Apple’s TestFlight is a platform that allows developers to deploy beta apps to customers before they are launched to the general public on the App Store. Scammers, on the other hand, have been leveraging the platform without Apple’s knowledge to spread dangerous programs.
An organized criminal operation is known as “CryptoRom” has been spreading bogus cryptocurrency apps to iOS and Android users, according to security firm Sophos (via ArsTechnica). While sideloading makes it easy to install apps outside of Google Play on Android, iOS users can only download and install apps via the App Store in principle.
Unfortunately, the scammers have discovered that they can develop and distribute malicious apps to iPhone and iPad users using an official Apple platform (in this case, TestFlight).
Scammers Using Testflight To Install Malware iOS Apps
Because the program is designed for testing pre-release software, developers may invite up to 10,000 testers to install their beta apps, which pass through the App Store approval process.
As a consequence, Apple has no knowledge that the fraudsters are spreading a harmful program as a beta version, and anyone having TestFlight installed on their iOS device can download it. Installing an app using TestFlight is simple, as the developer may establish a public download link rather than sending each user an email invitation.
The research also discloses that scammers use harmful web applications (websites that may be installed to an iOS device’s home screen and operate as apps) to get around the App Store approval process.
Apple underlines that customers may prevent fraud by avoiding downloading and installing any software from unknown sources, even if it’s provided through TestFlight because altering how TestFlight operates would hurt developers. The business has a page on its website with information on how to avoid phishing and other frauds.