Security experts from Lancope and VASCO commented on the latest news that hackers infiltrated the vaunted Apple ecosystem by injecting malicious software into popular Chinese mobile apps.
[su_note note_color=”#ffffcc” text_color=”#00000″]Gavin Reid, Vice President of Threat Intelligence, Lancope :
“Before this unfortunate incident the Apple App Store had the industry-leading track record releasing more than a million apps with only 5 known bad. This is due to their strong application verification process – contrast that with open Android policy resulting in daily malware. In this case there is little the user can do to protect itself. The fix for this is better care from the application developers to security and better verification from Apple. Apps like WeChat are used all over the world and there are people running apps developed in China everywhere.”
Due to internet restrictions and longer download times – people in China are used to using local services. This should be a wakeup call for software developers to really pay attention to their source materials. Mostly US and European developers download Xcode directly from Apple making a repeat of the same problem unlikely.”[/su_note]
[su_note note_color=”#ffffcc” text_color=”#00000″]John Gunn, VP of Communications, VASCO Data Security :
“Apple’s security strategy is so well engineered that its biggest danger may be the false sense of security that it gives developers and the massive number of iPhone users.
“Hackers are always after money or passwords. This is again another reminder that collectively we need to move beyond 20-year old password technology and embrace modern authentication techniques that are far more secure and actually easier for users than traditional passwords.”[/su_note]
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.