According to TechSpot , while Apple regularly boasts about its strict App Store vetting process, a fake LastPass app has slipped through the security fence and appeared on the platform, raising concerns about user data security.
The app is called 'LassPass Password Manager', with obvious spelling errors in the name and incorrect developer. However, it has attempted to copy LastPass' branding, logo, and interface, enough to confuse users.
Surprisingly, the app was available on the App Store for weeks before being taken down, despite multiple signs that it was fake. It is unclear who removed the app from the store, whether it was Apple or the developer.
Fake LassPass App on App Store
The appearance of 'LassPass' on the App Store comes as Apple is opposing the European Union's (EU) Digital Markets Act (DMA), which allows third-party app stores to host iOS apps. Apple is concerned that the DMA could compromise the security of iPhone users, including the risk of counterfeit apps.
The exact function of LastPass once installed is unclear, but it does not appear to be directly linked to LastPass, so it cannot copy login credentials from the official password manager. However, it is highly likely that the developer will steal sensitive personal information such as passwords, emails, addresses, and payment card information, as the app has a paid subscription option.
This incident serves as a reminder to users of the importance of being careful when downloading apps, even from reputable platforms like the App Store. Always double-check information such as the developer, app name, description, and reviews before installing. Additionally, only use official apps from reputable publishers and stay away from apps that appear to be fake.
Source link
Comment (0)