What are fake Apps?

Fake mobile apps are applications that mimic the look and/or functionality of legitimate apps to trick unsuspecting users to install them. Once you download and install these applications, they perform a variety of malicious actions. Some fake applications are built to aggressively display advertisements to get revenue, other apps are designed to collect credentials, intercept sensitive data and infect devices. Most of the users find it difficult to distinguish between real and fake apps. Fake apps may also be found on legitimate app stores such as Apple's app store or Google Play store etc., in case if they have not yet been detected or reported.

Some fake apps can take control of your camera, take pictures through your camera, send text messages or steal your personal information. Hackers could also steal a person's identity through a fake app, which can lead to major trouble for the users. The fake applications are not always suspicious looking apps hidden under a weird name. They can also resemble popular apps like WhatsApp and Pokemon Go have appeared on authorized App Store.

Just because an app is in the Official App Store it doesn't ensure that it is a legitimate app!

So how can I know my app is fake?

Check the App Descriptions

Usually under the App descriptions the name of the developer will be shown. Users should make sure the title of the app and the developer's name are spelled correctly. Some of the apps will actually use the brand name as the developer, so if you spot a name which look fishy, do a quick internet search that will tell you if it is legitimate or not. Also consider the blue diamond icon given for each developer by Android. Also check for typing errors in the app description. Bad grammar could also indicate that the app is counterfeit.

Look for spelling mistakes in the title or description. When in doubt, visit the official website of the brand or seller

Permissions

Fake apps tend to ask for more permissions than real ones to get more control over a user's device.

For example: If you download a shopping app and it asks for permission to access your camera, and contacts, that may indicate that the app may have malicious features. Be careful with any app that asks for the administrator permission, as this gives the app the control modify anything and also get complete control of the device and not just your password and storage.

Read the app’s permissions.

Some Apps can access your location, email, phone numbers, or more by default. Make sure the installed apps only have access to features they really  need. If not, better not to download/install it.

Monitor and track the app permissions before after installation of apps.

Make sure to use privacy settings on all your apps and sites.

Check out the reviews

The user reviews of the apps is another useful way to check if the app is real or not. Watch out for apps with very low ratings.

Check other user's reviews and ratings. A fake app will likely have zero reviews while a real app will likely have thousands.

Check the publish date. A fake app will have a recent publish date, while a real one will have an "updated on" date.

Scan through the App Icon

The app's icon is often the first thing you will notice when you are about to download. Fraudsters will often try to copy images of popular apps to trick unsuspecting users to download their fake app. These images will look almost identical to the real one, so if you are unsure, double check the official website of the brand for any minor changes in the icon.

For example look at the WhatsApp options below. At first glance, the logos look similar and the developer's name for each seems to be WhatsApp. But look closer and you will see the key differences that make the fakes stand out.

Beware of the discounts and added extras

Fraudsters will often try to convince you to download their fake app by offering attractive discounts or to make it look like you are getting a good benefit for your money you spend on the app. Similarly, they might charge a small amount for the app and promise lots of extras.

Be suspicious of apps that promise very high shopping discounts.

Always download apps from trusted sources only.

Fake game apps and pirated video games

Be aware about threats associated with fake (pirated) video game apps and unauthorised copying or distribution of copyright protected software. Instead of having fun, you risk infecting your device with malware.

Warning signs to look for

  • Fake apps might use original trademarks
  • Fake apps may redirect customers to illegitimate websites with the purpose of stealing personal and financial information.
  • Fake apps will pose as security updates, and clicking on the links may also lead to your information being stolen.
  • If you receive an unexpected SMS, a strange alert or notification, or unusual requests from what may seem to be your bank or other familiar brand.
  • Be cautious of links you receive in email and text messages that might trick you into installing apps from third party or unknown sources.

How the fake apps bypass the app stores’ review

Gambling or real money gaming apps are not prohibited on the legitimate App Store; however, they are heavily restricted. The fake apps generally do not meet the guidelines of the app store.

These fake apps start as a seemingly normal app, with varying features and functionalities, but we found that the fake apps can be controlled to appear safe. The flowchart below describes as follows.

Stay away from fake apps

With millions of apps available, it is not always easy to spot a fake. But by remaining vigilant, and following the tips above, you can avoid falling victim to fraudsters.

Reference:

https://www.guardsquare.com/en/blog/fake-mobile-apps-growing-threat-2019

https://blog.trendmicro.com/trendlabs-security-intelligence/gambling-apps-sneak-top-100-hundreds-fake-apps-spread-app-store-google-play/

https://gbhackers.com/9-fake-apps-google-play/

https://blog.trendmicro.com/fake-apps-courtesy-of-agent-smith/

https://www.europol.europa.eu/activities-services/public-awareness-and-prevention-guides/be-aware-of-fake-social-media-accounts-and-fake-mobile-apps

https://www.ibtimes.com/how-spot-fake-apps-what-delete-if-you-download-one-2626478

Page Rating (Votes : 15)
Your rating: