Fake app offered to read users' heart rate and asked them to place their fingers on the Touch ID sensor to trick them in paying $90 for it. Already removed by Apple.

@j_opdenakker I had a senior manager in the iTunes department tell me this type of scamming is impossible in iOS and refused to refund more than 90 days of charges to my mom's account, ~$1500. The total for a year was over $10k.

Also said if we ever dispute again they'll cancel her Apple ID

Kind of bizarre, but they make a lot of money off these predatory purchases/scams so there's no real incentive to remove it.

Crazy part is that on new phones there is no TouchID, so it would happen instantly with FaceID
Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.