TL; Fault DR
- Apple’s Developer Enterprise program was used to deceive unexpected victims.
- The bitcoin-related address has received more than $ 139 million.
Fraudsters have defrauded unsuspecting victims of a total of $ 1.4 million, according to a new report. Scammers used fake cryptocurrencies to trick suspects on Tinder. The fraudsters tricked users into downloading fake online apps and extorting money from them using Apple’s Developer Enterprise app for distribution.
Apple uses “Super Signature” to reach potential customers. This application is a leading tool for those who are looking to steal sensitive details. In addition, it allows scammers easy access because they can distribute apps without checking the Apple App Store. They use the Enterprise Signature profile and certificate.
A recent Sophos report shows that hackers have targeted iPhone owners in CryptoRom scams. CryptoRom is a unique virus that can lurk and steal all your information regardless of your device. Android and iOS variants have targeted the scam ahead of the global spread of victims across Asia.
Apple Enterprise app
Apple Enterprise allows an attacker to bypass their app store inspection and share fake apps. This program was just another target in a series of scams. Scammers have misused the signature scheme, which is designed to help people easily submit their applications. In addition, scammers use corporate credentials through remote management tools infected with malware.
You may think that you can distribute signed programs with these certificates outside of your company, but this is not recommended. This certificate is for staff use only and should never be shared with others.
To date, the bitcoin address associated with the scam has received more than $ 139 million. Most of the victims are iPhone users who want to install a mobile device management profile. So, turning their phone into what is called a “managed” device.
Bitcoin scams are on the rise
There have been several scams on Bitcoin in the last few months. In April, an Australian man lost $ 87,000 after falling in love with potions such as cryptocurrency love.
Scammers contact you through fake Facebook profiles and dating apps like Tinder, Bumble and Grindr. They transfer the conversation to messaging apps to introduce their victims before they feel fake security.
A cryptocurrency scammer will try to persuade you to invest in your scheme. They tell the suspicious investor that they need a cryptocurrency trading program. Once installed, the scammers convince them that they will make a profit by investing and withdrawing from the account.
The scammer encourages you to put your money into your scam. When the money arrives, you can not withdraw it. In addition, they advise you to invest more or “pay taxes” to have your money. However, if they refuse, they will withdraw the full amount.