Month: January 2022

Posted on

Apple celebrates Heart Month with new resources across services





Posted on

Booby-trapped sites delivered potent new backdoor trojan to macOS users


Close-up photograph of a Macintosh laptop keyboard.

Researchers have uncovered advanced, never-before-seen macOS malware that was installed using exploits that were almost impossible for most users to detect or stop once the users landed on a malicious website.

The malware was a full-featured backdoor that was written from scratch, an indication that the developers behind it have significant resources and expertise. DazzleSpy, as researchers from security firm Eset have named it, provides an array of advanced capabilities that give the attackers the ability to fully monitor and control infected Macs. Features include:

  • victim device fingerprinting
  • screen capture
  • file download/upload
  • execute terminal commands
  • audio recording
  • keylogging

Deep pockets, top-notch talent

Mac malware has become more common over the years, but the universe of advanced macOS backdoors remains considerably smaller than that of advanced backdoors for Windows. The sophistication of DazzleSpy—as well as the exploit chain used to install it—is impressive. It also doesn’t appear to have any corresponding counterpart for Windows. This has led Eset to say that the people who developed DazzleSpy are unusual.

“First, they seem to be targeting Macs only,” Eset researcher Marc-Etienne M.Léveillé wrote in an email. “We haven’t seen payloads for Windows nor clues that it would exist. Secondly, they have the resources to develop complex exploits and their own spying malware, which is quite significant.”

Indeed, researchers from Google’s threat analysis group who first uncovered the exploits said that, based on their analysis of the malware, they “believe this threat actor to be a well-resourced group, likely state-backed, with access to their own software engineering team based on the quality of the payload code.”

As the Google researchers first noted, the malware was spread in watering-hole attacks that used both fake and hacked sites appealing to pro-democracy activists in Hong Kong. The attacks exploited vulnerabilities that, when combined, gave the attackers the ability to remotely execute code of their choice within seconds of a victim visiting the booby-trapped webpage. All that was required for the exploit to work was for someone to visit the malicious site. No other user action was required, making this a one-click attack.

“That’s kind of the scary part: on an unpatched system the malware would start to run with administrative privileges without the victim noticing,” M.Léveillé said. “Traffic to the C&C server is also encrypted using TLS.”

Apple has since patched the vulnerabilities exploited in this attack.

The exploit chain consisted of a code-execution vulnerability in Webkit, the browser engine for Apple Safari. Eset researchers analyzed one of the watering-hole sites, which was taken down but remains cached in the Internet Archives. The site contained a simple iframe tag that connected to a page at amnestyhk[.]org.



Posted on

FlickType developer’s App Store lawsuit allowed to proceed




AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.

A developer’s lawsuit against Apple over cloned apps and scams in the App Store is being allowed to proceed, with a court allowing some of the claims to proceed to trial.

The lawsuit, originally filed in March 2021 by FlickType Apple Watch keyboard developer Kosta Eleftheirou, accused Apple of enabling scammers to submit fake clones to the App Store and to use faked screenshots to unfairly profit, as well as suspicious behavior surrounding his own app’s rejections. In a Monday filing, Eleftheirou will be having his day in court.

The filing accuses Apple of multiple issues, ranging from breach of contract and false advertising to unfair competition, fraud, negligence, and negligent misrepresentation. Apple attempted but failed to get the case dismissed in its entirety, after arguing that sufficient facts weren’t stated for each cause of action.

Superior Court Judge Peter H. Kirwan of the Superior Court of California, County of Santa Clara, went through the complaint claims and ruled on each individually. With some complaints found to be valid, the lawsuit is able to proceed.

The court denied Apple’s objections to three causes of action, covering false advertising and unfair business practices, along with the breach of contract claim. Apple’s objections to claims relating to negligence, negligent misrepresentation, and fraud are sustained, with leave for Eleftheirou to amend.

Eleftheirou’s complaint is that scammers can copy the ideas of his apps and create enough of a clone to be accepted by the App Store. Promoted using screenshots and videos, along with false advertising, users would be convinced to download and pay for the fake app, which ultimately didn’t work.

It was thought that since users were tricked to use these apps, they didn’t therefore spend money on Eleftheirou’s apps, and so he was monetarily harmed by the arrangement. It was also alleged that Apple didn’t do enough to deal with the scam apps, as it has no incentive to do so since it earns a profit regardless of whether an app is genuine or not.

Eleftheirou also alleged that he was approached by Apple to acquire FlickType, but after negotiations failed, the app was suddenly being denied in the App Store. It was said by the developer that it prevented him from competing while scam apps were permitted to thrive.

