Ad-serving framework conceals malicious behavior from Apple
More than 1,200 iPhone and iPad apps that are downloaded 300 million times every month contain malicious code that secretly steals user data and redirects ads, an application-security firm says. Tt appears that the malicious code was able to, and may have been designed to, evade Apple’s iOS app-screening procedures.
In a new report released yesterday (Aug. 24), Boston-based Snyk says it discovered that the Mintegral software development kit (SDK) for iOS, an in-app advertising framework developed in China, logs the URL requests and request headers made by app users, either of which might include personal information.
Read full post here: