Teacher
Professional
- Messages
- 2,670
- Reaction score
- 814
- Points
- 113
The weakening of Apple's monopoly also reduces user security.
In accordance with new EU laws, Apple introduces the ability to install applications from third-party sources, which caused concern among experts after the publication of a report on the security of iOS applications.
In its report, Promon investigated the ability of iOS apps to withstand repackaging attacks( repacks), when an attacker modifies an app to run it on devices without authorization. The survey covered the 100 most downloaded apps in the world, with the total number of downloads exceeding 4.7 billion over the past year.
The results showed that out of 100 apps, 93 (93%) were running in repackaged form. Out of the 7 apps (7%) that didn't start, 2 apps crashed for reasons unrelated to repackaging detection. The remaining 5 apps crashed for unknown reasons, which may include repack detection.
Promon warns that introducing the ability to install from third-party sources (Sideloading) on iOS opens up a wide range of opportunities for a new wave of malware, Trojans, and fake apps. Promon highlights the need for Apple to strengthen its app repackaging prevention strategies to minimize the spread of fake apps.
The report also indicates that encryption of apps distributed through the App Store can be relatively easily circumvented. An attacker only needs to run an encrypted application on the device, after which they can extract and modify its unencrypted content. This trend highlights the ability to decrypt apps in modern versions of iOS and encourages developers not to rely solely on the App Store's DRM as the primary means of protecting apps.
Taking into account all the changes and potential threats, Apple users in the EU should exercise caution, carefully select applications to download and delete unnecessary ones, and install the latest iOS updates in a timely manner to eliminate security vulnerabilities.
In accordance with the European Digital Markets Act (DMA), Apple is required to allow the use of third-party app stores or the installation of applications bypassing the App Store until March 5, 2024. The Digital Markets Act (DMA) is legislation that targets the monopoly of tech giants. The goal of the legislation is to increase competition in the sector by eliminating some of the advantages of dominant players, and to make it easier for startups to compete.
In accordance with new EU laws, Apple introduces the ability to install applications from third-party sources, which caused concern among experts after the publication of a report on the security of iOS applications.
In its report, Promon investigated the ability of iOS apps to withstand repackaging attacks( repacks), when an attacker modifies an app to run it on devices without authorization. The survey covered the 100 most downloaded apps in the world, with the total number of downloads exceeding 4.7 billion over the past year.
The results showed that out of 100 apps, 93 (93%) were running in repackaged form. Out of the 7 apps (7%) that didn't start, 2 apps crashed for reasons unrelated to repackaging detection. The remaining 5 apps crashed for unknown reasons, which may include repack detection.
Promon warns that introducing the ability to install from third-party sources (Sideloading) on iOS opens up a wide range of opportunities for a new wave of malware, Trojans, and fake apps. Promon highlights the need for Apple to strengthen its app repackaging prevention strategies to minimize the spread of fake apps.
The report also indicates that encryption of apps distributed through the App Store can be relatively easily circumvented. An attacker only needs to run an encrypted application on the device, after which they can extract and modify its unencrypted content. This trend highlights the ability to decrypt apps in modern versions of iOS and encourages developers not to rely solely on the App Store's DRM as the primary means of protecting apps.
Taking into account all the changes and potential threats, Apple users in the EU should exercise caution, carefully select applications to download and delete unnecessary ones, and install the latest iOS updates in a timely manner to eliminate security vulnerabilities.
In accordance with the European Digital Markets Act (DMA), Apple is required to allow the use of third-party app stores or the installation of applications bypassing the App Store until March 5, 2024. The Digital Markets Act (DMA) is legislation that targets the monopoly of tech giants. The goal of the legislation is to increase competition in the sector by eliminating some of the advantages of dominant players, and to make it easier for startups to compete.