26 'FakeWallet' Apps Exposed on Apple App Store Targeting Crypto Users

A recent discovery has highlighted concerns about the security of mobile cryptocurrency wallets on the Apple App Store.

Researchers have identified at least 26 'FakeWallet' apps that were available for download, with many mimicking the designs of popular wallet services such as MetaMask, Ledger, and Trust Wallet. These apps can redirect users to phishing pages or trick them into entering their recovery phrases, allowing hackers to gain access to sensitive information and funds.

The apps use subtle typos and stretched spellings in their names to evade automated checks by Apple, making it difficult for users to detect the imitations. The Asia-Pacific region has been particularly targeted, with several of the impersonated wallets having a strong user base in China, Hong Kong, Taiwan, and Southeast Asia.

The discovery raises concerns about the security culture surrounding mobile wallet adoption. Many users enter their seed phrases into their phones during onboarding, making them vulnerable to attacks like this. The safest approach remains downloading wallets directly from the provider's website and verifying the developer signature.