ADVERTISEMENT
site_logo
  • Campus
  • Happening
  • Opinion
  • People
  • News
  • #BeInspired
  • Careers
  • 40 under 40
  • Exams
  • What The FAQ
  • Videos
    • Straight Up
    • Odisha Literary Festival 2020
    • Campus Convo
    • Careers After Corona
    • Express Expressions
    • Q&A With Prabhu Chawla
    • ThinkEdu Awards 2020
  • Web Stories
  • edex_worksEDEXWORKS
ADVERTISEMENT
Cyber Security

Published: 17th May 2021     

Cyber security researchers identify hackers stealing money through 167 fake Android and iOS apps

Some apps included an embedded customer support chat option. When researchers tried to communicate with the support teams using this, the replies they received used near-identical language

Edex Live
Edex Live
f_icon t_icon i_icon l_icon koo_icon whatsapp_icon email_icon Google News

Share Via Email

android

Representative Image

Cyber-security researchers have identified a stash of 167 counterfeit Android and iOS apps being used by hackers to steal money from people who believe they have installed a financial trading, banking or cryptocurrency app from a trusted organisation. Researchers at cyber-security firm Sophos investigated the fake apps and found that many were very similar. The attackers targeted users through dating sites and lured victims into installing money-stealing apps disguised as popular brands.

Some apps included an embedded customer support "chat" option. When researchers tried to communicate with the support teams using the chat, the replies they received used near-identical language. The researchers also uncovered a single server loaded with 167 fake trading and cryptocurrency apps. Taken together, this suggests that the scams could all be operated by the same group.

"The fake applications we uncovered impersonate popular and trusted financial apps from all over the world, while the dating site sting begins with a friendly exchange of messages to build trust before the target is asked to install a fake app. Such tactics make the fraud seem very believable," explained Jagadeesh Chandraiah, a senior threat researcher at Sophos.

In one of the schemes investigated, the scammers befriended users via a dating app, setting up a profile and exchanging messages with individual targets before attempting to lure them into installing and adding money and cryptocurrency to a fake app. If targets later tried to withdraw funds or close the account, the attackers simply blocked their access. In other cases, targets were caught through websites designed to resemble that of a trusted brand, such as a bank.

The operators even set up a fake "iOS App Store" download page featuring fake customer reviews in order to convince targets they were installing an app from the genuine App Store. "To avoid falling prey to such malicious apps, users should only install apps from trusted sources such as Google Play and Apple's app store," Sophos advised.

telegram
TAGS
Cyber Security

O
P
E
N

ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
telegram
ADVERTISEMENT
Write to us!

If you have campus news, views, works of art, photos or just want to reach out to us, just drop us a line.

newsletter_icon
Mailbox
edexlive@gmail.com
fb_icon
Facebook
twitter_icon
Twitter
insta_icon
Instagram
ADVERTISEMENT
Facebook
ADVERTISEMENT
Tweets by Xpress_edex
ADVERTISEMENT
ADVERTISEMENT

FOLLOW US

The New Indian Express | The Morning Standard | Dinamani | Kannada Prabha | Samakalika Malayalam | Cinema Express | Indulgexpress | Events Xpress

Contact Us | About Us | Privacy Policy | Terms of Use | Advertise With Us

Home | Live Now | Live Story | Campus Trip | Coach Calling | Live Take

Copyright - edexlive.com 2023. All rights reserved. Website Designed, Developed & Maintained by Express Network Private Ltd.