Pig Butchering Alert: Fraudulent Trading App targeted iOS and Android users
Essential information
- Published
- 04/10/2024 10:27
- Modified
- 04/10/2024 12:42
- Tags
- 2024-10-04 android cross-platform fraudulent trading apps goldpickaxe ios pig butchering social engineering uniapp unishadowtrade
- Related entities
- 9 observables, 11 techniques (mitre), 2 malware, 1 others
Description
A large-scale fraud campaign involving fake trading apps targeting Apple iOS and Android users across multiple regions has been uncovered. The apps, developed using the UniApp framework, were distributed through official app stores and phishing sites. Unlike conventional mobile trojans, these apps lack typical malicious features, instead creating a facade of legitimate trading platforms to defraud victims. The scam, known as pig butchering, involves cybercriminals luring victims into fraudulent investment schemes, often through social engineering tactics. Victims are tricked into funding bogus trading accounts, ultimately losing their money. The fraudulent apps have been classified under a single malware family dubbed UniShadowTrade, providing multi-language support and targeting victims globally.