Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Bitcoin Scam App Approved by Apple Robs iPhone User of $600,000+
- Thread starter MacRumors
- Start date
- Sort by reaction score
Hey...can't sell newspapers or get 'clicks' if we're 'factual' or use 'in depth' reporting. You're so old-school....And, isn't WP owned by Bezos????I was not too familiar with how the Trezor wallet works, so I went and looked it up. So there is no simple "passphrase" or online account that that you could provide which would let someone gain access. To access or recover, you need the trezor hardware itself, connect to a PC (or android phone), enter the 12, 18, or 24 words depending on your setup that you are asked to write down during setup, and also a pincode you are supposed to memorize. Knowing this, you are ONLY EVER supposed to enter this information on the trezor itself and NOT on any other computer or phone etc.
Hardware Wallet Recovery Seeds Explained
This guide explains how a hardware wallet recovery seed works and the best ways to secure and utilize the recovery seed.www.thecryptomerchant.com
"As Trezor warns, you should NEVER take a photo of your recovery seed, type the seed into a computer, save it in cloud storage or upload the seed on the internet."
This guy has no argument against Apple and is 100% his own fault... he should have known how to use the Trezor and if entered in all his 24 word recovery keys and pincode into a fake app that imitated a trezor then that kinda defeats the purpose of the hardware wallet. Would have been better off printing out a wallet and keeping in a safe place.
Washington Post makes it sound like he just entered some password, but that was not the case... or entire story is BS.
It's impossible to make software literally idiot proof.
An idiot will find new ways to **** **** up, in about 30 seconds, while "you" (the software developer) are 3-weeks into a 5-week overhaul because of the last thing an idiot did.
Literally all that Apple owes this idiot, is the legal entity that published the app (which he could have found himself if he'd bothered to look at the App Store details page), and he can take them to court.
Shhhhhhhhhhh......you're thinking....using logic. THIS one incident / real or perceived / is supposed to settle all issues concerning the App Store. Please get with the program(ing).
I thougth common sense NOT to place your entire families life savings of $600K into a HIGHLY volatile money vehicle would be used by this guys brain - NOT a phone app.
Seriously .. if ANYONE here had $600K to invest or to earn more money ...
- learning from that Bitcoin type investment company that went bellyup in 30 days because their founder, with THE ONLY decryption died and secured on his laptop with NO WAY to access it!
^ Was that not a better lesson than seeing bitcoin rise and fall $10K in less than 30 days from today was not reason enough.
I understand that, however, I just hope there is some legal remedy... Likely not the case.
I am a strong proponent of the walled garden. I hate the idea of Fortnite/EPIC causing us to have a less secure iOS.
If he didn't buy anything (the app), then he didn't pay any commission (to Apple) and expected Apple to double check without anyone reporting about the app if it was real or fake.
beyond all that, he didn't follow instructions of his hardware wallet to begin with, made the biggest mistake and is now pointing fingers at someone else because he has nothing better to do......sounds like the on going mentality lately.
beyond all that, he didn't follow instructions of his hardware wallet to begin with, made the biggest mistake and is now pointing fingers at someone else because he has nothing better to do......sounds like the on going mentality lately.
You might be onto something here. Perhaps we should get rid of laws and police as well, since not everyone sticks to the law and we’re unable to catch all criminals.
Hell, why stop there. Since we can’t help everyone it would make sense to do away with all social programs.
We can’t travel everywhere, so let’s stop travelling.
Etc. Etc. Etc.
Technically there are legal remedies, but in practice they’re unlikely to be fruitful.
Even when knowing exactly who or what the developer account is registered to, which isn’t that difficult to get with a subpoena, chances are that the person responsible is outside of the reach of the jurisdiction this victim is in.
On a slightly different note, the best one can do in this instance is to remove app and ban the developer.
It’s not realistic for Apple or anyone else for that matter, to check every creative name made up by devs through all against trademarks across the globe or the existence of a company with a similar name for lack of a registered trademark and then verify of the person/entity submitting the app is supposed to use that name, more so when you realise some of the complex subsidiary/affiliate/parent constructions of some companies.
This will always be an “after the fact” kind of enforcement based on complaints or reports no matter who’s running the store.
