Apple is removing malicious code added to a number of apps commonly used on iPhones and iPads in China.
Hackers had created a counterfeit version of Apple's software for building iOS apps and the attack is thought to be the first large-scale attack on Apple's App Store.
The affected apps include Tencent's popular WeChat app, a music downloading app and a car hailing app similar to Uber.
Apps compiled using the software had the ability to steal data about the users and send it to servers controlled by the hackers.
The attackers could also send fake alerts to infected devices to trick owners into revealing passwords and other information.
On the official WeChat blog, Tencent said the security issue affects an older version of the app, and that newest versions weren't impacted, adding that an initial investigation showed that no data theft or leakage of user information had occurred.
On its website, the firm said: "We believe XcodeGhost is a very harmful and dangerous malware that has bypassed Apple's code review and made unprecedented attacks on the iOS ecosystem."
Christine Monaghan, a spokesperson for Apple, said: "We are working with the developers to make sure they're using the proper version of Xcode to rebuild their apps."
Return to internet news headlines
View Internet News Archive