About this tag
The Masque Attack is a technique affecting Apple iOS devices running versions 7.1.1 through 8.1.1 beta, discovered by FireEye researchers. It allows an attacker to replace a legitimate iOS app with malware by tricking users into installing an app from an untrusted source, such as through a phishing link, rather than the official App Store or an enterprise provisioning system. This tag covers discussions and alerts about the vulnerability, its impact on iOS security, and mitigation steps for users and organizations to avoid installing untrusted apps.
-
TA14-317A: Apple iOS "Masque Attack" Technique
Original release date: November 13, 2014 Systems Affected iOS devices running iOS 7.1.1, 7.1.2, 8.0, 8.1, and 8.1.1 beta. Overview A technique labeled “Masque Attack” allows an attacker to substitute malware for a legitimate iOS app under a limited set of circumstances. Description...- News
- Thread
- app store apple attack techniques background monitoring credential theft cybersecurity fireeye installation ios malware masque attack mitigation mobile security phishing root privileges security software update untrusted app user data vulnerability
- Replies: 0
- Forum: Security Alerts