In September, Apple told AppleInsider it denied the lawsuit claims over FlickType, as it was originally disallowed due to an old rule about Apple Watch keyboards. The rule was revised in 2019 to allow keyboards, and that FlickType was resubmitted and allowed into the store.

Eleftheriou disputed Apple’s description of events, insisting on the app being rejected in 2019 after demonstrating it to the Apple Watch team.

“Apple has been massively profiting from their App Store monopoly, by restricting the ability of developers to freely conduct business directly with their users,” Eleftheriou told TechCrunch. “Their anti-competitive practices have gone unchecked for over a decade, and they’re only getting more brazen. I’m now looking forward to presenting my case, and I’m confident the court will see Apple’s practices for what they are.”



Posted on

AppSwarm and Touchpoint to Focus NFT Development Around Metaverse








AppSwarm and Touchpoint to Focus NFT Development Around Metaverse

Posted on

macOS 12.3 will break cloud-storage features used by Dropbox and OneDrive


Psychedelic illustration of two hills.

If you’re using either Dropbox or Microsoft OneDrive to sync files on a Mac, you’ll want to pay attention to the release notes for today’s macOS 12.3 beta: the update is deprecating a kernel extension used by both apps to download files on demand. The extension means that files are available when you need them but don’t take up space on your disk when you don’t. Apple says that “both service providers have replacements for this functionality currently in beta.”

Both Microsoft and Dropbox started alerting users to this change before the macOS beta even dropped. Dropbox’s page is relatively sparse. The page notifies users that Dropbox’s online-only file functionality will break in macOS 12.3 and that a beta version of the Dropbox client with a fix will be released in March.

Microsoft’s documentation for OneDrive’s Files On-Demand feature is more detailed. It explains that Microsoft will be using Apple’s File Provider extensions for future OneDrive versions, that the new Files On-Demand feature will be on by default, and that Files On-Demand will be supported in macOS 12.1 and later.

The warning email that Dropbox sent to Mac users earlier this week.
Enlarge / The warning email that Dropbox sent to Mac users earlier this week.

Dropbox

In addition to integrating better with the Finder (also explained by Microsoft here), using modern Apple extensions should reduce the number of obnoxious permission requests each app generates. The extensions should also reduce the likelihood that a buggy or compromised kernel extension can expose your data or damage your system. But the move will also make those apps a bit less flexible—Microsoft says that the new version of Files On-Demand can’t be disabled. That might be confusing if you expect to have a full copy of your data saved to your disk even when you’re offline.

This isn’t the only time Dropbox and OneDrive have been behind the curve in supporting new macOS features. Both companies only released Apple Silicon versions of their clients within the last couple of months.

The betas for macOS 12.3 and iOS/iPadOS 15.4 add a handful of other notable features, after releases earlier this week that focused mostly on security improvements and bug-fixing. The macOS 12.3 beta adds support for Universal Control, the feature that allows you to seamlessly use multiple Macs or iPads together. Universal Control was announced back in June 2021 at WWDC and was briefly present in the initial run of Monterey betas before being removed almost entirely from the final release. The iOS and iPadOS 15.4 betas add support for FaceID that can be unlocked by users wearing a mask with no Apple Watch required. Two years into a pandemic is a bit late to be adding this feature, but late is better than never.



Posted on

Apple TV+ ‘Bad Monkey’ adds Alex Moffat to the cast




AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.

The Apple TV detective drama “Bad Monkey” has secured another cast member, with “Saturday Night Live” comedian and actor Alex Moffat taking a key role in the production.

Announced in August, “Bad Monkey” is a detective drama starring Vince Vaughn being produced for Apple TV+. After an expansion of the cast in December, the production added one more member in January.

“SNL” cast member Alex Moffat will be taking the role of “Evan Shook” in the drama, described by Deadline as an obnoxious real-estate developer who bought land next to main character “Andrew Yancy,” played by Vaughn. Shook is constructing a “hideous spec house” on the property, which Yancy repeatedly attempts to derail.

Moffat has been a cast member for “SNL” since 2016, and is also known for roles on “Holidate,” “Someone Great,” and “Clifford the Big Red Dog.”

In December, Michelle Monaghan, Jodie Turner-Smith, and Meredith Hagner joined the cast list.

“Bad Monkey” follows Yancy, a former detective demoted to a restaurant inspector, who is drawn into a world of greed and corruption after a tourist discovers a severed arm. It is based on the Carl Hiaasen bestseller of the same name, and is written by Emmy Award-nominated writer Bill Lawrence, who previously worked on “Ted Lasso.”

Apple has yet to reveal when the show will be available to watch on Apple TV+.



Posted on

Major construction industry trends to look for in 2022 [Column] – thereporteronline


Challenges of rising construction costs and labor shortages demand that the construction industry innovate with competitive new ideas. The COVID-19 pandemic has changed how the construction industry does business. Many industry trends continue to emerge from the pandemic and are changing the roles of industry professionals and frontline workers.

Glenn Ebersole

Here are 9 major construction industry trends to look for in 2022:

Shortage of laborers

One very noticeable construction trend is a tremendous increase in the demand for labor. Quality labor is expensive and competitive. More educated workers will be needed to manage and interpret the data produced by new technology.

Remote worksites and mobile access

Mobile applications for construction permit and facilitate work site access including real-time inspections, on-site accountability and accurate measurements taken from a mobile phone camera.

Modular and offsite construction

Modular and prefab construction are experiencing multiyear rapid growth that is not slowing down. The modular construction market, led by the residential sector, is predicted to significantly increase to almost $110 billion by 2025, driven by a lack of skilled labor and an increase in cost-cutting technology.

Increasing material costs

The U.S. Bureau of Labor Statistics reported that the Producer Price Index for construction goods increased by 17% year over year in 2021. Rising interest rates are likely to compound all types of costs, resulting in further pressure on total construction costs. Technologies like drones, AR and BIM will be key in helping to maintain project volume and combat this cost pressure.

Construction management software

Comprehensive construction management software is a vital tool for remaining competitive, building a valuable business and mastering operational efficiency. The best software addresses requirements from RFIs to compiling data, sharing files with mobile teams, budgeting, document storage, payroll and HR, and inventory monitoring.

Protective equipment

The COVID-19 pandemic drastically impacted the construction industry by affecting construction site guidelines with updated state regulations emphasizing cleanliness and strict safety protocols.

There is a growth of new devices capable of identifying common safety issues. For example: wearable items like work boots are connected to Wi-Fi alert others if a person has fallen; material-moving “mules” transport heavy or hazardous materials; specialized robots construct scaffolding or lay bricks autonomously; headsets actively reduce noise pollution and environmental sensors detect noise, heat and wind at construction sites to provide warnings to construction workers about emergency or natural disaster situations.

Green building

Green construction is the expected standard for homebuyers, renters and commercial tenants. Unfortunately, many sustainable and eco-friendly features remain out of reach, despite their long-term savings. This may change over the next decade as eco-tech and sustainable construction become more acceptable and affordable.

Focus on residential projects

The demand for residential housing keeps growing and residential construction spending rose nearly 25% in 2021. Residential starts are expected to increase by 7% in 2022.

Smart cities

These cities are more intricate and interconnected than most megaprojects and require intense planning and development prior to their beginning. The global smart city market is expected to grow 20.5%, reaching $2.5 trillion by 2025.

These industry trends are rapidly changing the market and the construction industry must adopt new practices, leverage new technologies and invest in new projects to reduce risk, win more contracts and enjoy profitability.

Glenn Ebersole is a registered professional engineer and is the Director of Business Development at JL Architects, a West Chester-based architectural firm serving clients locally, regionally and nationally. He can be reached at gebersole@jlarchs.com or 717-575-8572.



Posted on

Microsoft fends off record-breaking 3.47Tbps DDoS attack


Ones and zeros appear to float in the water next to a drowning man.
Enlarge / Drowning in a sea of data.

As Internet attacks go, data floods designed to knock servers offline are among the crudest, akin to a brutish caveman wielding a club to clobber his rival. Over the years, those clubs have grown ever larger. New data provided by Microsoft on Thursday shows there’s no end in sight to that growth.

The company’s Azure DDoS Protection team said that in November, it fended off what industry experts say is likely the biggest distributed denial-of-service attack ever: a torrent of junk data with a throughput of 3.47 terabits per second. The record DDoS came from more than 10,000 sources located in at least 10 countries around the world.

DDoS arms race

The DDoS targeted an unidentified Azure customer in Asia and lasted for about two minutes.

Microsoft

The following month, Microsoft said, Azure warded off two other monster DDoSes. Weighing in at 3.25Tbps, the first one came in four bursts and lasted about 15 minutes.

Microsoft

The second December DDoS reached a peak of 2.54Tbps and lasted about five minutes.

