iOS App Scam
News | 12/05/2018

Apple Security fortress breached – Money Extorted!

About: Hoax iOS Fitness Apps were discovered in Apple App Store that duped unsuspecting users of $99 to $149 USD while claiming to create personalized diet and fitness data for them. Let us read more to know about this iOS App Scam.

| News | Apple Security fortress breached – Money Extorted!

iOS App Scam: Apple Technology exploited by scammers to make money

Bio-metric based security, such as Fingerprint authentication, is proved to be the most secure & convenient measure to safeguard your systems and applications. Fingerprint sensing in particular is becoming increasingly common and product-differentiating feature in smart phones, tablets and PCs. However, fingerprint authentication also raises security concerns that can be best addressed with users vigilance and awareness.iOS App Scam

 

Apple’s Touch ID bio-metric technology was recently abused to beguile fitness freaks. Multiple delusive fitness- tracking apps available at Apple App Store fraudulently used Apple’s touch ID platform to trick users into making payments. To fetch the fitness data users were prompted to scan their fingerprints. On doing so the app activated the dodgy payment mechanism to drain $99 to $140 USD from a saved credit card or other payment sources.

 

These hoax apps – Fitness Balance and Calories tracker were spotted by various Reddit users over the last week. The similarity in the User Interface & functionality of the app depicts that these apps were most likely created by the same developer.

Insights of the iOS App Scam

In order to create personalized diet and other stuffs, the so called fitness tracking apps asked users to place their fingerprint on the Touch ID scanner for 10 seconds. While the user’s finger is still placed on the Touch ID scanner, a pop up is displayed that seeks a payment of $99 to $140 USD. If users continue to place their finger on the pad, the request can be approves almost immediately.iOS App Scam

 

If user refuses to scan their finger, another pop-up appears that prompts users to tap Continue Button to be able to use the app. If the user complies, the dodgy payment procedure is repeated.

iOS App Scam

In order to gain user confidence these malicious apps contained fake reviews that made them appear beneficial. For instance, the Fitness Balance App despite of its malevolent behavior received:

 

  • Multiple 5 –star ratings
  • An average of 4.3 stars &
  • At least 18 faked positive user Reviews

 

Apple after receiving complaints from victims about the malevolent nature of the app immediately removed the app from the app store. Users who tried to contact the developer expecting to receive a positive response only received a generic reply promising to fix the issue in the upcoming version 1.1.

 

Measure to be undertaken to avoid similar iOS App Scam in future

  1. iPhone X users are recommended to activate an additional feature called Double click to Pay that requires users to double-click the side button to verify any payment.iOS App Scam
  2. Users who use other models of iPhone can disable Touch ID payment feature by following this navigation:
  • Go to Settings
  • Select the option Touch ID & Passcode
  • In the window that appears disable User Touch ID for iTunes & App Store.

 On the top of this, users are advised to always read user reviews before installing any app. Positive reviews can be easily faked. Negative reviews are more likely to reveal the true nature of any app.

Hits: 90

Leave a Reply

Your email address will not be published. Required fields are marked *

Did you find the article informative? Yes NO

Get Regular Updates Related to All the Threats

Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.

Virus Removal Guidelines
Plot No 319, Nandpuri- B Pratap Nagar
Jaipur
Rajasthan 302033
Phone: +91 9799661866