The crypto fraud application CryptoRom stole 1.4 million US dollars through the use of “Super Signature Service” and the Apple Developer Enterprise Program.
It is reported that fraudsters gain the trust of victims through Facebook and dating platforms (such as Tinder, Grindr, Bumble, etc.), and then lure them to install a fake cryptocurrency application CryptoRom and invest.
The victim installs apps, invests, makes a profit, and is allowed to withdraw funds. After being encouraged, they were forced to invest more, but once they deposited a larger amount, they could no longer withdraw cash. To date, Bitcoin addresses related to the scam have sent more than $1.39 million, and there may be more addresses related to the scam.
According to the report, most of the victims are iPhone users. The report stated that CryptoRom bypassed all security checks in the App Store and remains active every day. The report also stated that Apple “should warn users about installing apps through temporary distribution or through the enterprise configuration system that these apps have not been reviewed by Apple.”
