CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Apple’s App Store fraud prevention efforts block over $11B in six years with $2.2B in 2025 alone

First reported
Last updated
2 unique sources, 2 articles

Summary

Hide ▲

Apple’s fraud prevention efforts have now cumulatively blocked over $11.2 billion in App Store fraud over six years, including more than $2.2 billion in 2025 alone. The company terminated 193,000 developer accounts, rejected 138,000 enrollments, and deactivated 40.4 million customer accounts due to fraud or abuse in 2025. It also blocked 5.4 million stolen credit cards and banned nearly 2 million user accounts from further transactions. Enforcement expanded through AI-driven detection models, the blocking of 1.1 billion fraudulent account creations, and takedowns of 28,000 illegitimate apps on pirate storefronts.

Timeline

  1. 21.05.2026 18:11 2 articles · 1d ago

    Apple reports $2.2B in blocked App Store fraud in 2025, with expanded enforcement metrics

    Apple reported that cumulative fraud prevention results over six years now total more than $11.2 billion in blocked App Store fraudulent transactions. In 2025 alone, Apple blocked over $2.2 billion in potentially fraudulent transactions and terminated 193,000 developer accounts due to fraud concerns. It also deactivated 40.4 million customer accounts for fraud or abuse, blocked 5.4 million stolen credit cards, and banned nearly 2 million user accounts from further transactions. Enforcement expanded to include AI-driven detection models combining human review and machine learning, the blocking of 1.1 billion fraudulent customer account creations, and takedowns of 28,000 illegitimate apps on pirate storefronts aimed at malware distribution and app cloning.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

Malicious Ledger Live macOS app on Apple App Store facilitates $9.5M crypto theft via seed phrase harvesting

A fraudulent Ledger Live macOS application, distributed through Apple’s App Store under the publisher name ‘Leva Heal Limited,’ compromised approximately 50 users in early April 2026, resulting in the theft of $9.5 million in cryptocurrency assets. The illicit app tricked users into entering seed phrases, granting attackers full wallet control and enabling fund transfers to attacker-controlled addresses. The incident is part of the broader Apple App Store infiltration campaign dubbed FakeWallet, linked to the SparkKitty operation and active since at least fall 2025. Kaspersky identified 26 malicious apps impersonating major wallets (e.g., Ledger, MetaMask, Coinbase) to steal seed phrases and drain crypto assets, with malware delivered via libraries, injected code, or OCR-based recovery phrase theft. Some apps contained latent malicious features awaiting future activation, and the campaign’s modules lacked regional restrictions despite initial targeting of Chinese-speaking users. Apple began removing malicious apps after Kaspersky’s disclosure, freezing implicated KuCoin accounts until April 20, 2026. New details indicate the apps redirected users to fake App Store-like browser pages to distribute trojanized wallet versions, while some non-crypto apps (e.g., games, calculators) acted as placeholders to direct victims to official wallets under regulatory pretexts. Attackers used OCR modules to capture recovery phrases and employed sophisticated phishing tactics, including code hooking during entry and fake verification prompts, to maximize theft efficiency.

Open in new tab