Apple says it will alert users who downloaded apps infected with malware from its App Store, it emerged Tuesday.

In an FAQ posted in Chinese and in English on its Chinese website, Apple outlined the steps it is taking with users and developers to both fix the infected apps and keep affected users informed.

"Customers will be receiving more information letting them know if they’ve downloaded an app/apps that could have been compromised," the company wrote, though it did not specify when or how users would be notified.

See also: Everything you need to know about App Store malware

It's still unclear exactly how many apps were affected by XcodeGhost, a form of malware revealed last week and acknowledged by Apple on Sunday. Palo Alto Networks, the company that discovered the issue, identified 39 apps, though other reports suggested the number of affected apps could be much higher.

For its part, Apple said it would publish a list of the 25 most popular apps that featured the malware, though it stopped short of revealing how many total apps were infected.

The list of apps apps identified by security researchers include some of the most popular offerings in China, including WeChat, Angry Birds 2 and Didi Chuxing, a Chinese ride-hailing service. Tencent, the company behind WeChat, has already updated its app with a fix though many of the infected apps remain unavailable for now.

Here's what Apple said on its Chinese site:

We’re working closely with developers to get impacted apps back on the App Store as quickly as possible for customers to enjoy. A list of the top 25 most popular apps impacted will be listed soon so users can easily verify if they have downloaded the latest versions of these apps. After the top 25 impacted apps, the number of impacted users drops significantly. Customers will be receiving more information letting them know if they’ve downloaded an app/apps that could have been compromised. Once a developer updates their app, that will fix the issue on the user’s device once they apply that update.

Security researchers have said the malware could put personal and device information at risk, including Apple IDs and iCloud passwords. Apple said that there no evidence the malware has been exploited — a point security researchers have also made — but denied that Apple IDs and passwords were also at risk.

"We’re not aware of personally identifiable customer data being impacted and the code also did not have the ability to request customer credentials to gain iCloud and other service passwords," the company wrote. "Malicious code could only have been able to deliver some general information such as the apps and general system information."

Apple also said it is "working to make it faster for developers in China to download Xcode betas." The XcodeGhost malware stemmed from a modified version of Xcode — a set of software tools Apple makes available to iOS developers — that was widely available on forums and other websites frequented by Chinese developers.

It is common for developers in China to download Xcode from sources other than Apple, due to slow download speeds.

The company published a lengthy note to developers Tuesday, saying that they should always download Xcode from the Mac App Store or their developer website. The note also offered instructions for checking that their version of the code is one approved by Apple.

h/t: MacRumors