[joshuaissac]

Here's an example of 18 such apps from 2019: https://www.wired.com/story/apple-app-store-malware-click-fr...

Another from 2018: https://www.zdnet.com/article/top-mac-anti-adware-software-i...

[marcinzm]

The first didn't cause any user issues as I'm reading it except extra data usage. I don't think it even did it in the background but only when the app was running. So I wouldn't even call it malware. Unlike this Android app which showed ads to users outside the app.

The second is Mac not iOS which had a much more relaxed security model.

[joshuaissac]

The article about the 18 apps says that the ads were running in the background.

A Forbes article on the same incident also reports that data was exfiltrated from the infected devices:

> the trojan [...] sent data from the infected device to an external command and control server.