Apple App Store Update: What New Sales and Fraud Figures Really Mean

Apple published two significant App Store reports within days of each other earlier this year, and the timing is hard to separate from context. The company faces an active antitrust suit from the U.S. Department of Justice and more than a dozen state attorneys general, who accused Apple of using shifting App Store guidelines to suppress competitive alternatives, according to Bloomberg Law. It also faces ongoing litigation from developers challenging its enforcement decisions. The numbers Apple released are real and large. They are also a regulatory argument dressed as a transparency report.

The headline figures: the global App Store ecosystem enabled $1.3 trillion in Apple App Store developer billings and sales in 2024, per economists at Boston University and Analysis Group in a study commissioned by Apple (Apple Newsroom). Apple separately reported it blocked more than $2 billion in fraudulent transactions that same year, bringing its five-year total past $9 billion (Apple Newsroom).

Scale plus safety. That combination anchors both releases. What follows examines what those numbers actually measure, what the fraud data proves and doesn't, and where Apple's case is weakest: not in scope or security, but in an enforcement system that legal scholars say leaves affected developers with little recourse.

What Apple App Store billings and sales actually measure

The trillion-dollar figure is accurate under Apple's definition of "enabled," which is the important word.

The global total breaks into three categories: $131 billion in digital goods and services, $150 billion in developer-placed in-app advertising, and just over $1 trillion in physical goods and services, according to Apple's commissioned study. Physical goods, covering food delivery, grocery orders, and retail, account for roughly 77 percent of the global total and grew 2.6 times since 2019, faster than either of the other categories. The U.S. breakdown is starker: physical goods drove $277 billion of the $406 billion domestic total, against $53 billion in digital goods and $75 billion in advertising (Apple Newsroom).

This composition matters because it reveals what Apple is doing rhetorically. The App Store debate has historically focused on Apple's commission structure, 15 to 30 percent on eligible digital transactions. By expanding the headline figure to include every dollar that moves through an iOS app, including a DoorDash order or an Amazon purchase, Apple shifts the unit of analysis from "what Apple charges" to "what Apple enables." For more than 90 percent of all enabled billings, developers paid no commission to Apple at all, the company notes, both globally and in the U.S. (Apple Newsroom).

The underlying research was conducted by named economists with institutional affiliations, which lends some credibility. The study was commissioned and distributed by Apple, however, and Apple has not disclosed an independent review of its methodology for attributing physical commerce to App Store discovery rather than to broader mobile commerce trends. The number reflects the ecosystem Apple hosts. How much of that commerce would exist without the App Store is a different and harder question.

Additional figures Apple provides: U.S.-based small developers saw earnings grow 76 percent between 2021 and 2024, and the platform draws over 813 million average weekly visitors worldwide (Apple Newsroom; Apple Newsroom). For developers building global products, the platform's reach, 175 countries, more than 40 currencies, tax handling in nearly 200 regions, represents genuine infrastructure that would be expensive to replicate independently. These details support the economic case. They don't resolve whether the control Apple retains over that infrastructure is calibrated appropriately.

The App Store fraud case: what the safety numbers prove and don't

That framing depends on more than commerce. Apple is also arguing that centralized control produces safety, and the fraud figures it self-reports are substantial.

In 2024, Apple reviewed more than 7.7 million app submissions, rejected nearly 1.9 million, terminated over 146,000 developer accounts for fraud concerns, and blocked 139,000 additional developer enrollments before they could submit anything (Apple Newsroom). At the customer account level, Apple rejected over 711 million attempted account creations and deactivated nearly 129 million existing accounts for risky or malicious behavior. It identified nearly 4.7 million stolen credit cards and permanently banned over 1.6 million accounts from transacting again.

The privacy and content enforcement data adds further scale: 400,000 app submissions rejected for privacy violations, 320,000 more blocked for copying other apps or misleading users, and 143 million fraudulent ratings and reviews removed from a pool of 1.2 billion processed (Apple Newsroom).

The five-year trend also shows the approach shifting. Apple terminated 428,000 developer accounts in 2022, a number that fell to 118,000 in 2023, not because fraud declined, but because Apple got better at blocking fraudulent enrollments before accounts were created, reducing after-the-fact terminations, according to Apple's own reporting (Apple Newsroom; Apple Newsroom). The 2024 figure of 146,000 terminations reflects ongoing demand, with more upstream screening carrying the load. That's a genuine operational refinement, though Apple's framing is the only accounting available.

What the figures show: Apple's payment architecture, card numbers never stored on device or shared with developers, every transaction tied to an authenticated Apple ID, end-to-end encryption throughout, produces the security outcomes Apple reports at scale. What the figures don't show: how many legitimate apps and developers were caught in these enforcement actions by mistake. Apple defines "fraudulent" by its own standards, and the company's public reports do not provide a false-positive rate. Rejected apps that shouldn't have been, terminated accounts that were legitimate, these numbers are absent from the public record entirely.

Enforcement without accountability: where Apple's defense is weakest

The same centralized control that lets Apple screen fraud at scale also gives it broad discretion over who stays on the platform, with little external review of how that discretion is exercised.

Apple and Google operate intellectual property complaint systems that legal scholars describe as a private enforcement regime running parallel to formal courts. A company files an IP complaint against an app; the platform removes it at its own discretion. The accused developer gets a notification and is told to contact the complainant, who may not respond. The platform interprets its own contracts and renders its own judgment. Bloomberg Law reported that legal scholars call this a "shadow IP enforcement regime," one that mirrors the structure of the Digital Millennium Copyright Act's notice-and-takedown framework without the statutory guardrails that make the DMCA system accountable.

Two cases in active litigation put a face on the stakes. Musi Inc. sued Apple after its music-streaming app was removed following an infringement complaint by YouTube, alleging removal without sufficient evidence of infringement. Sarafan Mobile sued after its Reely app was taken down within two weeks of an Instagram complaint over logo similarity, with Google rejecting Sarafan's appeal on the day it was filed, no explanation given (Bloomberg Law). Both developers were told to contact the complainants directly. Neither received a response. Their remaining legal option is a contract claim against the platform itself, a party that designed the contract.

University of New Hampshire law professor Peter Karol described these systems as having "replicated" the DMCA architecture across every branch of IP "without having the actual statutory framework to tell them to do that." University of San Diego law professor Lisa Ramsey put it plainly: in a court proceeding, there are allegations, a defense, and a judicial ruling. Apple's and Google's systems, by contrast, are "a black box" (Bloomberg Law).

This is directly relevant to why those App Store figures matter in a regulatory context. The DOJ and more than a dozen state attorneys general accused Apple of using shifting App Store guidelines to suppress competitive alternatives, per Bloomberg Law. The IP takedown system and the antitrust complaint are different legal instruments pointing at the same underlying condition: a platform with unilateral power to determine who participates and on what terms. Apple's fraud numbers demonstrate the system works to block bad actors. They say nothing about what happens when it reaches the wrong target.

What the data settles and what it doesn't

Apple's two-part release succeeds on its own terms: it reframes the App Store as an economic platform generating value well beyond commissions, and as a security layer producing measurable public benefit. Both points are backed by real data. Neither settles the regulatory questions.

What the data supports: the App Store is a large and growing commerce platform, the fraud operation is substantial and increasingly refined upstream, and more than 90 percent of the economic activity Apple cites generated no commission revenue for Apple (Apple Newsroom). What the data doesn't establish: that the $1.3 trillion figure depends on Apple's specific gatekeeping model, that the fraud numbers reflect an appropriate balance between screening bad actors and protecting legitimate developers, or that the enforcement system governing who stays on the platform operates with adequate transparency.

Three things would change that picture. An independent audit of Apple's fraud methodology, including false-positive rates, would allow external validation of figures the company currently self-reports. Outcomes in the Musi and Sarafan litigation will clarify whether platform-run IP enforcement systems carry legal accountability when they act on insufficient evidence. Regulatory requirements under the EU's Digital Markets Act and through the U.S. DOJ case may ultimately mandate appeals processes, transparency reports, or third-party review of enforcement decisions.

Apple's data is what Apple chose to publish. Whether regulators and courts will require outside checks on those claims is the question that determines how much of the rest of the story ever becomes visible.