Honestly any app that you download from anywhere is not safe until and unless you did write it's code and took part in it's making.
The thing is , all of the apps do have to ask users for permission for sharing literally everything! What do they do but? Nothing ! They just keep a track of all your contacts, all your files , your voice , your face and everything, at the end of the day I feel like the companies are themselves competing to generate a user database and how can you trust even the app when the Google incognito mode is itself tracked !
Goodness, first the FBI and then them ! What you can do is use small and trusted apps which are not asking you for permissions or asking for just the necessary permissions! That's the kind of world we are living in but people honestly are paying more for apple for security and privacy and if they are doing that then what about the android?
Topic: Flaws in Google and Apple App Stores (Read 206 times)
The ratio of scam apps on Android vs Apple is overwhelming, but the above goes to show that Apple’s controls are not infallible. One should always head-off to the corporate site to check the existence and proper links to the apps they download. Failing that, logic and prudence should be a safeguard for cases such as these.
I agree with @DdmrDdmr that says to check the website and download from that site to prevent scam apps. It does not take too long to know if the apps are a scam or not by visiting the site.Google Playstore have thousands of apps which we do not know if the apps are safe or it just scams us and steals our data. Being careful will be necessary when you want to download any apps or software, not just for your mobile phone but for your computer or laptop.
I guess the problem comes with quantity. The sheer number of apps on both of those platforms makes it hard (if not impossible) to have them checked and verified before being published. Unfortunately, I don't see a way that those platforms can apply more security, they can only act when the scam is discovered. People will just have to trust their own research before using any of those platforms and maybe check on this forum once in a while because for posts like this.
Yeah, those scammers are doing those things because they are sure of the end result of it that their sweat to create such deluding apps will be paid off once someone will take their bait. Unfortunately, there have been lots of people who have been fooled regarding those apps and most of them have only one agenda that is to scam the users who downloaded them. Some crypto apps on those markets need to be banned as soon as someone discovered them as a scam so that no one will become a victim anymore.
I think this extends to any electronic wallet. There are many copy cats out there and people could easily fall into these traps. Metamask is also another big one where you need to check that your download starts from the legit site. Unfortunately, I have come across several place where everything looked the same except the Metamask wallet wasn't coming from the legit source. Just be wary of anything you download off the internet.
This is what the app's pitch looked like on a phone browsing the Apple Store:
See: https://www.reddit.com/r/TREZOR/comments/lun0l8/fake_trezor_ios_app/
The ratio of scam apps on Android vs Apple is overwhelming, but the above goes to show that Apple’s controls are not infallible. One should always head-off to the corporate site to check the existence and proper links to the apps they download. Failing that, logic and prudence should be a safeguard for cases such as these.
See: https://www.reddit.com/r/TREZOR/comments/lun0l8/fake_trezor_ios_app/
The ratio of scam apps on Android vs Apple is overwhelming, but the above goes to show that Apple’s controls are not infallible. One should always head-off to the corporate site to check the existence and proper links to the apps they download. Failing that, logic and prudence should be a safeguard for cases such as these.
Maybe this sounds Stupid of me but I have never like or plan using Apple stuffs, Not because they are Expensive (Compared to other gadgets) but i just felt like i don't like them.
Many of my friends tells me how secure this is but not enough for me to satisfy.
And now having this Issue ? this proves me that my decision is correct as Apple Store or Playstore is the same as vulnerable from hackers .
Many of my friends tells me how secure this is but not enough for me to satisfy.
And now having this Issue ? this proves me that my decision is correct as Apple Store or Playstore is the same as vulnerable from hackers .
Verify every app that you're about to download on Google Play and Apple store. Think like you don't trust every app that's existing there and every app that asks for your private keys and passphrases.
You don't send that to any of those apps because many of those scammers are using the brand's name of those popular wallets. It's been existing but Google can't filter them immediately unless there will be reports filed.
You don't send that to any of those apps because many of those scammers are using the brand's name of those popular wallets. It's been existing but Google can't filter them immediately unless there will be reports filed.
I only have few mobile wallet app that I use, I avoid using untrusted applications for security purposes. If I have to use a wallet app, I make sure to make a research or ask for opinions of some of my friends if they have used it or not. Do not store huge amount of money in mobile apps, and also avoid using your passphrase if not needed.
yes that is what i was telling to myself also , But also we Knew how Good hackers are , they can enter in everything they wanted to target.
Looks like the quality of the Apple app store is gradually going down to the level of Google Play where you can upload fake and copy apps easily. Just a few days ago I found a thread of a game developer that complains about a fake game that copied his game, not only one but more than 5. I wonder how they filter them.If those types of apps even managed to get past of the policies of the App Store, who knows what more if it is in crypto space?
Problem is these apps will still exist and will only be removed if one managed to report it. Imagine how many people already downloaded the said app before a report comes up.
Before using any cryptocurrency wallet, it's mandatory to verify its authenticity and status.
On Feb. 24, an app called “Trezor” was quietly uploaded to the Apple App Store. It appeared to be a crypto app from the popular bitcoin hardware wallet, it linked to the legitimate trezor.io website and privacy policy.
The developers labelled it “Data Not Collected” with Apple’s “nutrition labels,” which are meant to let users of the app store easily identify what information apps will gather about them and make decisions accordingly.
The app was leveraging the Trezor brand to execute one goal – steal users’ Trezor passphrases and private keys via phishing
The app was small and simple, consisting of three screens, but did nothing other than steal your Trezor passphrase or seed phrase.
Be careful of what you download on Google and Apple app store they ate not safe anymore.
On Feb. 24, an app called “Trezor” was quietly uploaded to the Apple App Store. It appeared to be a crypto app from the popular bitcoin hardware wallet, it linked to the legitimate trezor.io website and privacy policy.
The developers labelled it “Data Not Collected” with Apple’s “nutrition labels,” which are meant to let users of the app store easily identify what information apps will gather about them and make decisions accordingly.
The app was leveraging the Trezor brand to execute one goal – steal users’ Trezor passphrases and private keys via phishing
The app was small and simple, consisting of three screens, but did nothing other than steal your Trezor passphrase or seed phrase.
Be careful of what you download on Google and Apple app store they ate not safe anymore.
I wonder what the "Nutrition Labels" show that are being collected by the app, or is it "Data Not Collected”. And how are such apps able to pass through app security check to list on established stores. No verification done?
All the more reason to not buy Apple products because they are arrogant to say that they have a strict requirements for their apps but they can't even catch that these app is a phishing attempt. I had a good relation with Apple back when they still didn't remove auxiliary parts of the phone which defeats the purpose and I find more capable Android phones pop up of the market that are better in any aspect.
Before using any cryptocurrency wallet, it's mandatory to verify its authenticity and status.
On Feb. 24, an app called “Trezor” was quietly uploaded to the Apple App Store. It appeared to be a crypto app from the popular bitcoin hardware wallet, it linked to the legitimate trezor.io website and privacy policy.
The developers labelled it “Data Not Collected” with Apple’s “nutrition labels,” which are meant to let users of the app store easily identify what information apps will gather about them and make decisions accordingly.
The app was leveraging the Trezor brand to execute one goal – steal users’ Trezor passphrases and private keys via phishing
The app was small and simple, consisting of three screens, but did nothing other than steal your Trezor passphrase or seed phrase.
Be careful of what you download on Google and Apple app store they ate not safe anymore.
Everyone has to be careful while entering their credentials in any website. During boom period scammers pops up like a mushroom. Better to use official apps and services. On Feb. 24, an app called “Trezor” was quietly uploaded to the Apple App Store. It appeared to be a crypto app from the popular bitcoin hardware wallet, it linked to the legitimate trezor.io website and privacy policy.
The developers labelled it “Data Not Collected” with Apple’s “nutrition labels,” which are meant to let users of the app store easily identify what information apps will gather about them and make decisions accordingly.
