Click to Skip Ad
Closing in...

Apple warning lists top 25 apps infected in massive App Store malware attack

Published Sep 24th, 2015 9:20AM EDT
iPhone Apps XcodeGhost Malware
Image: Apple

If you buy through a BGR link, we may earn an affiliate commission, helping support our expert product labs.

After setting up a special help page that provides information about the massive XcodeGhost malware hack on its website, Apple has listed the top 25 iOS apps built using the counterfeit version of Xcode that was capable of injecting malware in apps before they were submitted to the App Store.

DON’T MISS: Huge iOS 9 security flaw lets anyone see your photos and contacts without a PIN – here’s how to stop it

The image above shows the most popular 25 apps (by downloads) that have included malware in the past, before being updated by developers. Apple a few days ago pulled apps that still had the XcodeGhost code in them, telling Reuters that it’s working with developers on the matter. Currently, Apple is blocking apps made with the same unofficial Xcode tool that injects the malware.

“After the top 25 impacted apps, the number of impacted users drops significantly,” Apple writes on the page, suggesting that the other apps that might have malware components do not have a significant number of users. However, it’s not clear how many iPhone and iPad users actually downloaded any of these 25 top apps.

The company’s help page also says the malware can’t be used to collect highly sensitive user data such as iCloud (Apple ID) credentials or other passwords.

At least 85 apps have been found to contain XcodeGhost malware, and we listed them all right here. Some security firms say the real number might be in the hundreds or even thousands.

Here’s a list of the top 25 iPhone apps in Apple’s Chinese App Store that have been affected by the hack, which happens to be Apple’s largest malware attack in the history of the App Store.

  • WeChat
  • DiDi Taxi
  • 58 Classified – Job, Used Cars, Rent
  • Gaode Map – Driving and Public Transportation
  • Railroad 12306
  • Flush
  • China Unicom Customer Service (Official Version)*
  • CarrotFantasy 2: Daily Battle*
  • Miraculous Warmth
  • Call Me MT 2 – Multi-server version
  • Angry Bird 2 – Yifeng Li’s Favorite*
  • Baidu Music – A Music Player that has Downloads, Ringtones, Music Videos, Radio, and Karaoke
  • DuoDuo Ringtone
  • NetEase Music – An Essential for Radio and Song Download
  • Foreign Harbor – The Hottest Platform for Oversea Shopping*
  • Battle of Freedom (The MOBA mobile game)
  • One Piece – Embark (Officially Authorized)*
  • Let’s Cook – Receipes [sic]
  • Heroes of Order & Chaos – Multiplayer Online Game*
  • Dark Dawn – Under the Icing City (the first mobile game sponsored by Fan BingBing)*
  • I Like Being With You*
  • Himalaya FM (Audio Book Community)
  • CarrotFantasy*
  • Flush HD
  • Encounter – Local Chatting Tool
Chris Smith Senior Writer

Chris Smith has been covering consumer electronics ever since the iPhone revolutionized the industry in 2008. When he’s not writing about the most recent tech news for BGR, he brings his entertainment expertise to Marvel’s Cinematic Universe and other blockbuster franchises.

Outside of work, you’ll catch him streaming almost every new movie and TV show release as soon as it's available.