List of 85 Legitimate iPhone Apps Infected by the Recent App Store Hack [Follow-up]

[dgstorm]

Here's a quick follow-up article regarding the recent hacking of the Apple App Store. The following is a list of legitimate iPhone apps infected by the XcodeGhost malware hack. You may want to peruse this list to see if use any of these apps. If you have any of these apps, it might be a good idea to uninstall them until Apple and the developers sort this nonsense out.

Since it is so long, we included the list in the thread below.

 

[dgstorm]

Here's that list of legit apps on the Apple App store which have the malicious hacking code:

1. air2
2. AmHexinForPad
3. Angry Birds 2
4. baba
5. BiaoQingBao
6. CamCard
7. CamScanner
8. CamScanner Lite
9. CamScanner Pro
10. Card Safe
11. China Unicom Mobile Office
12. ChinaUnicom3.x
13. CITIC Bank move card space
14. CSMBP-AppStore
15. CuteCUT
16. DataMonitor
17. Didi Chuxing
18. Eyes Wide
19. FlappyCircle
20. Flush
21. Freedom Battle
22. golfsense
23. golfsensehd
24. guaji_gangtai en
25. Guitar Master
26. High German map
27. Himalayan
28. Hot stock market
29. I called MT
30. I called MT 2
31. IFlyTek input
32. IHexin
33. immtdchs
34. InstaFollower
35. installer
36. iOBD2
37. iVMS-4500
38. Jane book
39. jin
40. Lazy weekend
41. Lifesmart
42. Mara Mara
43. Marital bed
44. Medicine to force
45. Mercury
46. Micro Channel
47. Microblogging camera
48. MobileTicket
49. MoreLikers2
50. MSL070
51. MSL108
52. Musical.ly
53. NetEase
54. nice dev
55. OPlayer
56. OPlayer Lite
57. PDFReader
58. PDFReader Free
59. Perfect365
60. Pocket billing
61. PocketScanner
62. Poor tour
63. Quick asked the doctor
64. Quick Save
65. QYER
66. Railway 12306
67. SaveSnap
68. SegmentFault
69. snapgrab copy
70. Stocks open class
71. SuperJewelsQuest2
72. Telephone attribution assistant
73. The driver drops
74. The Kitchen
75. Three new board
76. ting
77. TinyDeal.com
78. Wallpapers10000
79. Watercress reading
80. WeChat
81. WeLoop
82. WhiteTile
83. WinZip
84. WinZip Sector
85. WinZip Standard

 

[ardchoille]

Thanks for the list. I've never used any of those.

 

[scifan57]

Thanks for the lost. I've never used any of those.

Neither have I.

 

[Pinkpoison]

I haven't either.

 

[antainso]

What do you do if you have?

 

[Pinkpoison]

What do you do if you have?

If I had installed any of these apps I would be uninstalling them and also changing any sensitive passwords such as iCloud passwords.

 

[antainso]

I have Angry Birds 2. But its been on there for ages

 

[Pinkpoison]

I have Angry Birds 2. But its been on there for ages

This is the advice that was put out to help anyone who is worried -


"The number one thing for iPhone users to do is make sure their apps are up to date,

The large number of developers who worked on apps that were affected by the malicious code are going to be issuing updates, the sooner you can get those installed, the better."

• Be extra careful about entering any sensitive information in dialogue boxes.
  • Because the hack can push fake alerts that ask for sensitive user information like passwords, Lookout recommends being extra vigilant about the apps pushing dialogue boxes to your screen. Don’t enter information without first being aware of who is asking for it.
• Change your Apple account password.
  • If you have found that you had any of these apps, Its suggested that you change your Apple account password. Also, be wary about any emails or prompts you receive that ask for sensitive information.

It's also always a good idea to enable two-factor authentication whenever possible. This requires people to have a second form of credentials, like a code from a text message, when they login to an account. Apple, Gmail, Twitter, and other apps and services offer two-factor authentication.