Three fraudulent apps have infiltrated the Play Store and the App Store to rob you

[ad_1]

A vast “pig butchering” scam is rampant on Android and iOS. Discovered by Group-IB researchers, fraudulent applications have slipped onto the Play Store and the App Store and are seeking to siphon off all of users’ savings…

A vast “pig butchering” scam is underway on Android and iOS. Group-IB researchers have indeed discovered fake trading apps on the Google Play Store and the Apple App Store. These fake applications are designed to trap Internet users by promising them fraudulent investments… followed by stratospheric returns.

In this type of scam, the scammers will manipulate the victim by taking the time to create a relationship of trust. Once trust has been established, criminals will encourage the target to invest money. At first, the Internet user will have the impression, supported by false evidence, of winning crazy amounts of money. But, when the victim wants to withdraw their funds, they will realize that their money has disappeared… and so has their interlocutor.

Also read: Fake Chrome, Edge and Firefox updates try to trap the French

Three fraudulent apps at the heart of the scam

As Group-IB explains, the fraudulent apps are part of the UniShadowTrade malware family, which is based on the UniApp framework. This framework helps cybercriminals design Android or iOS apps capable of orchestrating scams. First spotted last May, they are designed to redirect users to fictitious trading platforms. On the Play Store, Group-IB has highlighted two apps, namely Finans Insights and Finans Trader6. They accumulated more than 5,000 downloads before Google intervened. These were financial news feed aggregators.

On the App Store, only one fraudulent application has been identified, SBI-INT. This application made it possible to solve complex algebraic equations, perform advanced mathematical calculations, and represent surfaces or volumes in three dimensions. Via pop-up windows, it could above all relay users to fake sites.

To convince victims to install malicious apps, hackers turned to dating sites like TinderFacebook Dating Badoo or OkCupid.After establishing a romantic relationship in writing, the cybercriminals suggested that the target install an application to earn money. It remained on the App Store for several weeks.

Real platforms copied

To trap investors, UniShadowTrade applications are also capable ofimpersonate legitimate platformsparticularly from the world of cryptocurrencies. Group-IB has posted online the list of entities whose identity is likely to be usurped:

AUR PRO
•biconomynft
•wxjtss
•Xzdl
•Deversi Fi
•Holloway Friendly stock
•GoldEX BLACK
•Fx6
•Befongz
•Clueio
•GOFX
•ZurichFX Limited
•Triltex
•AETO FX
•Aegis
•f-stock
•CHGS FX
•CtrlFX
•Cortex
•Collins
•Dco Market
•LGFX Global
•Meifu Financial
•Mxfx Global
•Dongcai
•Deus
•Decode
•Encounter
•Etofx
•Aipu
•Bestow
•Blue Whale
•COMEX MARKET
•Foxiv
•FREEDOM
•Fuex
•Funda Forex
•Future
•FX Corp
•FocusEX
•FXMX PRO
•Gampara
•GCCKC
•GDW
•GLFXM
•Goafx Brokers
•Gula Capital
•Ifxsix
•IGLON
•Novartis
•OTOFPR
•Reputation Capital

If you use one of these platforms on your Android smartphone or your iPhone, we recommend that you be vigilant and ensure that it is the official version.

Researchers reveal that UniShadowTrade apps have been banned from the Play Store and the App Store in June. Hackers then continued to trick users by spreading their apps through phishing websites. Cybercriminals apparently haven’t slowed down. The scams have a global reach, underlines Group-IB. This is why we advise you to remain cautious.