Sophos, a cybersecurity firm, has revealed that operators of high-yielding investment schemes known as ‘pig butchering’ have discovered a way to evade security measures in Google Play and Apple’s App Store.
Sophos also revealed that the pig butchering is a grand scheme perpetrated by an organized Chinese-based threat group called “ShaZhuPan.”
The group’s scamming antics previously revolved around malicious advertising, social engineering, and fake websites, but it’s currently exploring Google Play, and Apple play store because the victim can easily trust the scammer using these platforms.
The scammers also target the victim’s social media accounts with a specific focus on Facebook and Tinder profiles; they usually try to convince their victims to download fake high dividends-yielding applications.
Adopting a psychological approach
On social media channels like Facebook and Tinder, scammers use fake flamboyant female Facebook profiles to target male users. The scammer’s profile most times portrays all shades of a luxurious lifestyle.
Once they have the victims’ trust, the scammers introduce themselves as relatives to certain bigshot financial research companies, then introduce the victim to its fake application on the play store or apple play store.
According to Sophos, the malicious apps used for the fraudulent act are MBM_BitScan and Ace Pro on the Apple App store and BitScan on Google Play Store.
How scammers bypass App store sign-up process
The ShaZhuPan gang usually submits an app signed with a valid certificate issued by Apple; once the app gets approval to be featured on the benign server and App store repository, the scammers will then connect it to a malicious server.
The victim sees a cryptocurrency trading interface when the app is launched on their phone due to the dictates from the malicious server. Except for the user’s deposit, everything shown on the app is fake.
Because the scammers are fleecing a small number of targeted victims, the negative reviews and reports for the malicious app aren’t getting the attention of the security protocols on the application store.
However, Sophos stated that more of such pig butchering schemes might come up because it gives scammers access to high yields in a short time, and victims mostly have a heightened sense of legitimacy attached to using apps on Google play stores.
Sophos added that it is essential always to check app reviews, developer details, company profiles, and privacy policies before downloading any application.
Main content of the article:
Sophos, a cybersecurity firm, has revealed that operators of high-yielding investment schemes, known as “pig butchering,” have found a way to bypass security measures in Google Play and Apple’s App Store. The threat group, ShaZhuPan, is based in China and uses social engineering, malicious advertising, and fake websites to scam victims. They use fake profiles on Facebook and Tinder to portray a luxurious lifestyle, then introduce the victim to a fake high-yielding application on the App Store. Sophos warns to always check app reviews, developer details, company profiles, and privacy policies before downloading any app. Scammers bypass the App Store sign-up process by submitting an app with a valid certificate and then connecting it to a malicious server. Victims are then scammed out of their deposits.