Apple Removes Fraudulent Mac Crypto Wallet App After Users Lose Millions
Apple has recently taken down a counterfeit cryptocurrency application from the Mac App Store following reports that users collectively lost approximately $9.5 million. The deceptive app remained available for nearly two weeks, during which over fifty individuals downloaded it and unwittingly provided their private seed phrases, granting hackers direct access to their funds. Notably, three victims each suffered losses exceeding one million dollars.
Impersonation of a Trusted Digital Wallet
The fraudulent application was meticulously designed to mimic the legitimate Ledger Live wallet, a widely recognized hardware wallet for securely storing cryptocurrencies offline. Unlike the genuine Ledger Live, which is exclusively available for download from the official Ledger website, the counterfeit app infiltrated the Mac App Store, exploiting users’ trust in the platform’s security measures.
Upon installation, the fake app prompted users to enter their secret recovery phrases—a request that legitimate services like Ledger Live never make. Once these sensitive details were provided, the attackers swiftly transferred the stolen assets through the KuCoin exchange and utilized mixing services to obscure the transaction trails, complicating efforts to trace and recover the funds.
Potential Legal Repercussions for Apple
The exposure of this significant security breach was brought to light by an investigator known as ZachXBT, who detailed the incident and its ramifications. The investigator highlighted that Apple could face substantial legal challenges, including a potential class-action lawsuit, due to its failure to prevent the malicious app from passing its stringent review process.
Apple has long promoted the Mac App Store as a secure and trustworthy platform, assuring users that all applications undergo rigorous vetting to ensure safety and reliability. This incident, however, underscores a critical lapse in the company’s oversight, leading to severe financial losses for its users. As of now, Apple has not provided a detailed explanation regarding how the fraudulent application bypassed its security protocols.
Broader Implications and Historical Context
This is not the first instance where malicious applications have infiltrated Apple’s ecosystem, leading to significant user losses. In May 2025, reports emerged of fake Ledger Live apps on Mac devices that stole users’ seed phrases, resulting in drained crypto wallets. These phishing campaigns evolved from basic data theft to full-scale wallet drain operations, highlighting the increasing sophistication of cybercriminals targeting cryptocurrency users.
Furthermore, in June 2025, Apple faced a class-action lawsuit over a crypto scam app on the App Store. The lawsuit alleged that Apple facilitated fraud by promoting its platform as safe while failing to block a scam that cost one user over $80,000. The complaint centered on the plaintiff, who downloaded a fraudulent app named Swiftcrypt, trusting its legitimacy due to its presence on the App Store. After transferring funds into the app, the user lost access to her money, a scenario typical of pig butchering scams where fraudsters build trust before vanishing with deposits.
Apple’s App Review Process Under Scrutiny
These incidents have cast a spotlight on Apple’s app review process, raising questions about its effectiveness in safeguarding users against fraudulent applications. Despite the company’s assurances of a secure App Store environment, the recurrence of such scams indicates potential vulnerabilities in the vetting procedures.
In response to these challenges, Apple has taken steps to enhance its app review process and implement more stringent measures to detect and prevent fraudulent applications. However, the effectiveness of these measures remains to be seen, and users are advised to exercise caution when downloading and using cryptocurrency-related applications.
Protecting Yourself from Crypto Scams
Given the increasing prevalence of crypto-related scams, users are encouraged to adopt the following best practices to safeguard their assets:
– Download Apps from Official Sources: Always download cryptocurrency applications directly from the official websites of the service providers. Avoid relying solely on app stores, as fraudulent apps can sometimes bypass security checks.
– Never Share Your Seed Phrase: Legitimate cryptocurrency services will never ask for your secret recovery phrase. Keep this information confidential and offline to prevent unauthorized access to your funds.
– Verify App Authenticity: Before downloading an app, verify its authenticity by checking reviews, developer information, and any available security certifications.
– Stay Informed: Regularly update yourself on the latest security threats and scams in the cryptocurrency space. Follow trusted security researchers and official channels for timely information.
Conclusion
The recent removal of the fraudulent crypto wallet app from the Mac App Store serves as a stark reminder of the persistent threats in the digital asset space. While platforms like Apple’s App Store are generally considered secure, this incident highlights the need for continuous vigilance and proactive measures to protect users from sophisticated scams. As the cryptocurrency landscape continues to evolve, both companies and users must remain diligent in identifying and mitigating potential security risks.
