Games on Apple’s App Store connected with a server used to spread malware

Games on Apple’s App Store connected with a server used to spread malware
If you’ve ever downloaded a free game or app on your phone, you couldn’t have missed all the ads that are usually generously spread across menus and pop up between screens. And while they are always annoying, sometimes they can be dangerous too.

A few games on the App Store raised concerns with the digital security company Wandera, TechCrunch reported. The dubious activity that caught Wandera’s attention was that the games, 14 in total and mostly ports of retro/classic games, were communicating with the same server that was used to spread the Golduck malware (malicious software).

Since we’re sure you’re not on first-name basis with different malware, here’s some more info about Golduck. It was first caught in 2017 on classic games (coincidence?) found on the Google Play store and was used to install a piece of software on users' smartphones that would then send SMS text messages to generate revenue for its creators and rack up users’ monthly bills without them ever knowing such activity is happening.

While no wrongdoing was detected at the time the games on the App Store were discovered, the blacklisted server only being used to display different ads, the experts say that this can be changed at any time to something more sinister. Digging into the games’ activity, the researchers did notice that the games were sending IP other unusual information about the devices they were installed on. When trying to reach out to the publishers of the games, it was discovered that the information provided on the App Store leads to dead ends and nonexisting websites.

Apple was informed of the suspicious games and currently, none of them show up when searching from the App Store. This is a rare occasion when a potentially dangerous app shows up in Apple’s tightly controlled ecosystem. The company has a pretty good track record when it comes to the safety of the software the App Store offers.

FEATURED VIDEO

8 Comments

1. Gryffin

Posts: 65; Member since: Dec 19, 2018

Intellectuals : "most secure smartphone ever"

4. RebelwithoutaClue unregistered

Even the most secure device doesn't mean it's 100% secure. This just proofs nothing is 100% secure. But still, I consider the iPhone/Appstore more secure than an Android phone/Play store.

5. koioz

Posts: 164; Member since: Nov 29, 2018

when did google servers hacked by kid? when did google photos were leaked a nude celebrity photo.?

6. whatev

Posts: 2337; Member since: Oct 28, 2015

I’m sorry but there isn’t any huge celebrity using android devices, lmao

7. RebelwithoutaClue unregistered

The iCloud servers weren't hacked, the passwords were socially engineered. You can't blame Apple for accounts being hacked if users used easily to find passwords. The only blame back then was Apple allowing unlimited password tries, which they already solved. If you look at Google accounts being hacked (using keyloggers, social engineering, etc), the number is quite high as well. But those weren't celebs, so no one gives a sh!t. Also, Google servers have been hacked in the past by a kid, just look up the name Ahsan Tahir

2. Truthalltime

Posts: 40; Member since: Dec 08, 2018

"This is a rare occasion when a potentially dangerous app shows up in Apple’s tightly controlled ecosystem, the company has a pretty good track record when it comes to the safety of the software the App Store offers." Hehehe wow

3. ahmadkun

Posts: 616; Member since: May 02, 2016

What happens in your iPhone stays in your iPhone..

9. Peaceboy

Posts: 640; Member since: Oct 11, 2018

Now this cheap pundits keep on putting malwares! They really want money to the richest people.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.