is not valid for Xcode. You should download a clean copy of Xcode and recompile your apps before submitting them for review.
"We’ve removed the apps from the App Store that we know have been created with this counterfeit software. We are working with the developers to make sure they’re using the proper version of Xcode to rebuild their apps."XcodeGhost affected dozens, and possibly hundreds, of App Store apps. iPhone, iPad and iPod touch users should read what you need to know about XcodeGhost to learn more about the malware and how to keep yourself protected.
Tags: Xcode, XcodeGhost
[ 67 comments ]
Top Rated Comments
(View all)
50 months ago
Apple should block any developers who used counterfeit versions from being able to submit to the App Store. This level of stupidity shouldn't be allowed on their platform.
50 months ago
Band-Aid achieved. But it shouldn't be possible to do this in the first place--it's a security hole and one that could have been expected. Maybe have iTunes Connect only accept submissions from an unmodified Xcode? I'm not sure this is at all simple to implement, but I'm sure it's important to do so
Developers are to blame too--especially multi-person companies should know better. But the platform should still be protected from developers making mistakes--or being attacked in other as-yet-unknown ways that might make it possible to secretly modify their Xcode. After all, it's possible to choose to bypass the Mac's security features (like Gatekeeper), and some people have reasons to do so. Further checks from Apple's remote end are called for, I think.
Developers are to blame too--especially multi-person companies should know better. But the platform should still be protected from developers making mistakes--or being attacked in other as-yet-unknown ways that might make it possible to secretly modify their Xcode. After all, it's possible to choose to bypass the Mac's security features (like Gatekeeper), and some people have reasons to do so. Further checks from Apple's remote end are called for, I think.
50 months ago
"Following last week's disclosure of new iOS malware called XcodeGhost ('https://www.macrumors.com/2015/09/20/xcodeghost-chinese-malware-faq/'), which arose from malicious versions of Xcode hosted on third-party servers, Apple has outlined instructions ('https://developer.apple.com/news/?id=09222015a') for developers to ensure the version of Xcode they are using is valid."
Step 1: Download Xcode from Apple.com
Congratulations, you now have a genuine version of Xcode ;)
Step 1: Download Xcode from Apple.com
Congratulations, you now have a genuine version of Xcode ;)
50 months ago
On a tangent, but a strongly related one, what's to keep whomever put the malicious Xcode out on Baidu in the first place from having a house stable of devs building malicious apps using their own Xcode? From what I've read, Apple was unable to catch these apps from being borked in the first place. I've long had a healthy skepticism about accessing any critical (financial, medical, etc) websites from a mobile device, now I'm positively paranoid about it.
50 months ago
Considering I am not an idiot and I downloaded Xcode from Apple's dev portal, I think my copy is clean.
50 months ago
When you find that an app on that list ('https://forums.macrumors.com/threads/what-you-need-to-know-about-ios-malware-xcodeghost.1918784/#post-21896151') is in your Home Screen
50 months ago
Band-Aid achieved. But it shouldn't be possible to do this in the first place--it's a security hole and one that could have been expected. Maybe have iTunes Connect only accept submissions from an unmodified Xcode? I'm not sure this is at all simple to implement, but I'm sure it's important to do so
Developers are to blame too--especially multi-person companies should know better. But the platform should still be protected from developers making mistakes--or being attacked in other as-yet-unknown ways that might make it possible to secretly modify their Xcode. After all, it's possible to choose to bypass the Mac's security features (like Gatekeeper), and some people have reasons to do so. Further checks from Apple's remote end are called for, I think.
You will never be able to outsmart dumb people.
There will always be ways people will figure out to get around something that annoys them.
So, in that case developers were annoyed by the long download times and figured out to go to another site.
About the only thing bothersome here is how this passed Apples screening of apps. My guess is that if an app was okay the first time from a certain developer, s/he got a pass "as an update" and was not put through all the testing they normally do.
I'd also show a yellow card to developers who bypass Apples XCODE system and flash RED if they do it again and they would be out.
50 months ago
Disappointing that they don’t warn their customers with a proper press release. iCloud credentials might have been stolen and other passwords compromised. People are still vulnerable for as long as these versions remain on the devices and many people don’t know. Just make sure that you download Xcode from apple.com ('http://apple.com') next time, no big deal! Apple is just unreliable with these things.
50 months ago
If you download an infected app, simply run the app updates and install them. This will clear up the issue.
Better yet, if you downloaded an infected app, delete it and never install an app from that developer ever again.
[ Read All Comments ]
Apple today began selling an updated version of the Rotor Riot wired game controller for iPhone and iPad through its online store. The new model features a redesigned directional pad, a built-in...
Los Angeles FC fans can now order food and drinks ahead of time directly on their iPhones at the Banc of California Stadium.
The MLS team has partnered with artificial intelligence platform...
An escalating trade war between Japan and South Korea could make Chinese manufacturer BOE Technology a "strong contender" for OLED display orders from Apple, according to industry sources who...
iPhone loyalty has hit its lowest level since 2011 and Samsung has been the main benefactor, claims a new survey conducted by trade-in service BankMyCell.
The survey, cited by CNET, tracked...
Sky: Children of the Light, by Journey developer thatgamecompany, is now available for iPhone, iPad, and iPod touch. Its release follows last year's launch of the beta version of the game, titled...
Plex today announced a few updates for its Apple TV and iOS apps, adding notable new features that are worth highlighting.
The Apple TV app now supports HDR video playback, and Plex Pass...
The newest version of Spotify for iOS, released yesterday, quietly added support for Apple's multitasking Slide Over and Split View feature on the iPad.
As noted on Reddit and highlighted by...
Apple today seeded the fourth beta of watchOS 6, the software that runs on the Apple Watch. The new beta comes two weeks after the third beta and more than a month after Apple first unveiled the new...
