Skip to content

University of Georgia Sneaks Malware into App Store

If there is one thing that makes iOS stand out from other operating systems, it is the fact that it is closed. But nothing is perfect, and neither are Apple’s approval processes. That’s why Georgia Tech managed to sneak in an application with malicious code that was dynamically generated by Apple’s security arches and they were unable to detect it.

Jekyll, a seemingly harmless name for an application that apparently just wanted to show off the news from the Georgia Institute of Technology. However was a full-blown Trojan horse, with which they managed to pass Apple’s security ring without raising suspicions .

University of Georgia Sneaks Malware into App Store
University of Georgia Sneaks Malware into App Store

It was no less than in March when it was uploaded to the App Store, and it has not been until now that we have known the news, which shows that Google Play is not the only strainer of malware , because although Jekyll was only a harmless experiment, Apple has to improve its security filters seen .

According to the person in charge of this experiment, Apple was unable to discover the lines of code that would later generate a malicious application that was apparently harmless.

Once installed on the victim’s phone, Jekyll worked normally, letting us see news, post it on Twitter, or share it by mail ; most commonly in applications of this type. He could also access the address book, the camera, and could send us to a dangerous website from Safari.

But Jekyll’s genius doesn’t end there, as he also had code capable of sending Georgia Tech the status of Apple’s testing processes, which showed that the apps were only tested for a few seconds, leaving them free to go on the App Store later. But Jekyll had little useful life, as it was tested for a few minutes, downloading information from the iPhone trap, which was theirs. No user was able to install this application, as the team members themselves informed Apple of the issue for its quick removal.

They themselves confess that an improvement in this aspect is complicated, as one would have to carefully analyze the code of each application to find cases like the one we have here. And considering the thousands of applications that Apple has to test day after day, it certainly becomes a complicated task, but on the other hand it can’t leave security aside.

Apple has already made statements about this, and one of its spokesmen, Tom Neumayr, has said that the company has considered this experiment, and has already updated its systems to combat malware of this type . The exact arrangements have not been detailed nor did it comment on the App Store review process.

Thanks to Manolo for the warning!

Post your opinion using your Facebook account.