Microsoft

The record beats a 2.5Tbps attack that Microsoft mitigated in the first half of 2021. Previously, one of the biggest attacks was 2.37Tbps in size, a 35 percent increase over a record set in 2018. A separate DDoS in 2020 generated 809 million packets per second, which was also a record at the time.

Packet-per-second DDoSes work by exhausting the computing resources of a server. More traditional volumetric attacks, by contrast, consume available bandwidth either inside the targeted network or service or get between the target and the rest of the Internet. The 3.7Tbps attack delivered roughly 340 million packets per second.

Amplifying the badness

The miscreants behind DDoS attacks have several methods for delivering ever larger floods of data. One is to increase the number compromised computers, routers, or other Internet-connected devices to their arsenal or recruit or compromise large servers that have more bandwidth available to them.

Another method is to implement reflection amplification attacks. In this kind of attack, malefactors point their data cannons at a misconfigured Internet device in a way that causes the device to redirect a much bigger payload to the ultimate target. This latter method is primarily what’s driving the ever-growing DDoS arms race.

DDoSers regularly discover new amplification vectors. In 2014, attacks that abused the Internet’s Network Time Protocol, or NTP, came into vogue when the protocol was leveraged to knock servers belonging to Steam, Origin, Battle.net, EA, and other big game makers offline. This method facilitates a 206-fold increase in throughput, meaning a gigabyte of data delivered by an end device reaches 206 gigabytes by the time it reaches its final target.

In 2018, scofflaws turned to memcachd, a database caching system for speeding up websites and networks. The memcached amplifier can deliver attacks that are as much as 51,000 times their original size, making it by far the biggest amplification method ever to be used in the wild. A year later, DDoSes were reflected off devices using WS-Discovery, a protocol found in a wide array of network-connected cameras, DVRs, and other Internet-of-Things devices.

More recently, DDoSers have abused Microsoft RDP, and they’ve misconfigured servers running CLDAP (short for Connectionless Lightweight Directory Access Protocol) and the Plex Media Server when it runs the Simple Service Discovery Protocol (or SSDP). This can expose devices to the general Internet.



Posted on

How we ended up with the ‘Pregnant Man’ Emoji




AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.

With the release of the iOS 15.4 beta comes the inclusion of the Unicode 14.0 standard with the controversial “Pregnant Man” emoji. Here’s how Unicode U+1FAC3 came about.

The Unicode Emoji Subcommittee

Before discussing the emoji itself, we need to examine its inception by the Unicode Emoji Subcommittee (ESC).

The ESC is the governing body responsible for maintaining and creating new emojis. They propose guidelines, solicit feedback, and codify the standards for vendors to implement.

The working description of ESC, according to the group’s website, says it handles:

  • Updating, revising, and extending emoji documents such as UTS #51: Unicode Emoji and Unicode Emoji Charts.
  • Taking input from various sources and reviewing requests for new emoji characters.
  • Creating proposals for the Unicode Technical Committee regarding additional emoji characters and new emoji-related mechanisms.
  • Investigating longer-term mechanisms for supporting emoji as images (stickers).

The team is a subcommittee of the Unicode Consortium, which comprises all the big tech players you’d expect: Microsoft, Google, Apple, Meta, Adobe, and others. You can find a full list of members here.

ZWJ and constructing emoji

Since Unicode 12.0 was released in 2019, the official Unicode standard has used three genders: Woman, man, and “gender-neutral.” The official definition of the latter has evolved as language has shifted, but in essence, we’re talking about male, female, and non-binary — though you may still see references to the non-binary option by its CLDR name; “person.”

For those of you asking why three genders were mandated to begin with, here is the official rationale from the standard:

It is often the case that gender is unknown or irrelevant, as in the usage “Is there a doctor on the plane?,” or a gendered appearance may not be desired. Such cases are known as “gender-neutral,” “gender-inclusive,” “unspecified-gender,” or many other terms. Other than the above list, human-form emoji should normally be depicted in a gender-neutral way unless gender appearance is explicitly specified using an emoji ZWJ sequence.

In case you don’t speak engineer, that last sentence is saying, “unless it’s a special case, all emoji should be gender-neutral by default.” The neutral emoji combines with other emojis and a special character known as a zero-width joiner (the aforementioned “ZWJ”) to modify the base emoji.

For example, how would we go about making an emoji of a woman gesturing “no” with a medium-light skin tone?

I would start with the “person gesturing no” emoji (U+1F645), then I would add the medium-light skin tone emoji (U+1F3FC), followed by a zero width joiner (U+200D) alongside the emoji for “female” (U+2640 or U+FE0F). This creates the ZWJ sequence for a woman gesturing “no” with a medium-light skin tone.

The system is structured so that each component can be logically snapped together to create the desired result.

The more technical of you may know that some emojis do start with a woman or man as the base character instead of a generic person. These are generally a result of emoji that existed in earlier versions of the specification, are part of the exception list, or are more complex and trying to fit in a smaller space.

We could have a more technical discussion about byte size encoding for characters, but that is well beyond the scope of this article. There are exceptions in the system, as we will see later.

L2/19-101: Priorities for Future RGI Emoji Sequences

Now that we know what the ESC does, who it’s comprised of, and have a basic idea of how the emoji system works, we can talk about the process that eventually led to the creation of the “Pregnant Man” emoji.

This document titled Priorities for Future RGI Emoji Sequences marks the beginning, in earnest, of an initiative at the ESC to start making emoji more representational.

We can soon do this, but with emoji:

Arnold Schwarzenegger and Carl Weathers’ “epic handshake” from Predator. [20th Century Fox]

The ESC defines its roadmap for adding more skin tones, gender options, direction (e.g; left, right, up, down), and color variations in the document. It also proposed a priority for each of these efforts, adding gender-neutral variations a the top of the list, followed by mixed skin tones.

The reasoning for this is stated directly in the emoji technical specifications:

Both A [gender neutral] and B [mixed skin tones] address gaps within the existing emoji set and as such are considered a higher priority for implementation than C [directionality] or D [color variations] which seek to expand the scope of emoji functionality.

Earlier, we demonstrated how the emojis are connected, and the initiatives that received the highest priority make a lot of sense in that context. As the system is designed to snap together like digital Lego, and there are still emoji whose base element uses the “legacy” method, ESC needs to address those before expanding and adding more.

There are many interesting things to read in that document, but it’s clear the group’s goal is to represent the wide variety of humans and their unique experiences. From mixed-race handshakes and couples to same-sex families, they are slowly covering as much ground as possible to make sure everyone can represent themselves if they choose.

I’ve made it this far, tell me about the pregnant man already!

We covered how the system works and why it works that way, but we also established clear exceptions for special-case emojis exist. So why isn’t a pregnant woman one of those special gender-specific cases?

The original plan, as per standard practice, was to replace the original “Pregnant Woman” emoji (U+1F930) with the non-binary representation and then use the male (U+2642 and U+FE0F) and female (U+2640 and U+FE0F) to modify it to the desired gender. In theory, the system is respected, and everyone is happy.

But, the advisory committee got stuck in a stalemate, so nobody was.

To ensure the integrity of existing gendered emoji and to preserve a long runway for future additions, “person” based emoji should never be encoded with a sex symbol. As such, the “person” and “man” variants’ are in the process of being added as atomic characters

In other words, due to the legacy use of the emoji and the importance of gender in its meaning, coupled with no modifier for non-binary because it’s supposed to be the default, we are instead getting two additional independent variants. “Pregnant Man” (U+1FAC3) and “Pregnant Person” (U+1FAC4) will live alongside the original “Pregnant Woman” (U+1F930), breaking with convention.

Exceptions require workarounds

If you read L2/21-055 you may have seen that different names were initially proposed for the gender-neutral and the male version of the emoji: “person with swollen belly” and “man with swollen belly” respectively.

Why either of those didn’t stick is in plain sight as well.

The proposed names of the new characters, “man with swollen belly” and “person with swollen belly”, are completely semantically detached from the meaning of U+1F930, which is never the case for emoji that form a gender triplet. Being pregnant and having a swollen belly are not synonymous; one cannot reasonably be used as a substitute for the other. While it is true that U+1F930 is sometimes humorously used to convey a general concept of bloat, this has no bearing on its actual semantics as a Unicode character. U+1F930 was encoded for a very particular purpose – to represent pregnancy and parenthood – and retroactively changing its official meaning to encompass any stomach bloat would be both disrespectful to expecting parents and damaging to existing data

To translate: all emoji that contain three gender variations share a common naming scheme, and it didn’t make sense to change the name of two of the three representations here. It introduces more irregularity in a system that is supposed to be pretty logical.

In addition, changing the woman to a non-binary person to adhere alters the original emoji’s meaning, thus breaking backward compatibility.

In short, skipping some superfluous conversation between companies, that is how we ended up with an emoji of a pregnant man named “Pregnant Man.”

Outrage over a fairly logical system

Emoji is a system designed to take a non-binary gender as its base component, and it is constantly being iterated upon. When it came time to address the “Pregnant Woman” emoji, which did not fit within the designed system, an exception was made rather than revision for legacy reasons.

Due to those same systemic and legacy reasons, the emoji is called “Pregnant Man” instead of “man with bloated belly.”

I mostly spend my time here at AppleInsider behind the scenes. I’m a developer by trade, not an editor, but we’re a small company, so I often spend time moderating comment sections and generally checking up on things.

The level of vitriol and outrage I have seen surrounding something as innocuous as an emoji has been awful. The headlines I’ve noticed that I feel obligated not to link back to, combined with the malice ascribed directly towards people due to their political leaning, gender, or sexual orientation, gave me enough pause to spend my night writing this.

I know this is the internet, and outrage is the currency. At the end of the day, we’re just talking about a digital stacking system to build multiple emoji from core elements instead of a custom element for each of the thousands of emoji that now exist.

No one should be getting threats over emojis. And we’re pretty sure we will get some from this article from folks that don’t want to read it and are too comfortable with their outrage to read.

If you see someone out there get angry because a pregnant man “isn’t scientific!” then link them to this article. If you see someone blaming Apple for pushing an agenda, then show them this article. If you see someone praising Apple for pandering or being forward-thinking, then link them to this article.

Apple employs some of the people that worked on this, but don’t have any illusions that the company put its foot down and demanded this particular chorded emoji combination out of tens of thousands.

They have discussions and work collectively with others as a group. There are more people outside of Apple that made this decision than there are participants from the company, by a factor of about 10.

The emoji combination was assembled with not an iota of identity politics. The fact that it exists is no more of an ideologically-planted flag than stacking three Lego bricks together.



Posted on

Cricket Betting Apps in India – TOP 5 | Indiablooms


Best Betting Apps for Cricket

When choosing a sports betting app, a player faces the dilemma of how to find a reliable company with favorable conditions. The bookmakers themselves emphasize flashy promotions and sign-up bonuses in their advertising. We think these advantages are secondary. In this article, we will tell you what you need to look at when choosing a cricket betting app, so as not to be cheated and not to overpay extra commission with each bet.

We’ve put together a brief guide on how to find the right app for you. Here are the top six questions to ask when choosing your first cricket betting app:

  1. License availability

  2. Profitable odds and margins

  3. Sports and outcomes available for betting

  4. Withdrawal reviews

  5. History 

  6. New customer bonuses

Why Use Cricket Betting Apps?

Native mobile apps are designed for a specific platform, such as iOS or Android. The user downloads and installs mobile apps on their device from an app shop, and native apps generally offer a faster and more natural response than mobile websites.

 

Criteria Criteria Description
Interactivity A mobile app is a new channel for interacting with current clients/users. Apps offer richer functionality and can integrate features that are not available on the website. For example, most bookmakers provide the ability to watch online broadcasts or receive notifications.
Autonomy Mobile apps can work with poor internet connections. While many applications require a web connection to perform most tasks, they can still offer users content and features offline. This advantage enables users to access information anytime, anywhere.
Intuitive interface Mobile apps typically offer an intuitive and familiar user interface, making it easier to complete tasks. The clear design allows consumers to immediately immerse themselves in the mobile app and start using it. Owners of specific operating systems are already well accustomed to certain elements and templates; you can offer them the expected functionality right away. Adaptive websites cannot always guarantee a standard look and feel.
Accessibility Betting companies’ mobile apps are developed specifically for users of the two most popular platforms, so they are available for use by almost everyone in India. Moreover, mobile apps for cricket betting are free of cost.
Adaptability Mobile apps allow users to customize their preferences immediately after downloading and customize them according to their needs. Apps can also track user interactions and use them to provide personalised recommendations and updates, making the app more useful to the user. Apps also allow companies to send messages to users tailored to their interests, location, behaviour, etc. This type of customisation allows the user to make the best use of the app.

Popular Cricket Betting Apps in India

1win

Foundation date 2016
License Curacao eGaming
Accept Indian players Yes
Rupees Accepted
Mobile app Android and iOS
official site 1wins.in
Games Cricket betting, esports betting, line and live betting

Bookmaker 1win has been operating since 2016 under a Curacao license. Until 2018, the company was called FirstBet, then rebranded. Users from 100 countries play on the official website 1win. The company not only offers to bet with convenient minimum and maximum betting limits but also gambling. 1win’s analysts put up attractive odds-on top events. For instance, the margin on prestigious cricket events starts at 3.5%. The average commission for football and other disciplines is 6-7%. In the play, the percentage rises by a few percent.

The office has an app for Android gadgets. You won’t find it on Google Play due to corporate policy, so download the apk file directly from the bookmaker’s website. You won’t find the official bookmaker app for iPad and iPhone on the App Store. Therefore, to download the special software to your iOS gadget, open the company’s mobile website and follow the simple instructions. If you are betting from your computer, download the official client for Windows and macOS. To download the program on Windows, open the built-in app shop, search for the client and click the download button. On a macOS computer or laptop, the app can be downloaded through the company’s portal.

The 1win app offers permanent and temporary promotions, including a sign-up bonus of 500% on your first deposit. An interesting feature that has elevated this company in our list of online cricket betting apps in India.

Round-the-clock technical support works through several channels of communication, the most convenient is the chat on the official website. Alternatively, you can send an email or call the hotline.

Leonbet

Foundation date 2007
License Curacao eGaming
Accept Indian gamblers Yes
Rupees Accepted
Mobile app Android and iOS
official site leonbet1.in
Games Cricket betting, esports betting, line and live betting.

Leonbet is an international online bookmaker which appeared on the cricket betting market in 2007. The operator focuses on Asian countries, and it is possible to create an account in different currencies. For betting participants, the regulator offers mobile apps with rich functionality. Therefore, it is quite a good option for the Indian player if he is looking for a cricket betting app in India. Leonbet offers betting on two dozen sports, including cricket (Indian Premier League 2022) and esports (Counter-Strike: Global Offensive, Dota 2, League of Legends as well as Overwatch and Heroes of the Storm). The tournaments featured include both popular and minor tournaments.

You will not find Leonbet bookmaker’s app in the Play Market. Such restrictions are due to the policy of Google. It prohibits the distribution of bookmaker software and other gambling software.

Therefore, if you want to download the Leonbet app for Android, you will need to use the official Leonbet website. Correspondingly, to download the iOS app, you will need to visit the company’s official website once again and download it. However, you will also find the same app in the specialized App Store. 

The international bookmaker Leonbet has a cash bonus on your first deposit of up to $100. Leonbet also offers customers a loyalty program with bonus points (leons). The points are awarded for any bet, regardless of its success. The number of bonuses leons is calculated as follows: for every US dollar lost you get 1 point, as well as for every dollar won (in case of winning only the net winnings are taken into account).  

Mostbet

Foundation date 2009
License Curacao eGaming
Accept Indian gamblers Yes
Rupees Accepted
Mobile app Android and iOS
official site mostbet1.in
Games Cricket betting, esports betting, line and live betting

The bookmaker company Mostbet belongs to the old-timers of the international betting market since the office started its operation in 2009. Since then the company has been operating in 93 countries. The statistics show that over 800 thousand bets on sports events are placed at the office every day. Currently, the company operates under a Curacao license. 

You can find the bonuses of the office in the “Promotions” section. You will find this item in the top menu. The tab is divided into three categories: Promotions, Bonuses, and Tournaments. Promotions and tournaments are temporary, so check back there periodically so you don’t miss out on interesting updates. Mostbet’s main bonus is the increased deposit. The welcome bonus is chosen by players during the registration process, so to bet on cricket you get +125% on your first deposit. The bookmaker offers downloadable cricket online betting apps designed for operating systems, Android, and iOS.

Betway

Foundation date 2006
License Malta
Accept Indian gamblers Yes
Rupees Accepted
Mobile app Android and iOS
official site betway-app.in
Games Cricket betting, esports betting, line and live betting.

Betway strives to please its customers with a variety of bonuses. For example, the usual welcome free bet is valid for as many as three deposits. In addition, Betway also runs regular loyalty programs and gives players a portion of their winnings back through cashback. It’s well worth keeping an eye on Betway’s website for current promotions. Aside from a wide line-up, Betway also offers some great odds. This is true not only for the pre-match but also for live betting. As you can imagine, the priority is back on cricket, especially in India. 

Betway is loyal to customers who bet via mobile apps. Betway has apps for both iOS and Android. In addition, Betway has a fairly concise and user-friendly mobile version. Therefore, to access the company’s services, one simply has to download this mobile app and be content with playing

Fun88

 

Foundation date 2007
License Curacao eGaming
Accept Indian gamblers Yes
Rupees Accepted
Mobile app Android and iOS
Customer support cs@fun88india.com
Games Cricket betting, esports betting, line and live betting.

Bookmaker Fun88 is an Asian bookmaker founded in 2009. Given its origins, it originally aimed to provide services exclusively in Asian countries, but as it developed, it began to expand its influence to other continents and countries around the world.

Fun88 operates under licenses from the Isle of Man and the Philippines, and in addition to the sports betting section itself, it also has cricket sections on its website. This, coupled with tempting welcome bonuses, attracts a large number of players from all over the world to its online resource and makes it one of the best cricket betting app India. 

The mobile app for Android and iOS is traditionally available for download on the website. Moreover, the iOS app can also be found in the App Store. The mobile app will give you quick access to all the services and bonuses of the company. The interface and design are very user-friendly and a pleasure to use, as evidenced by the huge number of positive reviews.

How to Choose the Best Cricket Betting App for You?

Choosing a good company is a responsible task for every player. When analyzing market operators, the experts always take into account the above-mentioned indicators as well as other factors. Analysts pay attention not only to the variety of disciplines but also to the quality of the spread itself. The rating of football bookmakers is made taking into account, for example, the scope of the competitions, the availability of opportunities to bet on unpopular events, championships. It is clear that the top leagues are covered in detail, but when ranking bookmakers online, it is also important to consider the possibility of betting on local events. For example, lower division matches.

Another factor that experts take into account is the ability to bet on different outcomes of matches. Many companies offer a limited set of markets. This means that if a player is used to betting on specific results: exact score, handicaps, totals, and so on, he simply will not find them among the presented options. The variety of markets available is an important indicator, as it gives players complete freedom of action.

The next factor based on which the best bookmakers are selected is the quality of the in-play. It is no secret that nowadays it is the confrontations that take place live that enjoy the greatest popularity among fans. When analyzing live betting, experts take into account:

  1. Dynamics of odds change. Usually, reliable companies are directly influenced by the developments in the sports arena. Therefore, the quotes are updated frequently.

  2. The speed of data submission. The list of bookmakers is formed, among other things, based on how up-to-date the information provided by the offices is. If you use verified data, the probability of making an accurate bet is higher.

  3. Variety of markets. Some in-play sites only offer to bet on popular variants of outcomes. This negatively affects the overall reputation of such offices. The brands that allow predicting many variants of event outcomes have a higher position in the ranking. 

It is not a secret that today’s forecasts have become an important source of income for many users. If you are one of them, choose a site not only based on feedback from friends and acquaintances, but also by checking the rating provided. Based on it, you can learn more about all aspects of companies, from bonuses to in-play features.

So, for bookmakers’ bets to be profitable, register with a reliable office. Given the competition, choosing the right brand will not be difficult.

How to Download Betting Apps on Android

The bookmaker’s apps are not available to download from the Play Market, so you can find the download link on the bookmaker’s official website. Here, in a special section, you can find the coveted cricket betting app. And to get started with the betting faster. 

  1. Go to the official website. Here you need to find the section with the mobile app. This can be done manually or by using the search engine, which is often found on bookmaker websites. You can also sometimes find a mobile app pop-up in the form of operating system icons somewhere on the edge of the screen. 

  2. In the special section, find the app for your phone. Now you need to familiarise yourself with its requirements, which is crucial for its success. 

  3. Click on the download button and wait for the download to complete. That’s it, all that’s left is to install the mobile app, register, and start betting. 

  4. If there are any problems during installation, it is worth contacting the company’s support team, who will solve your problem.

Cricket betting apps on Betraja

Betraja.in is a website that contains a large collection of reviews of the best cricket betting apps in India. The superb navigation system allows the player to easily travel the space and locate the company of their choice. The design is done in a grey and white color scheme, which fits nicely with most company logos and only adds to the ease of use of the site.

You can choose a provider based on the above criteria, but betraja.in provides extensive reviews, including a list of the best cricket betting apps. App reviews and technical specifications are also available. With this, a player will be able to download the cricket betting app of his choice and begin playing with ease!

Aside from the foregoing, the website is entirely optimized for Indian gamers, therefore online betting reviews are fully adequate and appropriate for the Indian market. This is what distinguishes numerous official betting sites or their apps!

Final verdict 

Along with the growth of the betting industry in India, there is a growing demand for mobile apps that are available to players. Apps developed for both Android and iOS allow you to bet from anywhere in India where there is even a weak internet connection. Companies are updating them and working on improvements. So, all players have to do is to choose the best company and enjoy!