Apple Responds to YiSpecter Malware, Says Fix Was Implemented in iOS 8.4 - MacRumors
Skip to Content

Apple Responds to YiSpecter Malware, Says Fix Was Implemented in iOS 8.4

by

Over the weekend, security site Palo Alto Networks detailed a new iOS malware that's able to infect non-jailbroken Apple devices using enterprise certificates and private APIs. It originated in Taiwan and China and was installed through several methods, including hijacking traffic from ISPs, an SNS worm on Windows, and offline app installation.

Called YiSpecter, the malware is able to download, install, and launch apps, doing things like replacing existing apps, displaying advertisements in legitimate apps, changing Safari's default engine, and uploading user information to remote servers.

yispecterpopupad

A popup ad that was able to install YiSpecter on iOS devices

In response to the detailing of YiSpecter, Apple has released an official statement to The Loop explaining that YiSpecter is only able to target iOS users who are running an older version of iOS that have also downloaded content from untrusted sources.

"This issue only impacts users on older versions of iOS who have also downloaded malware from untrusted sources. We addressed this specific issue in iOS 8.4 and we have also blocked the identified apps that distribute this malware. We encourage customers to stay current with the latest version of iOS for the latest security updates. We also encourage them to only download from trusted sources like the App Store and pay attention to any warnings as they download apps."

Apple implemented fixes for YiSpecter in iOS 8.4, so iOS 8.4.1 and iOS 9 are immune to the malware. Users who want to avoid being targeted by YiSpecter should make sure to upgrade to the latest version of iOS and as always, should avoid downloading apps from unverified sources.

Tags: Malware, YiSpecter

Popular Stories

iOS 26

iOS 26.4 Adds Two New Features to CarPlay

Tuesday March 24, 2026 1:55 pm PDT by
iOS 26.4 was released today, and it includes a couple of new features for CarPlay: an Ambient Music widget and support for voice-based chatbot apps. To update your iPhone 11 or newer to iOS 26.4, open the Settings app and tap on General → Software Update. CarPlay will automatically offer the new features so long as the iPhone connected to your vehicle is running iOS 26.4 or later....
Read Full Article25 comments
Apple Business hero

Apple Unveils 'Apple Business' All-in-One Platform

Tuesday March 24, 2026 8:53 am PDT by
Apple today announced Apple Business, a new all-in-one platform that unifies device management, productivity tools, and customer outreach features. The service is designed to be a consolidated replacement for several of Apple's existing business-focused offerings, including Apple Business Essentials, Apple Business Manager, and Apple Business Connect. It provides organizations with a single...
Read Full Article46 comments
AirPods Pro Firmware Feature

Apple Releases New Firmware for AirPods Pro 3, AirPods Pro 2 and AirPods 4

Tuesday March 24, 2026 12:31 pm PDT by
Apple today released new firmware for the AirPods Pro 2, AirPods Pro 3, and the AirPods 4. The firmware has a version number of 8B39, up from 8B34 on the AirPods Pro 3, 8B28 on the AirPods Pro 2, and 8B21 on the AirPods 4. There is no word on what's included in the firmware, but Apple has a support document with limited notes. Most updates are limited to bug fixes and performance...
Read Full Article80 comments

Top Rated Comments

Kaibelf Avatar
Kaibelf
137 months ago
Cue the people who claim that Apple is "forcing them to upgrade" by patching things in new software and who are complaining because they can't seem to get over using iOS6.
Score: 21 Votes (Like | Disagree)
AngerDanger Avatar
AngerDanger
137 months ago
"Apple implemented fixes for YiSpecter in iOS 8.4, so iOS 8.4.1 and iOS 9 are immune to the malware."
Macrumors:
You need to fix this. Not only is it a run-on sentence, I can't tell if fix was in 8.4 or 8.4.1
Actually, it's not; it's a compound sentence. Compound sentences are made out of two independent clauses (e.g. "Apple implemented fixes for YiSpecter in iOS 8.4" and "iOS 8.4.1 and iOS 9 are immune to the malware"). Between the two clauses, the coordinating conjunction "so" is inserted. As the first clause clearly states, the fix was implemented in iOS 8.4.
Score: 12 Votes (Like | Disagree)
Iconoclysm Avatar
Iconoclysm
137 months ago
exactly. 8% is still literally tens of millions of users. you can just close your eyes and pretend they aren't there, or that it's only 8%, but they are there.
Meanwhile, Android and Windows Phone have left phones just a year old with no further patches...forever.
Score: 6 Votes (Like | Disagree)
D
deviant
137 months ago
You mean the < 8% of people still on iOS7?
exactly. 8% is still literally tens of millions of users. you can just close your eyes and pretend they aren't there, or that it's only 8%, but they are there.
Score: 4 Votes (Like | Disagree)
T
Tubamajuba
137 months ago
Yet they are forcing upgrades. Why can't Apple copy Google Play Services where devices don't have to receive OS updates in order to obtain security updates?

There are literally millions of users out there with vulnerable software because Apple doesn't support them or the user can't upgrade to the latest OS.
Why have I been seeing so many articles about Android lately that mention all these security holes that need OS updates to patch them? If it were as simple as issuing an update through Google Play Services, wouldn't all of these holes be a moot point?
Score: 3 Votes (Like | Disagree)
Kaibelf Avatar
Kaibelf
137 months ago
Does this affect iOS 7, iOS 6, iOS 5, iOS 4, or iOS 3?

Lots of iOS devices cannot upgrade past those.
A device that cannot upgrade past iOS3 isn't really Apple's target market. Of course, I guess going back FOUR GENERATIONS isn't enough for some people. Those people are more than welcome to go use any of the myriad Android devices that lose support after a few months.

MacRumors has become the go to spot for Language and Literature experts....
We've really arrived in a sad place when simple middle school grammar is considered "language and literature expertise."
Score: 3 Votes (Like | Disagree)
Read All Comments