Is anybody else upset that people are actively making up stories to prop up Apple on HN? Most of what you said is misleading or false:
> Here in Thailand banking apps fraud is rampant
Citation needed (on the "rampant" part).
> Most of the cases are found to be on android devices
Even if it's true most of the phones in Thailand are Android.
> clicking some link that installs some app
Not possible the way you describe it. You need to go through several system screens and popups to install a third party apk file from browser.
> takes control or mobile banking and transfers money from their account
As an app developer I can say, this is probably false. There is no API to do anything like that. Unless we are talking about a 0 day exploit, like iPhone NSO exploits. In that case you need to provide a source.
They are sending detailed instructions to victims on how to install screen recording apps. Users are always warned if their screen is being recorded on both Android and iOS, sideloaded or not. It's a matter of false trust, not sideloading. It's a phishing attack, those people would fall victim in any OS.
The apps are rarely the problem, the goal is to get the user to install TeamViewer or AnyDesk software that has legitimate uses and then get them to visit their bank's site on the computer.
I did, and you conclusions are completely wrong. I updated my comment. Do you seriously think that iOS has no screen recording apps? It's a phishing attack, you can ask the user to screen record using an app-store app and send you the recording.
> Here in Thailand banking apps fraud is rampant
Citation needed (on the "rampant" part).
> Most of the cases are found to be on android devices
Even if it's true most of the phones in Thailand are Android.
> clicking some link that installs some app
Not possible the way you describe it. You need to go through several system screens and popups to install a third party apk file from browser.
> takes control or mobile banking and transfers money from their account
As an app developer I can say, this is probably false. There is no API to do anything like that. Unless we are talking about a 0 day exploit, like iPhone NSO exploits. In that case you need to provide a source.
Let's check your source https://www.nationthailand.com/thailand/general/40024972
They are sending detailed instructions to victims on how to install screen recording apps. Users are always warned if their screen is being recorded on both Android and iOS, sideloaded or not. It's a matter of false trust, not sideloading. It's a phishing attack, those people would fall victim in any OS.