Monday, August 19, 2013

Researches Slipped Malware Into App Store, Good To See Apple Bruised A Bit

I generally only install apps from big developers or ones that have a level of trust within the community of mobile warriors regardless of whether they're on iOS or Android.  However, I do have to admit that I'm more adventurous on my iPad and iPad than on my Android devices like my Nexus 7.

In general, all those stories of Android's malwares, security holes that Google isn't willing to plug or won't get to, and apps that just wanna steal my contact lists has me a bit wary.  Very wary in fact.

However, this story about how researchers at Georgia Tech found a way to sneak in malware into Apple's walled garden was delicious and eye-opening.  However, it was not totally unexpected because anyone can climb over a wall.  It's just whether you've got a tall enough ladder or the right tools to dig underneath it.

And it's good to see Apple bruised a bit on this.  Because of the walled-garden mentality, good or bad or open or close, it can give users such as myself a false sense of security.  I'm sure this will zero long-term (or even a short-term) effect on Apple's reputation as far as security goes, it goes to show that mobile platforms have to continue to keep an eye out for this kind of things.

The post is a very important read because of how the researchers managed to get their codes past Apple's app store guardians.  And this is one that I've thought of that is possible.  Codes that are not strung together during the review process but could be reacted and put together later.

And as mobile devices get more complicated, smarter forms of attacks, whether it's against Apple, Google, or anyone else, will surface.  

No comments: