Tuesday, September 22, 2015

Apple explains how to check for the presence of malicious Xcode additions

Last week was held under the banner of the first large-scale attack on the iOS. Attackers distribute a modified version of the web tool for the development of Xcode, dubbed XcodeGhost. Applications that are created using XcodeGhost without the knowledge of the developers themselves, supplemented by the malicious code, which is due stole personal data of users of iOS-devices. Although infected applications have already been removed from the App Store, Apple has decided to issue instructions for developers to verify their version of Xcode for malicious add-ons.

If you downloaded Xcode from the Mac App Store, or from Apple, then you have nothing to worry about, since OS X automatically checks the signature of the application code and compares it with the code Apple. If you for some reason can not install Xcode from official sources, then you should take the following steps.

To authenticate version of Xcode need to run the following command in a terminal on the system with the included Gatekeeper:

spctl --assess --verbose /Applications/Xcode.app

/ Applications / - the directory where you installed Xcode. This command performs the same test as the Gatekeeper when testing application code. On checking it may take a few minutes.

If you have the official version of Xcode from the Mac App Store, you will get the following response:

/Applications/Xcode.app: Accepted

source = Mac App Store

If the utility downloaded from Apple, the result is the following:

/Applications/Xcode.app: Accepted

source = Apple


/Applications/Xcode.app: Accepted

source = Apple System

If you receive any other response, or specify a different source, then you should stop using this version of Xcode and download the official application from the Mac App Store, or from Apple.

No comments:
Write Comments

Hey, we've just launched a new custom color Blogger template. You'll like it - https://t.co/quGl87I2PZ
Join Our Newsletter