Saturday, July 4, 2026
ADVT 
National

Apple Security Breach Could Impact Canadians With iPhones And iPads

The Canadian Press, 21 Sep, 2015 12:28 PM
    TORONTO — Apple announced a rare security breach over the weekend that means some Canadians may have unwittingly infected their iPhones and iPads with malware that could expose their iCloud passwords and other personal data.
     
    Apple Inc. has removed some applications from its app store after developers in China were tricked into using software tools that added malicious code to their work.
     
    Apple hasn't provided details about which companies' apps were affected.
     
    But Tencent Ltd. said its popular WeChat app was hit; the company released a new version after spotting the offending code. Chinese news reports said others affected included banks, an airline and a popular music service.
     
    Many of the affected apps were only available on the App Store in China, yet some that were reportedly infected by the malware — including WeChat, business card rolodex CamCard and file extractor WinZip — are available in Canada.
     
    Users are advised to uninstall the affected apps or update to the latest version released after the malware was discovered, and to change their iCloud passwords.
     
    The malicious code spread through a counterfeit version of Apple's Xcode tools used to create apps for its iPhones and iPads, according to the company. It said the counterfeit tools spread when developers obtained them from "untrusted sources" rather than directly from the company.
     
     
    The malicious software collects information from infected devices and uploads it to outside servers, according to Palo Alto Networks, a U.S.-based security firm. The company said the breach could result in fake password prompts aimed at harvesting iCloud details or other logins.
     
    It was first publicized last week by security researchers at Alibaba Group, the Asian e-commerce giant, who dubbed it XcodeGhost.
     
    The creators of the malware took advantage of public frustration with Beijing's Internet filters, which hamper access to Apple and other foreign websites. That prompts some people to use copies of foreign software or documents that are posted on websites within China to speed up access.
     
    "Sometimes network speeds are very slow when downloading large files from Apple's servers," wrote Claud Xiao, a Palo Alto Networks researcher, on its website. Due to the large size of the Xcode file, "some Chinese developers choose to download the package from other sources or get copies from colleagues."
     
    Companies with apps that were affected include taxi-hailing service Didi Kuaidi, Citic Industrial Bank, China Southern Airlines and the music service of NetEase, a popular Web portal, according to the newspaper Yangcheng Evening News.
     
     
    The incident is the only the sixth time malicious software is known to have made it through Apple's screening process for products on its App Store, according to Xiao.

    MORE National ARTICLES

    Copper Mountain Projects Copper Output From B.C. Mine Near Last Year's Level

    Copper Mountain Projects Copper Output From B.C. Mine Near Last Year's Level
    VANCOUVER — Copper Mountain Mining Corp. (TSX:CUM) says it plans to produce about 80 million pounds of copper from its flagship mine in southern British Columbia this year.

    Copper Mountain Projects Copper Output From B.C. Mine Near Last Year's Level

    Canadian soldiers forced to defend themselves in firefight in Iraq: general

    Canadian soldiers forced to defend themselves in firefight in Iraq: general
    OTTAWA — Canadian soldiers opened fire on enemy positions in Iraq over the last week in what a senior officer called an act of self-defence.

    Canadian soldiers forced to defend themselves in firefight in Iraq: general

    Judge now writing report on military sexual misconduct claims

    Judge now writing report on military sexual misconduct claims
    OTTAWA — An external review by a former Supreme Court of Canada justice into allegations of sexual misconduct in the military has been completed.

    Judge now writing report on military sexual misconduct claims

    Richard Henry Bain given last chance to find lawyer ahead of murder trial

    Richard Henry Bain given last chance to find lawyer ahead of murder trial
    MONTREAL — The man charged with first-degree murder in Quebec's 2012 election shooting has been given one last chance to find himself a lawyer ahead of his trial.

    Richard Henry Bain given last chance to find lawyer ahead of murder trial

    Dalhousie University dentistry student in Facebook group blew whistle: lawyer

    Dalhousie University dentistry student in Facebook group blew whistle: lawyer
    HALIFAX — A member of a Facebook group accused of posting hateful comments about female members of Dalhousie University's dentistry school blew the whistle on the classmates who made the remarks but has been treated unfairly by the school, the man's lawyer said Monday.

    Dalhousie University dentistry student in Facebook group blew whistle: lawyer

    Bedbug barkers: Dogs trained to sniff out blood-sucking insects found safe

    Bedbug barkers: Dogs trained to sniff out blood-sucking insects found safe
    WINNIPEG — Two missing dogs trained to sniff out bedbugs have been found safe after the van they were resting in was stolen in Winnipeg.

    Bedbug barkers: Dogs trained to sniff out blood-sucking insects found safe