CP
cyberpings
FraudHIGH

Fraud - FriendlyDealer Mimics App Stores to Promote Scams

MWMalwarebytes Labs
FriendlyDealergambling appsaffiliate marketingscamsmalware
🎯

Basically, scammers created fake app stores to trick people into downloading gambling apps.

Quick Summary

A new scam called FriendlyDealer is tricking users into downloading fake gambling apps through over 1,500 fake app stores. This puts users at risk of financial loss and addiction. Stay vigilant and learn how to protect yourself from such scams.

What Happened

A new social-engineering scam called FriendlyDealer has emerged, targeting unsuspecting users by mimicking official app stores. This campaign operates across 1,500+ fake domains that look like the Google Play or Apple App Store. Users think they are downloading legitimate gambling apps, but they are actually installing web-based applications that redirect them to unregulated online casinos. The operators profit through affiliate commissions whenever users sign up or deposit money on these sites.

The scam is particularly concerning as it exploits the growing issue of gambling addiction, especially during a time when the country is witnessing a significant rise in gambling activities. Users are unknowingly funneled into platforms that lack proper age verification, deposit limits, and consumer protections, which can lead to severe financial consequences.

Who's Being Targeted

The FriendlyDealer campaign targets anyone looking to download gambling apps, particularly those who may not be familiar with the nuances of app installation and online security. By presenting a familiar interface, the scam preys on users' trust in official app stores. The operators have created multiple fake listings for various casino brands, making it difficult for users to distinguish between real and fake offerings.

The campaign's design is sophisticated, as it customizes the experience based on the user's device. For example, Android users see a fake Google Play Store, while iPhone users are directed to a counterfeit Apple App Store. This tailored approach increases the likelihood of users falling victim to the scam.

Signs of Infection

Users may not realize they have been affected until they notice unusual activity related to their gambling habits or finances. Signs of being caught in the FriendlyDealer trap include:

  • Receiving unsolicited notifications from the installed app.
  • Being redirected to unfamiliar gambling sites after clicking on what appeared to be legitimate app listings.
  • Discovering that their personal information has been shared with third parties without consent.

Since the scam does not install traditional malware, the lack of immediate symptoms can lead users to believe their devices are safe, which is misleading.

How to Protect Yourself

To avoid falling victim to the FriendlyDealer scam, users should take proactive measures:

  • Verify App Sources: Always download apps from official app stores. Check for reviews and ratings before installing any application.
  • Be Cautious with Links: Avoid clicking on ads or links that promise easy access to gambling apps. Instead, navigate directly to trusted websites.
  • Educate Yourself: Familiarize yourself with common online scams and how they operate. Understanding the tactics used by fraudsters can help you recognize and avoid them.

By staying informed and cautious, users can better protect themselves from scams like FriendlyDealer, ensuring a safer online experience.

🔒 Pro insight: The scale and sophistication of the FriendlyDealer operation highlight the need for enhanced user education on app security and fraud prevention.

Original article from

Malwarebytes Labs

Read Full Article

Share

Related Pings

HIGHFraud

AI Phishing Campaign - Hundreds of Organizations Compromised

A new AI-powered phishing campaign has compromised hundreds of organizations, exploiting Microsoft cloud accounts. This highlights serious vulnerabilities in cybersecurity defenses. Huntress is taking steps to mitigate the damage.

CyberScoop·
HIGHFraud

Email Fraud - US Sentences Nigerian National to 7 Years

A Nigerian man was sentenced to 7 years for his role in a $6 million email fraud scheme. Victims lost significant amounts due to hacked accounts. This case highlights the ongoing threat of business email compromise.

The Record·
HIGHFraud

March Madness Scams - How to Spot and Avoid Them

March Madness is here, but so are scams! From fake tickets to betting fraud, fans need to be cautious. Learn how to spot these scams and protect your money.

Malwarebytes Labs·
HIGHFraud

Voice Phishing - A New Threat Surfaces in Cybersecurity

Voice phishing is on the rise, now making up 11% of cyber attacks. Mandiant's report reveals a shift from email scams to voice-based tactics. This change poses significant risks, especially for tech companies. Organizations must adapt their defenses to combat this evolving threat.

CyberScoop·
HIGHFraud

Fraud - US Soldier Sentenced for Aiding North Korean IT Workers

A U.S. soldier has been sentenced for aiding North Korean IT workers in a fraud scheme. This operation raised significant national security concerns, resulting in $1.3 million in illicit earnings. The case highlights the vulnerabilities in hiring practices and the risks of identity misuse.

The Record·
HIGHFraud

IRS Phishing Alert - Microsoft Warns 29,000 Users Targeted

Microsoft has alerted users about a phishing campaign targeting 29,000 individuals, exploiting tax season urgency. This poses serious risks to personal and financial data. Organizations are urged to implement protective measures against these deceptive tactics.

The Hacker News·