https://securelist.com/fakewallet-cryptostealer-ios-app-store/119474
China’s Apple App Store has been compromised by a wave of fraudulent cryptocurrency wallet applications designed to steal users’ digital assets, according to recent security research. Multiple malicious apps masquerading as legitimate cryptocurrency wallets successfully bypassed Apple’s app review process and were made available for download to Chinese users. These fake applications closely mimicked popular wallet interfaces and branding to deceive victims into entering their private keys or seed phrases, which attackers then used to drain cryptocurrency holdings from compromised wallets.
The infiltration represents a significant security failure for Apple’s traditionally stringent app vetting process, particularly concerning given the App Store’s reputation as a more secure alternative to other mobile platforms. Security researchers identified several sophisticated tactics employed by the malicious apps, including cloned interfaces of well-known wallet services and social engineering techniques that convinced users to input their sensitive recovery information. Once victims entered their credentials, the stolen data was transmitted to attacker-controlled servers, enabling immediate theft of cryptocurrency funds with little chance of recovery due to the irreversible nature of blockchain transactions.
Apple has since removed the identified malicious applications from the Chinese App Store and is reportedly investigating how they circumvented the review process.