SCAMMERS have discovered a clever new way to install dodgy apps onto people’s iPhones that steal their cash.
According to cyber security buffs, attackers are managing to get around Apple’s protections to distribute fake cryptocurrency apps to iOS users.
1
Once it’s installed on a device, the malicious software rinses people’s crypto wallets without their knowledge.
It’s part of an organised crime campaign known as “CryptoRom”, researchers at British outfit Sophos reported on Wednesday.
“This style of cyber-fraud is a well-organised, syndicated scam operation,” the team wrote in a blog post.
“It uses a combination of often romance-centred social engineering and fraudulent financial applications and websites to ensnare victims and steal their savings after gaining their confidence.”
According to Sophos, the trick takes advantage of a loophole in Apple’s TestFlight, a tool created to help developers distribute their beta apps to users before they are released to everyone on the App Store.
By installing the TestFlight iOS app, iPhone and iPad owners can try out early versions of apps before anyone else.
However, the service – which is used by tens of thousands of people across the globe – comes with a catch.
Apple’s App Store is guarded by all sorts of protections that stop fraudsters from listing their malicious apps there.
However, those same safeguards are not applied to TestFlight, exposing beta testers to scammers.
According to Sophos, cyber crooks are now exploiting this security oversight by creating malicious, fake cryptocurrency apps and distributing them via TestFlight.
Most read in News Tech
Developers can invite up to 10,000 testers to install the dodgy apps and any iOS user with TestFlight installed can download them.
The apps pose as legitimate cryptocurrency wallets or exchanges – but people Bitcoin and other currencies is simply stolen by the scammers.
“Some of the victims who contacted us reported that they had been instructed to install what appeared to be BTCBOX, an app for a Japanese cryptocurrency exchange,” Sophos wrote.
“We also found fake sites that posed as the cryptocurrency mining firm BitFury peddling fake apps through TestFlight.
“This threat is still very active, and continues to impact victims around the world, in some cases costing them their life savings.”
Android users are also being targeted by the malware, researchers added.
Apple has previously urged TestFlight users not to download and install software from unknown sources.
The company has a webpage with tips on how to avoid scams.
Apple declined a request for comment.
Best Phone and Gadget tips and hacks
Looking for tips and hacks for your phone? Want to find those secret features within social media apps? We have you covered…
We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at [email protected]
This post first appeared on Thesun.co.uk
