04 December 18, 14:58
Quote:Two apps from Apple's iOS App Store were tricking users into unknowingly making payments for in-app purchases that were hidden behind a seemingly legitimate app feature.
The two apps, called "Calories Tracker app" and "Fitness Balance app," used a dodgy payment mechanism disguised as a fingerprint scanner that would collect health metrics to generate diet recommendations based on a supposed personal calorie tracking algorithm according to a Reddit post.
Moreover, on the fingerprint scanning screen, the apps would tell users that the scanner is used to "Create personalized diet and other stuff by your fingerprint."
"Only moments after the user complies with the request and places their finger on the fingerprint scanner, the apps then display a pop-up showing a dodgy payment amounting to 99.99, 119.99 USD or 139.99 EUR," says security researcher Lukas Stefanko.
Source: https://news.softpedia.com/news/maliciou...4082.shtml
![[-]](https://www.geeks.fyi/images/collapse.png)
