Cyberzone
Stay Connected:
Home > News > Windows malware sneaks into Apple app store

Windows malware sneaks into Apple app store

July 27, 2012 By:
Oops. Malware targeting Microsoft's Windows devices just slipped past the defenses of Apple's iOS App Store.
 
While the malware is not likely to affect Apple iOS or OS X devices, it may harm users who manage the app via iTunes accounts running on Windows PCs.
 
Apple has since removed the app in question - "Instaquotes" - from the iOS App Store, and it is no longer available for download via iTunes or directly on an iOS device, tech site CNET reported Wednesday night.
 
"Instaquotes" was described as a worm targeting Windows, and embedded in an application being distributed in Apple's App Store for iOS.
 
CNET said the worm is a relatively low-threat malware package that will not affect the iOS or the Mac OS X platform.
 
It cited the experience of a user who posted on an Apple discussion forum that he downloaded the app, and his antivirus flagged the downloaded file as containing the "Worm.VB-900" malware.
 
A scan showed the file had two Windows executables considered as malware.
 
"While this malware, being Windows-based, is a threat to neither the iOS platform nor Mac OS, it may be a threat to those who manage their iTunes and App Store accounts on Windows-based machines," CNET said.
 
On the other hand, it said the malware is relatively old, having been first discovered in August 2009.
 
Not the first time
 
CNET said this was not the first time Apple has let malware into the App Store.
 
Earlier this year, Kaspersky Lab found an app called "Find & Call" that harvested data.
 
Accidental inclusion?
 
A separate article on enthusiast site MacRumors said the malware may have been included in the App Store package as "an accidental inclusion."
 
"As delivered inside the application package, it appears to pose no harm to Windows users, who would have to decompress the package and manually run the infected file in order to expose themselves to the malware," it said.
 
MacRumors said the infected application debuted in the App Store on July 19.
 
'Disappointing'
 
Security vendor Sophos said what is most disappointing about the discovery of Windows malware inside an iOS app is that "Apple doesn't seem to have conducted a simple virus scan as part of its app vetting process."
 
"Just extracting all files from the package, and scanning them with anti-virus software, would have prevented the Windows malware from getting into the iOS App Store in the first place," it said. -GMA News