FireEye warned yesterday that all apps could be replaced except iOS pre-installed applications.
The company has verified the vulnerability in various recensions of iOS and told Apple the problem existed as long ago as July 26. It dubbed the vulnerability Masque Attacks and warned that apps such as banking and email apps can be hacked.
Despite Apple was informed months ago, no action seems to have been taken, which led FireEye to issue an urgent advice notice.
Users can protect themselves by not installing apps from third parties, other than Apple’s App Store. It also warns people not to install apps from pop up.
And if iOS alerts you with the phrase “untrusted app developer”, don’t trust the app.
There’s more information at the FireEye page, here.