Apple has discovered an application that was fraudulently posing as the well-known LastPass application to deceive users and download an application they were not looking for. As a result, this fraudulent application has been completely removed from the Apple App Store.
It is common for many scammers and cybercriminals to try to impersonate the profile of an official application in order to attract the most unsuspecting users to their networks. However, Apple’s strict controls mean that these types of applications do not last long in their ecosystem. In this way, the bitten apple company ensures the digital security of its users within the Apple digital environment.
Few days of activity
As TechCrunch explains, an application that impersonated both the app icon and the interface design of LastPass landed on the App Store on January 21st. It was a blatant case of fraud, and if it remained active until February 8th, it was because it had residual traffic and the alarms did not go off earlier. However, after detecting the case, the application was promptly removed.
It is always important, even within usually secure environments like Apple’s App Store or Android’s Google Play Store, to watch out for what kind of apps you download on your device. Not all developers may have good intentions, so it is always important to check other users’ reviews, see how long the app has been active in the environment, and verify if the creators are trustworthy if you have doubts.
Replacing LastPass
It is always ironic that there can be victims of deception looking for an application that is precisely designed to improve users’ cybersecurity, as LastPass provides secure access to various accounts without the need to use passwords, which are registered in their system and verified through an extension that you install in your browser.
In fact, in recent times, LastPass has also made efforts to strengthen its security, especially after the breach suffered in the past. For this reason, the company required users to have a minimum of 12 characters in the master password for their service, a number higher than the usual 8 requested on different sites for registration.