Apple recently responded to a known security issue in iOS that has been dubbed “Masque Attack.” In its simplest form, the attack can be used by would-be hackers to try to trick an end user into installing dangerous malware on his or her iPhone. It takes advantage of the iOS Enterprise Developer platform, which allows enterprise departments to distribute apps to employees outside of the Apple iTunes App Store. That can be dangerous, since Apple typically advises you only install apps directly from the store.
After researchers have uncovered a serious iOS 8 flaw that lets hackers substitute legitimate apps installed on an iPhone with malware apps meant to steal user data, prompting the U.S. government to issue a warning on the matter, Apple has commented on this type of attacked — dubbed “Masque Attack” — telling iMore the problem has not affected iOS users yet. “We designed OS X and iOS with built-in security safeguards to help protect customers and warn them before installing potentially malicious software,” an Apple spokesperson said. “We’re not aware of any customers that have actually been affected by this attack. We encourage customers to only download from trusted sources like the App Store and to pay attention to any warnings as they download apps. Enterprise users installing custom apps should install apps from their company’s secure website.”