There are still some people who believe that its devices like the iPhone and iPad are “immune” to malware because of Apple’s walled-garden approach, but over the years this has been consistently proven wrong. Indeed, a recent blog post from the security research company Sophos has uncovered a few new avenues scammers are exploiting.
According to the report, despite Apple’s walled-garden strategy, scammers appear to be using two existing features for iOS. One of them is Test Flight, which allows developers to build apps and conduct beta testing without going through a full app review process.
The report claims that some scammers take advantage of this to create fake websites posing as legitimate companies and then push their app on Test Flight where unsuspecting users download it.
Another method is WebClips, which allow users to add a website to their home screen for quicker access. These scammers even create logos for these websites to mimic those used by legitimate apps, so users who aren’t paying close attention launch them instead, where they might enter their credentials, which can then be stolen.
Both methods can be easily spotted by the tech-savvy, but if you’re unsure, it’s best to make sure all your downloads come directly from Apple’s own iOS App Store.
This article was previously published on Source link