Skip to main content
CybersecurityHacking

Apple Thwarts $2.2bn in App Store Fraud with AI-Driven Defenses

Bright office setting with a laptop and smartphone, conveying a sense of security and technology.

"As the digital landscape expands, malicious actors continue to evolve their methods, often using deceptive tactics to target consumers and legitimate businesses," Apple said in a blog post published on May 20.

Scale of blocked fraud: $2.2bn in one year, $11.2bn in six

Apple reports it blocked more than $2.2bn in fraudulent App Store transactions in the last year. That figure is part of a longer trend: across the past six years Apple says it has blocked more than $11.2bn in fraudulent App Store transactions. Those totals are set against an ecosystem Apple describes as large and commercially active — the App Store contains over 680,000 apps used to sell goods and services, and therefore presents a common target for fraudsters and cybercriminals.

Account-level defenses: preventing account creation and deactivating abusers

The company said its systems blocked 1.1 billion fraudulent customer account creation attempts over the last year, preventing threat actors from taking an early step in the fraud chain. In addition to blocking new fraudulent accounts, Apple deactivated 40.4 million existing user accounts for fraud and abuse and banned nearly two million user accounts suspected of involvement in fraud. Those actions, Apple said, stop many attempts before they can be used to harm customers or to perpetrate further attacks inside the ecosystem.

Payments and stolen credentials: stopping cards and suspicious transactions

Apple also disclosed a separate set of payment-oriented protections: the company prevented the use of 5.4 million stolen credit cards to make fraudulent purchases. Taken together with the transaction totals Apple cites, these figures highlight multiple points of intervention — from account creation through payment authorization — where the firm says it actively blocks illicit activity.

Developer accounts and pirate storefronts

Fraud prevention extended beyond customer accounts. During 2025 Apple terminated 193,000 developer accounts over fraud concerns. The company also said it blocked 28,000 illegitimate apps distributed on pirate storefronts; many of those apps were clones of legitimate applications and were designed to deliver malware. Apple framed those takedowns as protecting both users and legitimate developers by restricting illicit distribution channels that clone, alter, or weaponize apps.

Human review, machine learning and AI models

Apple described its approach as "multilayered," combining expert human review with machine learning. The company said it has built AI models to accelerate fraud detection and to quickly evaluate new deceptive tactics used by fraudsters. "To outpace these challenges, Apple continuously improves its multilayered defenses, leveraging a combination of expert human review and advanced machine learning technologies to detect and stop malicious activity," the company wrote.

What this means for end users, developers, and threat actors

  • End users: The company’s interventions — $2.2bn in blocked transactions, 1.1 billion blocked account creations, and 5.4 million stolen cards prevented from being used — are presented as direct protections against financial loss and credential abuse.
  • Developers: Apple’s removal of 193,000 developer accounts and blocking of 28,000 pirate-store apps is framed as a defense of legitimate apps from cloning, alteration, and malware distribution.
  • Threat actors: Apple acknowledges continued "large-scale attempts to create fraudulent accounts," and its reported numbers indicate those attempts are substantial in volume even as the company blocks and disables accounts at scale.

Apple’s published figures underline an expansive and active conflict over trust inside its ecosystem: substantial sums and billions of account events are being intercepted, and the company says it will keep refining human-plus-AI defenses to stay ahead of evolving tactics. Whether the arms race between detection methods and new deceptive approaches will change the calculus for attackers or simply push them toward new targets is a question the company’s own numbers implicitly raise — and one Apple says it is working to answer by continuously improving its multilayered defenses.

Original story: https://www.infosecurity-magazine.com/news/apple-blocked-2bn-app-store-fraud/