Spokesperson downplays the threat posed by malware that can mimic an app
Apple has no knowledge yet of an iOS user suffering from a “Masque Attack,” a company spokesperson said Thursday, responding to recent reports that a malware infected app could open a pathway to user accounts.
Cyber security experts at the firm FireEye disclosed the method of attack on Monday, in which a hacker can email or text message a link to a popular app, such as a “New Flappy Bird” game. The link uploads malicious software that replaces an existing app with an identical looking facade and opens a pathway to login credentials and sensitive data.
“We’re not aware of any customers that have actually been affected by this attack,” Apple said in a statement to the San Jose Mercury News, adding that customers should never download apps from unknown sources outside of the App Store.
The U.S. Computer Emergency Readiness Team, which operates under the Department of Homeland Security, issued a warning Thursday about the attack.