The specifications to be distributed on the App Store are rigorous, but that does not prevent malicious applications from finding a place there. This is the case with these ten apps adwares landmarks by Human Security specialists. Apple removed them from its store, but if you ever downloaded them, now’s a good time to clean up.
The apps in question are: Loot the Castle, Run Bridge, Shinning Gun, Racing Legend 3D, Rope Runner, Wood Sculptor, Fire-Wall, Ninja Critical Hit and Tony Runs. These applications display galore to the detriment not only of users, but also of advertisers: their bundle ID do not match their publication names. Clicks and impressions therefore seem to come from more profitable software categories.
The App Store is not the only one affected, there are 75 of the same barrel on Android. Security researchers estimate that they have collectively reached 13 million downloads. According to Human Security, this is the third wave of a campaign called Scylla. The first, “Poseidon”, dates back to August 2019 and the second, “Charybdis”, from the end of 2020.