The US Federal Bureau of Investigation (FBI) is warning mobile device users of a new technique used by cybercriminals to promote malicious beta versions of apps on popular app storefronts. In a law enforcement bulletin, FBI outlined that when these apps are installed on mobile devices they are then used to steal personal information and more, adding that threat actors submit the malicious apps to the mobile app stores as “betas,” meaning that they are in an early development phase and are meant to be used by tech enthusiasts or fans to test and submit feedback to developers before the software is officially released.
This less thorough code review process is insufficient to uncover the hidden malicious code that activates post-installation to perform various hostile actions, FBI explained, adding that the malicious apps enable theft of personally identifiable information (PII), financial account access, or device takeover.
Source: Qatar News Agency