'XcodeGhost' Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

by

Back in 2015, a malware-infected version of Xcode began circulating in China, and malware-ridden "XcodeGhost" apps made their way into Apple's App Store and past the ‌App Store‌ review team.

XcodeGhost Featured1
There were more than 50 known infected iOS apps at the time, including major apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially impacted. It's been a long time since the XcodeGhost attack, but Apple's trial with Epic is surfacing new details.

Trial documents highlighted by Motherboard indicate that a total of 128 million users downloaded apps with the XcodeGhost malware, including 18 million users in the United States.

XcodeGhost was one of the biggest attacks against iPhone users to date due to the number of ‌iPhone‌ users that were impacted. The 128 million impacted users got malware from downloads of more than 2,500 affected apps.

Based on emails shared in the trial, Apple worked to determine the impact of the attack and how to best notify those who downloaded infected apps. "Due to the large number of customers potentially affected, do we want to send an email to all of them?" Apple's ‌App Store‌ vice president Matt Fischer asked.

Apple did ultimately inform users that downloaded XcodeGhost apps, and also published a list of the top 25 most popular apps that were compromised. Apple removed all of the infected apps from the ‌App Store‌, and provided information to developers to help them validate Xcode going forward.

XcodeGhost was a widespread attack, but it was not effective or dangerous. At the time, Apple said that it had no information to suggest that the malware was ever used for any malicious purpose nor that sensitive personal data was stolen, but it did collect app bundle identifiers, network details, and device names and types.

Tag: Epic Games vs. Apple Guide

Popular Stories

iPhone 17 Pro Blue Feature Tighter Crop

iPhone 17: What's New With the Cameras

Friday May 2, 2025 3:52 pm PDT by
We've still got months to go before the new iPhone 17 models come out, but a combination of dummy models and leaks have given us some insight into what we can expect in terms of camera changes. Apple is adding new camera features, and changing the design of the camera bump for some models. You might be skeptical of dummy models, but over the years, they've proven to be a highly accurate...
Read Full Article79 comments
iPhone 17 Air Size Feature

iPhone 17 Air Expected to Have Battery Case Due to 'Worse' Battery Life

Saturday May 3, 2025 8:24 am PDT by
Apple's rumored iPhone 17 Air model will have "worse" battery life compared to previous iPhone models, according to a paywalled The Information report. In internal testing, Apple determined that the percentage of users who will be able to use the iPhone 17 Air for a full day without needing to recharge the device throughout the day will be between 60% and 70%, according to the report. For...
Read Full Article140 comments
Beyond iPhone 13 Better Blue Face ID

20th-Anniversary iPhone Will Reportedly Feature an All-Screen Design

Saturday May 3, 2025 9:20 am PDT by
Apple's former design chief Jony Ive long dreamed of an iPhone with a truly all-screen design, and his wish might finally become reality in a few more years. The Information today cited multiple sources who said that at least one new iPhone model launching in 2027 will have a truly edge-to-edge display. The device's front camera and Face ID system would both be placed under the screen....
Read Full Article73 comments
AirPods Pro 3 Mock Feature

AirPods Pro 3 Just Months Away – Here's What We Know

Tuesday April 29, 2025 1:30 am PDT by
Despite being more than two years old, Apple's AirPods Pro 2 still dominate the premium wireless‑earbud space, thanks to a potent mix of top‑tier audio, class‑leading noise cancellation, and Apple's habit of delivering major new features through software updates. With AirPods Pro 3 widely expected to arrive in 2025, prospective buyers now face a familiar dilemma: snap up the proven...
Read Full Article102 comments
iphone 17 air iphone 16 pro

iPhone 17 Air USB-C Port May Have This Unusual Design Quirk

Wednesday April 30, 2025 3:59 am PDT by
Apple is preparing to launch a dramatically thinner iPhone this September, and if recent leaks are anything to go by, the so-called iPhone 17 Air could boast one of the most radical design shifts in recent years. iPhone 17 Air dummy model alongside iPhone 16 Pro (credit: AppleTrack) At just 5.5mm thick (excluding a slightly raised camera bump), the 6.6-inch iPhone 17 Air is expected to become ...
Read Full Article144 comments
iphone 16 pro ghost hand

iPhone 18 Rumors: What to Expect From Apple Next Year

Friday May 2, 2025 3:01 am PDT by
Apple's is continually working with suppliers on successive iPhone models simultaneously, which is why we often get rumored features so far ahead of launch. The iPhone 18 series is no different, and we already have a picture forming of what to expect from Apple's 2026 smartphone lineup. If you're skipping this year's upcoming iPhone 17 series, or just plain curious about Apple's plans...
Read Full Article51 comments
General Spotify Feature

Spotify Submits iOS App Update With Out-of-App Purchase Options

Thursday May 1, 2025 3:37 pm PDT by
Spotify today submitted an app update to Apple that will include information on Spotify plan costs and options to subscribe through weblinks without using the in-app purchase system. Spotify will not need to pay a fee to Apple when customers subscribe to the service using alternate payment methods in the Spotify app. In a blog post announcing the changes, Spotify said that yesterday's ruling ...
Read Full Article288 comments
iPhone Top Left Hole Punch Face ID Feature

iPhone 18 Pro Models Rumored to Feature Under-Screen Face ID With Top-Left Camera Hole

Saturday May 3, 2025 9:19 am PDT by
Apple's two-generations-away iPhone 18 Pro models will likely feature under-screen Face ID, according to The Information. The paywalled report today cited a source who said the iPhone 18 Pro and iPhone 18 Pro Max will have only a small hole in top-left corner of the screen, to accommodate the front-facing camera, with all Face ID hardware moved under the screen. With under-screen Face ID, ...
Read Full Article55 comments

Top Rated Comments

Stromos Avatar
Stromos
52 months ago
Yes its so convenient to figure out which app store I need to download and install to get an app. Then provide credit card details to any and every developer that I want to purchase something. Then figure out which store I need to open to update an app. Better regularly launch the alternative stores to get updates. Oh a store was compromised which apps on my device came from that store?

No purpose to the end user at all.
Score: 20 Votes (Like | Disagree)
deevey Avatar
deevey
52 months ago

how are these companies obtaining these private emails?
The ongoing Epic / Apple.

I'd guess these emails were entered into evidence by Apple as an insight into what they actually do in term of securing the App Store, further justifying the 30% commission.
Score: 8 Votes (Like | Disagree)
ArPe Avatar
ArPe
52 months ago
If phones turned into multiple App Store flea markets then half the apps installed would be these malware and spyware. Every one of you could have your money stolen or become the next Khashoggi.
Score: 6 Votes (Like | Disagree)
hot-gril Avatar
hot-gril
52 months ago
It's silly that Apple has to even justify the 30% commission they charge on their own platform that devs and users are free to use or not use, esp when nobody else justifies the same, but these emails are interesting to read.
Score: 6 Votes (Like | Disagree)
rjohnstone Avatar
rjohnstone
52 months ago

It's silly that Apple has to even justify the 30% commission they charge on their own platform that devs and users are free to use or not use, esp when nobody else justifies the same, but these emails are interesting to read.
Devs are not free to use the platform. They have to pay annually to have the opportunity to be listed. Not all apps get listed. ;)
Score: 6 Votes (Like | Disagree)
Cosmosent Avatar
Cosmosent
52 months ago
Another Nugget thanks to the trial !
Score: 6 Votes (Like | Disagree)
Read All Comments