Apple says it prevented billions in fraudulent App Store transactions while shutting down millions of fake accounts and malicious app activities.
Apple Expands Its Fight Against App Store Fraud
Apple has revealed that it blocked more than $11 billion in fraudulent App Store transactions over the past six years. The company also prevented over $2.2 billion in suspicious transactions during 2025 alone.
The latest figures highlight the growing scale of fraud targeting mobile platforms and digital marketplaces. As cybercriminals continue exploiting fake apps, stolen payment data, and deceptive subscriptions, major technology companies are increasing investments in fraud detection systems.
Apple said it rejected more than 2 million risky app submissions last year. Additionally, the company blocked over 1.1 billion fraudulent account creation attempts linked to abuse and malicious activity.
Millions of Fraudulent Accounts Removed
The company also terminated approximately 193,000 developer accounts connected to fraud concerns. Meanwhile, Apple rejected more than 138,000 developer enrollment attempts before attackers could publish applications to the platform.
On the consumer side, Apple deactivated more than 40 million customer accounts suspected of fraud and abuse. The company also blocked nearly 2 million user accounts from conducting additional transactions.
Financial fraud activity also increased significantly. Apple stopped more than 5.4 million stolen credit cards from being used across its ecosystem during 2025.
These numbers show how mobile application ecosystems remain a major target for cybercriminal operations worldwide.
Machine Learning Plays a Major Role
Apple stated that it combines human review processes with machine learning technologies to identify fraud patterns and suspicious behavior.
According to the company, advanced fraud detection models help security teams identify emerging attack techniques faster. These systems also analyze relationships between accounts, devices, payment methods, and transaction patterns to detect coordinated abuse.
Modern fraud operations often rely on automation, fake reviews, cloned applications, and large-scale account creation campaigns. Therefore, platform providers increasingly depend on artificial intelligence and behavioral analytics to detect threats at scale.
App Review Rejections Continue to Increase
Apple’s App Review team processed more than 9.1 million app submissions during 2025. The company rejected hundreds of thousands of applications for violating platform policies.
More than 443,000 submissions failed due to privacy violations. Meanwhile, over 371,000 apps were rejected for being misleading, deceptive, or direct copies of existing applications.
Researchers and security teams continue warning users about fake applications that imitate trusted brands, banking apps, cryptocurrency services, and productivity tools. Many of these apps attempt to steal credentials, payment information, or sensitive user data.
Apple also rejected more than 22,000 applications for containing hidden or undocumented features that could potentially bypass review processes.
Fake Reviews and Search Manipulation Remain a Challenge
Fraudulent reviews and search manipulation continue affecting app marketplaces across the industry.
Apple said it processed more than 1.3 billion app ratings and reviews during the year. The company blocked nearly 195 million fraudulent reviews and ratings linked to manipulation campaigns.
Additionally, Apple prevented thousands of deceptive applications from appearing in App Store search results and rankings. The company also identified and blocked more than 28,000 illegitimate apps distributed through pirate storefronts.
Growing Security Pressure on Mobile Ecosystems
The report highlights the increasing security pressure facing modern mobile ecosystems. App marketplaces now handle billions of transactions, global payment systems, and massive amounts of personal data.
For businesses and consumers alike, the findings reinforce the importance of downloading applications only from trusted sources, reviewing app permissions carefully, and monitoring accounts for suspicious activity.
Organizations should also educate employees about mobile threats, fake applications, and phishing risks targeting smartphones and tablets. As attackers shift more operations toward mobile platforms, security teams must extend visibility and protection beyond traditional desktop environments.