Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Fake LastPass App Sneaks Past Apple's Review Team
- Thread starter MacRumors
- Start date
- Sort by reaction score
Maybe there are two. Don’t know, but it doesn’t matter because fallacious debate is still fallacious debate.
I've been mistakenly calling LastPass LassPass before I found out when I was trying to get the Chrome extension.
Wait. The Dystopian Megalomaniacs Act fanboys said that iOS sandboxing makes nefarious app activity impossible irrespective of where the app came from. So this doesn’t matter. Right?
This is how it works:
Thousands of fake or scam apps submitted to Applestore everyday, one get through and the whole world panic because they obviously installed said app within hours it is alive in store before getting removed.
Talking about overreacting.
Last edited:
Sandboxing is only one part of the equation
Under the new DMA rules in the EU, Apple will still be reviewing even third party app store apps for security concerns, so this oversight on their part, beyond being embarrassing for them, is actually a really big issue, all joking aside
No one ever claimed it was “impossible” (nothing is) but keep trying, I guess. No need to make up lies 🤦♂️
The comparative scale is purely hypothetical. Other stores may implement higher standards and security measures. No store is going to want to be associated as being littered with garbage and malware or nobody will use them. Conversely, up until now Apple hasn't had to compete with other stores, so maybe they aren't trying as hard as they otherwise would in the face of competition.
You on the other hand are the one who suggested a singular breach...
And other app stores would be
a. NOT full of scam apps?
b. Also full of scam apps?
Now, some addition. 1 store full of scam apps plus (n) more stores full of scam apps…
Yields FEWER scam apps? OR a greater number of scam apps? It’s not a hard question to answer.[/b][/b]
And people complain they have to pay core tech fee to Apple if they wanted to use 3rd party.
For your argument to work in your favor, it requires assuming other App Stores will have standards as low as or lower than Apple's. This is absolutely not a given.
The EU thinks we do. Otherwise, they would not have included that exception in the DMA.
Pretty sure some did. But anyway.
This could also be Apple engaging in a clandestine trolling op. Get people wondering what the dangers may be when Apple isn’t able to quickly respond and nuke bad apps.
You contend that there exists a form of control over an app store where content loaded to a repository under that app store’s control can maintain a repository 100% free of scam apps?
I mean, as long as we’re wishing upon a star, why not just come up with an option to Apple Hardware and Apple’s App Store that ACTUALLY improves competition by not trying to cede control in the EU to Apple’s hardware and the Android OS?
Me when my criticism of the apple gatekeepers and their hypocrisy is once again proven to be accurate.
I’m glad I have the clarity of thought to understand that, if something doesn’t meet my needs, I have the ability to find an option that DOES meet my needs. To continually buy things that I didn’t enjoy using would make my life quite unpleasant I’d imagine.
At a rate of 100% free of scam apps? Possibly, but not necessarily likely. At a rate of scam apps lower than Apple's? That's certainly got a fair chance. I don't know why anybody would assume Apple's security standards cannot be surpassed.
It would be enough to conduct a check on the app intended to be uploaded to the App Store:
if the name is similar, with just one or two letters different, to another popular app in the store --> initiate an investigation.
I really have no words; how come no one has thought of such a feature yet?
if the name is similar, with just one or two letters different, to another popular app in the store --> initiate an investigation.
I really have no words; how come no one has thought of such a feature yet?
Someone else was saying here that other App Stores would, by default, do a better job than Apple and wouldn’t allow scam apps at all! Why would a user tend to be more vigilant?
In the end, the number of vigilant users? Doesn’t really matter. While Windows has MILLIONS upon MILLIONS of potentially VERY vigilant users, it doesn’t prevent vulnerable people from being coerced to download malicious applications.
Maybe if someone actually worked in the office they could catch these things. This is definitely a problem of employees who don’t want to go to the office and don’t do any work at home. 😂
If there were more stores, they would all operate pretty much the same way with the same percentage of scam apps. There’s no magical bullet in all of IT and Security Infrastructure that could ever prevent a malicious actor from infiltrating any repository they have a desire to infiltrate.
Unless someone can point me to an app store repository that, currently, has zero scam apps? I mean, if it exists, it must be true that everyone, save for Apple, is using that repository technology?
Last edited: