• Tech News
    • Games
    • Pc & Laptop
    • Mobile Tech
    • Ar & Vr
    • Security
  • Startup
    • Fintech
  • Reviews
  • How To
What's Hot

Elementor #32036

January 24, 2025

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

April 18, 2024

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

April 16, 2024
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook Twitter Instagram Pinterest VKontakte
Behind The ScreenBehind The Screen
  • Tech News
    1. Games
    2. Pc & Laptop
    3. Mobile Tech
    4. Ar & Vr
    5. Security
    6. View All

    Bring Elden Ring to the table with the upcoming board game adaptation

    September 19, 2022

    ONI: Road to be the Mightiest Oni reveals its opening movie

    September 19, 2022

    GTA 6 images and footage allegedly leak

    September 19, 2022

    Wild west adventure Card Cowboy turns cards into weird and silly stories

    September 18, 2022

    7 Reasons Why You Should Study PHP Programming Language

    October 19, 2022

    Logitech MX Master 3S and MX Keys Combo for Business Gen 2 Review

    October 9, 2022

    Lenovo ThinkPad X1 Carbon Gen10 Review

    September 18, 2022

    Lenovo IdeaPad 5i Chromebook, 16-inch+120Hz

    September 3, 2022

    It’s 2023 and Spotify Still Can’t Say When AirPlay 2 Support Will Arrive

    April 4, 2023

    YouTube adds very convenient iPhone homescreen widgets

    October 15, 2022

    Google finishes iOS 16 Lock Screen widgets rollout w/ Maps

    October 14, 2022

    Is Apple actually turning iMessage into AIM or is this sketchy redesign rumor for laughs?

    October 14, 2022

    MeetKai launches AI-powered metaverse, starting with a billboard in Times Square

    August 10, 2022

    The DeanBeat: RP1 simulates putting 4,000 people together in a single metaverse plaza

    August 10, 2022

    Improving the customer experience with virtual and augmented reality

    August 10, 2022

    Why the metaverse won’t fall to Clubhouse’s fate

    August 10, 2022

    How Apple privacy changes have forced social media marketing to evolve

    October 16, 2022

    Microsoft Patch Tuesday October Fixed 85 Vulnerabilities – Latest Hacking News

    October 16, 2022

    Decentralization and KYC compliance: Critical concepts in sovereign policy

    October 15, 2022

    What Thoma Bravo’s latest acquisition reveals about identity management

    October 14, 2022

    What is a Service Robot? The vision of an intelligent service application is possible.

    November 7, 2022

    Tom Brady just chucked another Microsoft Surface tablet

    September 18, 2022

    The best AIO coolers for your PC in 2022

    September 18, 2022

    YC’s Michael Seibel clarifies some misconceptions about the accelerator • DailyTech

    September 18, 2022
  • Startup
    • Fintech
  • Reviews
  • How To
Behind The ScreenBehind The Screen
Home»Tech News»Malware-packed Chinese apps found on Mac App Store
Tech News

Malware-packed Chinese apps found on Mac App Store

August 8, 2022No Comments2 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Malware-packed Chinese apps found on Mac App Store
Share
Facebook Twitter LinkedIn Pinterest Email

In brief: Apple likes to talk about how its App Store is incredibly safe and that sideloading apps is just asking for trouble. But Cupertino’s virtual storefront certainly isn’t immune to malware-filled applications. One researcher has discovered several of them evaded safeguards and made their way onto the Mac App Store.

Researcher Privacy 1st (Alex Kleber) analyzed seven different Apple developer accounts, all managed by the same Chinese dev. They note that the apps abuse the Mac App Store in several ways, the most common being that they contain hidden malware able to receive commands from a server (command-and-control). This allows the apps to pass the App Store’s initial security checks before the malware is activated. In some apps, Apple’s review team saw a completely different user interface than what appears in the final version, as the developers could alter the UI remotely.

The lack of a close or back button is always concerning

The apps communicate with popular services such as Cloudflare and GoDaddy to hide their hosting provider. It was also discovered that their privacy policies utilize free Google websites. Moreover, they all use the same password to decrypt a JSON file used to fool the Apple review team, thereby confirming that they come from the same developer.

The apps also embrace the tried-and-tested technique of fake reviews; developers can buy these to make their products seem more authentic and appealing. It’s noted that most of these 5-star ratings appear written by non-native English speakers, and the same styles often occur across multiple reviews, such as writing “APP” in all caps. The single-star reviews are the only ones that do appear genuine.

See also  Apple's next-gen watchOS 9 and iOS 16 are available starting today

Seems legit

The developer also created multiple copies of the same application to gain market share.

Some of these malicious apps have proved very popular. A ‘PDF Reader for Adobe PDF Files’ app was one of the most downloaded/sold applications in the US Mac Appstore, despite it tricking users into taking out unwanted subscriptions.

Apple has now erased many of the fake reviews for these apps, and some of the applications appear to have been removed from the Mac App Store entirely.

Last week brought news that researchers had discovered over two dozen malicious yet popular Android apps on the Google Play Store.



Source link

app Apps Chinese Mac Malwarepacked Store
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

The ChatGPT App Can Now Talk to You—and Look Into Your Life

September 25, 2023

Apps Are Rushing to Add AI. Is Any of It Useful?

August 4, 2023

X Isn’t a Super App. It’s Just Twitter | Startup

July 24, 2023

6 Threads App Settings Worth Trying Out

July 16, 2023
Add A Comment

Comments are closed.

Editors Picks

The Holiday Travel Rush Is Now the Holiday Travel Blob

December 10, 2022

How Prioritizing Emotional And Physical Health Benefits Business

September 6, 2023

The way forward for Intel’s complete Arc vary is perhaps in jeopardy

July 29, 2022

Lenovo Yoga Book 9i review

June 26, 2023

Subscribe to Updates

Get the latest news and Updates from Behind The Scene about Tech, Startup and more.

Top Post

Elementor #32036

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

Behind The Screen
Facebook Twitter Instagram Pinterest Vimeo YouTube
  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2025 behindthescreen.uk - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.