Pinterest Stumbleupon Whatsapp

An iOS app called “Instaquotes Quotes Cards for Instagram” has been found to have a piece of Windows malware. However, it’s worth noting that many iOS users will never have a problem resulting from this because it has no effect on the iOS device itself. Also, users with a Mac will not notice any problems resulting from this piece of malicious code.

Users who organize their apps on Windows can be affected by the worm embedded in the app. The exact name of the worm is Worm.VB-900. The first people to report it assumed it was a false positive, but upon further review, it is a very real piece of Windows malware hidden away in an iOS app.

Apps from iTunes come in packages called .ipa files. These packages can contain any number of files that make the app work. When you sync your device to iTunes, the entire package is copied to your PC. If one of those files is malware, it will reside on your PC, and can cause problems.

Thankfully, this particular worm is quite old, and most antivirus software should have little issue removing it. Still, if it could happen with this app, another worm could certainly slip through the cracks again and it could be something worse.

The app has since been removed from the App Store, so you will not be able to download it until it is fixed. Let this serve as a warning that just because an app is meant for your iPhone, it could still contain harmful files for your PC or other device.


Source: Cnet

Image Credit: Screenshot by Topher Kessler/CNET

  1. Alex Livingstone
    August 3, 2012 at 9:47 pm

    That is ridiculously sneaky. I wonder how many people encountered the attack..

  2. Gideon Waxfarb
    July 27, 2012 at 9:43 pm

    So how exactly does this get run on a Windows machine? An ipa file doesn't sound like one that could get executed.

  3. Olga
    July 27, 2012 at 3:42 pm

    Deliver an A-platform virus into a B-platform app (and taking into consideration the purpose) - hm! It sounds quite smart to me.

    • Dave LeClair
      July 30, 2012 at 5:18 pm

      It is crafty and quite malicious!

  4. MerVzter Balacuit
    July 27, 2012 at 12:42 am

    i know there is no perfect security, but this is nothing like installing jailbroken apps which is sometimes not safe.. its too late to say that were safe

    • TornZero
      July 27, 2012 at 8:15 pm

      If you mean to say "pirated apps" such as those found on Installous, then you'd be more accurate because the apps uploaded to Installous' sources are less regulated. Any modified IPA could find its way up.

      Apps and tweaks on the Cydia Store and many of its repositories, however, are just as safe, if not safer than apps on Apple's App Store to even a basic user. Some Cydia Store apps were even created specifically to fix iOS security flaws (such as the exploitable PDF bug in 4.0's Safari after JailbreakMe 2.0 was released, which Apple didn't fix until quite a while after Cydia had a tweak for it).

  5. Gian Singh
    July 26, 2012 at 7:15 pm

    Ohh that is screwed up.

  6. Yang Yang Li
    July 26, 2012 at 5:31 pm

    Great to see Microsoft Security Essentials being used! Ever since discovering MSE, I have stopped paying for expensive antivirus softwares.

    • Dave LeClair
      July 30, 2012 at 5:17 pm

      Good choice! As long as it's keeping everything secure no reason to spend extra!

  7. DonLefler
    July 26, 2012 at 5:17 pm

    oh, that's just sneaky. PC users have no idea charging their iPhones can threaten their machines.

Leave a Reply

Your email address will not be published. Required fields are marked *