New Threat Research: MalSync Teardown: From DLL Hijacking to PHP Malware for Windows  

Read Threat Research

Search

Fake “Premium” FaceApp

With FaceApp gaining in popularity, scammers have found a new way to monetize ads by using a fake “Pro” version to lure users who are looking to download the popular app. Researchers have discovered two primary methods that scammers are using to attract potential victims. The first method is by using a website that offers the premium version for free. In reality, the scammers trick users into clicking through countless offers for other paid apps, surveys, subscriptions and ads. The malicious app will also ask the victim’s permission to enable notifications that will lead to other fraudulent offers. During testing, researchers tried downloading the “Pro” version and only ended up with the free version of FaceApp. The second method used by scammers is through the use of fake YouTube videos that promote download links for the free “Pro” version of FaceApp. The shortened download link redirects users to install other apps before they are ultimately taken to the free version. The shortened links not only are used to deliver malicious ads but have the potential to install malware on the device with a single click.

Analyst Notes

Users who wish to use either the free or premium versions of FaceApp are recommended to only download the app through the Google Play Store or iTunes. Any other version should be considered as suspect and not accessed.