Summary:
-
Fraudulent Apps Detected
A recent report by cybersecurity firm Group-IB has revealed that two dangerous apps were found in the Apple App Store and Google Play Store, part of a larger fraud campaign known as βpig butchering.β -
How the Scam Works
Victims are lured into funding their accounts on these apps, which initially show promising returns. However, when users attempt to withdraw their funds, they discover they are unable to access their money. -
Social Engineering Tactics
The scam begins with social engineering, where attackers build trust over weeks through dating apps, social media, or cold calls before recommending the fraudulent trading app. -
App Store Exploitation
The iOS app was on the App Store for several weeks before being removed, while the attackers switched to phishing websites to distribute malicious software, leveraging the trust users place in official app stores. -
Detection Challenges
The fraudulent apps employed tactics to evade detection, such as functioning as downloaders that retrieve web apps, and requiring users to trust the developer profile manually before launching. -
Need for Vigilance
The findings underscore the importance of thorough app store reviews and user education to prevent such scams from deceiving unsuspecting victims.
Read more at: Forbes | Group-IB Blog
!