That shopping app you downloaded might be fake

Fake news isn’t the only thing that smartphone users should be cautious about these days.

As the holiday shopping season is in full swing, a slew of fake retail apps are appearing in smartphone app stores. These apps, which usually look like official shopping apps from retail brands, install malware on the phones of unsuspecting customers once downloaded. From there, identity and credit card information can be stolen, or downloaded ransomware can remotely lock a user’s phone until they pay up.

Last week, researchers at cybersecurity company RiskIQ released a report estimating that one in 10 apps advertising Black Friday deals was fraudulent.

“This problem has been worse this year than any of the previous years,” said Ian Cowger, security researcher at RiskIQ. “Malicious authors targeting app stores have become much more adept at targeting holidays and other events that can net them users.”

As shopping increasingly moves online, the holiday season has become a traffic boon to shopping apps and websites. This past Black Friday, phone and tablet app shopping hit a record $3.34 billion revenue, an increase of 33 percent from last year, according to an estimate by software and analytics company Adobe. Meanwhile, the number of brick-and-mortar Black Friday shoppers has dropped.

In an interview with CBS News, fashion blogger Michelle Madhok cited the ease of price shopping on mobile platforms. “It’s a click to see what the other prices are,” she said. “Before, you had to drive from store to store to compare prices or go through tons of inserts in your newspaper.”

The RiskIQ report said that five popular shopping brands were the biggest targets for counterfeit apps. The report did not detail which brands were most affected for fear of causing customer confusion or panic, but the Better Business Bureau of Mississippi, which issued a similar warning last week, cited stores such as FootLocker, Nordstrom, Zappos.com and Christian Dior as common targets.

The report, compiled by monitoring about 180 app stores worldwide, pointed to Google Play, AppChina and Baidu as the app stores with the highest number of counterfeit apps.

When asked for comment, Google supplied information on their prevention process for fraudulent apps, which includes automated scanning for spam-like code and the presence of malware, a team of experts who review apps for potential violations, and a user/developer community flagging function. “We take security seriously,” a Google spokesperson said in a statement.

But smartphone users need to stay vigilant. Jocelyn Baird, an editor at consumer safety website NextAdvisor.com, recommends downloading apps from official store websites whenever possible to avoid counterfeits. She said that an app purchase that shows up under an unrelated company name on a credit card statement is another typical warning sign. Baird also suggested reading the app name and description carefully for subtle distinctions from an official brand.

“When in doubt, you can do some Web searching to verify the full name a company uses,” she said. “Be on the lookout for misspellings or poor grammar, which you’re unlikely to see in the description for a real app.”

Cowger also recommended ignoring app reviews as an indicator since these can be forged. He noted that apps that ask for strange permissions, such as access to text messages, credit card information or passwords, should be approached with caution.

And last but not least: “If it seems too good to be true,” he said, “it oftentimes isn’t true.”

News

PCHS career coach Shelley Kaler named ACTE national award winner

Local News

Metro Bank named Moody Area Chamber of Commerce Business of the Year

News

Take to the skies at the 2025 Spray Drone End-User conference

News

Outdoor Alabama: Try Cane Creek Canyon Nature Preserve for a change

News

ALDOT: Prepare for winter weather

News

Ivey invites students to apply for 2025 Summer internship program

News

Winter weather warnings prompt yard, garden preparations

News

Locals named to WSCC President’s, Dean’s Lists

News

Wallace State signs MOU with Samford University

News

Great Grown-Up Spelling Bee returns to CEPA March 6

News

CEPA to debut theater day camp for area students

News

SpringHill Suites Hotel to break ground in Leeds

News

Leeds chamber of commerce hosts luncheon, recognizes community, business leaders

News

‘Remember, Honor, Teach’

News

Area schools receive dictionary project donation

News

St. Clair school board member Scott Suttle named president-elect of state association

News

St. Clair County Farmers recognized

News

Trussville Rotary names December student, teacher of the month

News

Leeds local business campaigns begin Dec. 13

News

Benedictine Sisters to share collection of nativity sets from around the world during Dec. 15 open house

News

Nominations open for Eagle Awards to honor special contributors to Alabama State Parks

News

Retired Brigadier General shares insights on veteran’s issues

News

Panther Pass deadline Dec. 31

News

Celebrating Cranes in North Alabama Jan. 10-12