Hence Apple should not have offered this on their moderated walled garden ecosystem.
this dude probably has many wallets, invested some hard earned USD 100 early, and now 1m$ in environment-destruction-crime-coin is pocket change for him
*Apple only allows the App Store on iPhones*
Apple Defense Force: “Apple needs to do this to protect the user. If there were third party app stores allowed, scammers would run amok and take advantage of the average user!”
*App Store gets compromised and scammers scam a user*
Apple Defense Force: “It’s up to the user to know what they are downloading and to verify it beforehand. It’s not up to Apple to protect the user.”
Apple Defense Force: “Apple needs to do this to protect the user. If there were third party app stores allowed, scammers would run amok and take advantage of the average user!”
*App Store gets compromised and scammers scam a user*
Apple Defense Force: “It’s up to the user to know what they are downloading and to verify it beforehand. It’s not up to Apple to protect the user.”
Why? Because
App Store - Principles and Practices
The App Store is both a safe and trusted place for customers to discover and download apps, and a great business opportunity for all developers.
www.apple.com
It’s our store. And we take responsibility for it.
We believe that what’s in our store says a lot about who we are. We strongly support all points of view being represented on the App Store. But we also take steps to make sure apps are respectful to users with differing opinions, and reject apps for any content or behavior that we believe is over the line...
The five pillars of the guidelines — Safety, Performance, Business, Design, and Legal — require that apps offered on the App Store are safe, provide a good user experience, adhere to our rules on user privacy, secure devices from malware and threats, and use approved business models.
Or is all that just lip service?
Just shows how much you know about banking institutions, inflation, and the government.
Unless Apple publishes all the apps themselves there’s no way for them to guarantee that an app won’t do anything nefarious down the road. Use your brain and not listen to what companies tell you.Why? Because
App Store - Principles and Practices
The App Store is both a safe and trusted place for customers to discover and download apps, and a great business opportunity for all developers.www.apple.com
It’s our store. And we take responsibility for it.
We believe that what’s in our store says a lot about who we are. We strongly support all points of view being represented on the App Store. But we also take steps to make sure apps are respectful to users with differing opinions, and reject apps for any content or behavior that we believe is over the line...
The five pillars of the guidelines — Safety, Performance, Business, Design, and Legal — require that apps offered on the App Store are safe, provide a good user experience, adhere to our rules on user privacy, secure devices from malware and threats, and use approved business models.
Or is all that just lip service?
What do you mean by that? Back them how? By issuing more of the same? At least bitcoin is scarce because its finite. How do you back a dollar (of debt) by issuing another dollar (of debt)?
Ya, there logic is bizarre. They seriously are arguing that a free for all is going to be more safe…. ?!
i must be missing something here! why is this entire focus on Apple and the App Store and NOT about Phillipe Christodoulous using
1. Bitcoin to hold $600K of family financial wealth?!
2. downloading a fake app that resembles what he used to have?!
solutions:
1. Don’t be a nincompoop and hold all that wealth which has ABSOLUTELY NO guarantees I to 1 investment vehicle?! This isn’t 1929 here and he’s a moron for keeping it there still.
Granted many Crypto apps do NOt allow nor even make it easily understandable to transfer your Bitcoin or other crypto currency into another app. Anyone else find that VERY strange for a currency that touts you being in control with no banking bureaucracy?! Hmmm.
2. WHY didn’t this user goto App Store, tap on his Ivón for his iCloud top right hand corner of man App Store page and then select Purchases then finally NOT on this iPhone?! Simple solution that Apple provides.
I’d LOVE to see:
1 why is this news now vs 2 months ago when it happened?! Hmm ePic trial anyone?!
2. what each app icon looks like.
Oh wait remember that guy that pushed for an App Store and spent hours going over developers App Store submissions looking at their app icons with a jewellers’ monocle?!
Scott Forstall. Remember him? The guy many here thought doing so was ridiculous and a waste of time???!
Yeah.
This is nonsense. No gatekeeping process is 100% perfect. Is a bank libel for you getting a check, having them verify it is good, cashing it, and then them finding out it was fake? No you are the one responsible and get a fee. Why should Apple be held to a different standard than a bank who, at least in the US, is heavily regulated?
Last edited: