Security researchers have discovered a vulnerability in iPhones and iPads that allows attackers to install fake apps that take the place of legitimate ones. FireEye, a mobile security company based in California, said the problem, which it calls “Masque Attack,” is possible because iOS doesn’t check the validity of the app’s bundle identifier. The only apps resistant to the attack are those that are preinstalled. Users can protect themselves against such attacks by only installing apps from Apple’s app store or trusted enterprise store.”]
Source: https://www.csoonline.com/article/2845324/vulnerability-leaves-iphones-open-to-fake-app-attack.html