Apple gave no details of which companies were affected. But Tencent Ltd. said its popular WeChat app was affected and the company released a new version after spotting the malicious code. Chinese news reports said others affected included banks, an airline and a popular music service.
The malicious code spread through a counterfeit version of Apple’s Xcode tools used to create apps for its iPhones and iPads, according to the company. It said the counterfeit tools spread when developers obtained them from “untrusted sources” rather than directly from the company.
The malicious software collects information from infected devices and uploads it to outside servers, according to Palo Alto Networks, a U.S.-based security firm.
It was first publicized last week by security researchers at Alibaba Group, the e-commerce giant, who dubbed it XcodeGhost.
World-Wide Business Centres
575 Madison Avenue – 10th floor
New York, NY 10022