The app was leveraging the Trezor brand to execute one goal – steal users’ Trezor passphrases and private keys via phishing
The app was small and simple, consisting of three screens, but did nothing other than steal your Trezor passphrase or seed phrase.
Be careful of what you download on Google and Apple app store they ate not safe anymore.
Yes, specially Google Play store, it's very very dangerous to just download apps their without checking and verifying. @Rikafip maintains a thread, List of fake wallets on Google Play, 2 active at the moment!. Maybe everyone can check it out, and if you see some fake apps, you can report it as well so that we can track and report them and hope that it will be taken down by Google and Apple.
Quote
There’s just one problem: Trezor doesn’t have an app.
Sorry but this should be the first thing that every people come up to their mind with when they saw that "Trezor app" in app store or whenever it is. Trezor only comes up with a hardware wallet, meaning it only has physical appearance and doesn't have any app or web wallet, except for their website.
My opinion about this is that it's scary, because they might do the same thing to popular Bitcoin wallet like Coinomi and Electrum, and if you're not wary enough, just installing quickly from play store or app store, no doubt your private keys or passphrase keys would be stolen to you without you knowing.
So always be careful guys and double check your apps that you're going to install especially if you're going to store your money on it.
I am quite surprised that Apple let this kind of harmful apps in their store, I mean they have the most strict requirements when it comes to app development but here we are, seeing this phishing app operational on their store, I thought that Apple has a security that is rightfully boasted but considering that the flaws found in them are critical, I am having second thoughts.
yes that is what i was telling to myself also , But also we Knew how Good hackers are , they can enter in everything they wanted to target.And apple is now not safe from them anymore.
That is why I am not easily downloading any crypto wallets in any app store. Even MEW app in playstore have a fake apps and it is better if we access the wallet in their legit website. But be careful as there are also phishing links that has same name with their links. Better if we do report those fake apps on the market apps so they dont attract more victims as they thought this Trezor app is the original one.
yes that is what i was telling to myself also , But also we Knew how Good hackers are , they can enter in everything they wanted to target.
Looks like the quality of the Apple app store is gradually going down to the level of Google Play where you can upload fake and copy apps easily. Just a few days ago I found a thread of a game developer that complains about a fake game that copied his game, not only one but more than 5. I wonder how they filter them. 
So Now even Apply security cannot withhold our safeties from this hackers? I had been using Apple Ipad for 2 years now but did not encounter any trouble from it because i trust the security features of Apple , But having this news now i start to doubt my safety and will consider making more aware and distance from all downloading i will do from here, Google is one place that surely being part of the hackings , but Apple? lol I am disappointed.
And apple is now not safe from them anymore.
I am quite surprised that Apple let this kind of harmful apps in their store, I mean they have the most strict requirements when it comes to app development but here we are, seeing this phishing app operational on their store, I thought that Apple has a security that is rightfully boasted but considering that the flaws found in them are critical, I am having second thoughts.
yes that is what i was telling to myself also , But also we Knew how Good hackers are , they can enter in everything they wanted to target.And apple is now not safe from them anymore.
I guess the problem comes with quantity. The sheer number of apps on both of those platforms makes it hard (if not impossible) to have them checked and verified before being published. Unfortunately, I don't see a way that those platforms can apply more security, they can only act when the scam is discovered. People will just have to trust their own research before using any of those platforms and maybe check on this forum once in a while because for posts like this.
Google and Apple should employ people to review anything that is listed in their platform rather than acting after a scam took place. It is much better in terms of customer compliance and it will save a fortune for their customers if they can monitor all the application that is listed in their play store. The only option right now is to report them and if anyone can create a thread here is scam accusation about fake applications we could report them in groups and take them down ASAP before anyone loosing money.
I am quite surprised that Apple let this kind of harmful apps in their store, I mean they have the most strict requirements when it comes to app development but here we are, seeing this phishing app operational on their store, I thought that Apple has a security that is rightfully boasted but considering that the flaws found in them are critical, I am having second thoughts.
Jump to: