iOS Apps Exploiting Touch ID To Scam Users

Harin - Dec 05, 2018


iOS Apps Exploiting Touch ID To Scam Users

Apple has deleted several iOS fitness apps from the App Store after they were found trying to scam users into authenticating payments and charging them a fee from $99 to $139.

Several iOS fitness apps have been deleted from the App Store after they were found trying to scam users into authenticating payments and charging them a fee from $99 to $139.

WeLiveSecurity recently detected some apps’ suspicious activities as they asked users to place their fingers on the fingerprint scanner with the purpose of collecting health data. However, they exploit these Touch ID data to authenticate payments.

A process which usually took users more than a few seconds using complicated passwords, to a few seconds using four or six-digit PIN, was now reduced to about a second using fingerprint methods. Users have reported that at least three fake fitness apps were trying to scam them into using their Touch ID to make a high fee payment. After receiving the complaints, ‘Fitness Balance’, ‘Calories Tracker’ and ‘Heart Rate Monitor’ have then been deleted by Apple. These three apps all used the same method as mentioned above.

Fake Apps

A Reddit user already started a topic about this incident, in which many people commented they were also tricked since the message for payment authentication pop up when they were scanning their finger for heart rate measuring or any other health relating information.

Scam 2

Because a great deal of users uses Touch ID for payment authentication, the fraudsters take advantage of this. Moreover, because of the speed of authentication using Touch ID, before users completely understand what is happening, the payment of $99.99 has already been made.

To make these scammy apps seem legitimate and to ensure people will fall for it, fake reviews were posted. These apps were even rated 5-star on the App Store. Victims trying to contact the developers of the app after being scam would receive a reply saying that it was only a bug and everything will be fixed after an update.

The good news is that this incident can be prevented if users disable iTunes and App Store‘s Touch ID payment authentication feature.

0 Comments

Sort by Newest | Popular

Read more

GameZone: The Ultimate Platform to Play Tongits Online

Review- 4 hours ago

GameZone: The Ultimate Platform to Play Tongits Online

This review will explore what makes GameZone the best place to play Tongits online, diving into its standout features, user-friendly design, and the overall experience it provides to players.

How to Fake GPS Location on iPhone or Android

Mobile- Apr 01, 2025

How to Fake GPS Location on iPhone or Android

If you’re looking for the best fake GPS app for Android or a reliable fake GPS for iPhone, MagFone Location Changer is a top choice. It provides one-click location spoofing, route simulation, and works seamlessly with popular apps.

Top 5 Budget Cameras For Beginners (2025)

Review- 4 hours ago

Top 5 Budget Cameras For Beginners (2025)

These are our top calls based on price and functions.

Steam Deck VS ROG Ally, Which is the Better Handheld PC?

Gadgets- Apr 02, 2025

Steam Deck VS ROG Ally, Which is the Better Handheld PC?

For the price, you really can’t beat the Steam Deck. But to get the top graphics, you need to buy the ROG ally.