After compromised apps were detected in the AppStore, an analysis yielded the applications were made using a hacked version of the Xcode IDE. Apple is reaching out to developers to make sure they know where to get it.
It’s almost ridiculous these had to have been sent:
Palo Alto Research adds granularity:
More Details on the XcodeGhost Malware and Affected iOS Apps – Palo Alto Networks Blog