"Scammers Managed to Slip Crypto Apps Onto Apple, Google App Stores"

According to a new report by Sophos, scammers were able to get two fraudulent apps onto both Google's Play Store and Apple's App Store, allowing them to persuade users into making fake cryptocurrency investments. Sophos researchers found Ace Pro and MBM_BitScan in both stores. The apps are part of a scheme known as "pig butchering," in which scammers build relationships with their victims, get them to download an app, and then convince them to deposit money onto the app. Jagadeesh Chandraiah, a senior threat researcher at Sophos, explained that the scammers are suspected of getting past App Store security by connecting the apps to a remote website with benign functionality when they were originally submitted for review. The domain had code for QR scanning to make it appear legitimate to app reviewers. Once the apps were approved, the fraudsters were able to redirect the website to a domain registered in an unnamed country in Asia. This article continues to discuss the malicious apps discovered to be part of a pig butchering scam. 

The Record reports "Scammers Managed to Slip Crypto Apps Onto Apple, Google App Stores"