A new wave of malicious iOS applications has been uncovered on Apple’s App Store, disguising themselves as legitimate cryptocurrency wallets to steal users’ sensitive data. The campaign, identified by cybersecurity researchers at Kaspersky and dubbed FakeWallet , has reportedly been active since at least late 2025. According to the findings, at least 26 fraudulent apps were distributed through the platform, impersonating popular crypto wallet services. These apps used cloned logos, familiar branding, and slight variations in names to appear authentic and rank in search results. Their primary goal was to trick users into entering their recovery phrases critical credentials that grant full access to cryptocurrency funds. The campaign appears to have been particularly active in regions like the Chinese App Store, where restrictions on official crypto apps create a gap that malicious actors can exploit with convincing imitations. Fake website impersonating Ledger Source: Kaspersky Af...
I am a technology writer with a focus on cybersecurity. I cover topics such as malware, vulnerabilities, exploits, and security defenses, as well as research and innovation in information security.