What's new
Apple iPad Forum 🍎

Welcome to the Apple iPad Forum, your one stop source for all things iPad. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

Apple Plays Down Masque Attack Threat

M

Maura

iPadForums News Team
Joined
Jun 7, 2010
Messages
3,894
Reaction score
261
Location
UK
1726-1415999041-a617d43620c013c593bde5899f7f14f7.jpg

AppleInsider reports today that Apple has acted to calm fears about the threat of the Masque Attack iOS vulnerability that was discovered earlier in the year by computer security firm FireEye.

In an official statement to iMore, Apple said that OS X and iOS security measures, when used properly, should be enough to prevent Masque from damaging your iOS device.

Apple told iMore that OS X and iOS were designed specifically with built-in security safeguards “to help protect customers and warn them before installing potentially malicious software.”

Apple went on to say that it was not aware of any customers who have been affected by the attack, adding, “We encourage customers to only download from trusted sources like the App Store and to pay attention to any warnings as they download apps.”

FireEye said that Masque Attack works by creating phony apps that pose as official Apple software and are designed to trick you into divulging your login information via a malicious banking app, for example.

Source: AppleInsider
 
2112

2112

iPF Novice
Joined
Jul 27, 2013
Messages
105
Reaction score
41
Location
NY
Thanks Maura for this article. Can a malicious app make it into the App Store? And has there ever been a documented incident? Where else would one download an app on a stock ipad other than the App Store? THANKS
 
scifan57

scifan57

Administrator
Staff member
Joined
Dec 3, 2011
Messages
35,054
Reaction score
23,340
Location
Regina,Canada
2112 said:
Thanks Maura for this article. Can a malicious app make it into the App Store? And has there ever been a documented incident? Where else would one download an app on a stock ipad other than the App Store? THANKS
Click to expand...
Enterprise provisioning profiles are the most likely way to get apps onto a stock device without going through the App Store. The hackers could be using identifying data from enterprise provisioning certificates to make it possible for the phone apps to be installed on the victims device.
 
Ser Aphim

Ser Aphim

iPF Novice
Joined
Nov 7, 2013
Messages
1,022
Reaction score
171
Location
Philippines
Well as long as we use our devices "properly" we won't need to worry about masque, right?
 
scifan57

scifan57

Administrator
Staff member
Joined
Dec 3, 2011
Messages
35,054
Reaction score
23,340
Location
Regina,Canada
Ser Aphim said:
Well as long as we use our devices "properly" we won't need to worry about masque, right?
Click to expand...
This Masque Attack only affects jailbroken devices that download unofficial, cracked, and pirated apps that have been infected by the virus. If you get all your Apple apps from the App Store or your jailbroken apps and tweaks come from reputable repos you have nothing to worry about.
 
You must log in or register to reply here.

Most reactions

Similar threads

dgstorm
Apple's App Store Suffers Major Hack Attack
Replies
5
Views
3K
Kayayem
Kayayem
M
Apple Engineers Say Hackers, Not Government, Are Prime Security Threat
Replies
0
Views
1K
Maura
M
M
Apple Confirms That it Suffered an Attack by Hackers
Replies
0
Views
6K
Maura
M
dgstorm
Massive iPhone Malware Vulnerability is Fixed by iOS 9
Replies
1
Views
2K
dgstorm
dgstorm
M
New Vulnerability Found in iOS 11 Camera QR Code Reader
Replies
0
Views
1K
Maura
M

Latest posts

Top