A cryptocurrency stealing app found on Google Play was downloaded over a thousand times

Researchers have found two apps masquerading as cryptocurrency apps on Android’s app store, Google Play.

One of them was largely a dud. The second was designed to steal cryptocurrency, the researchers said.

Security firm ESET said one of the two fake Android apps impersonated Trezor, a hardware cryptocurrency wallet. The good news is that app couldn’t be used to steal cryptocurrency stored by Trezor. But the researchers found the app was connected to a second Android app which could have been used to scam funds out of unsuspecting victims.

Lukas Stefanko, a security researcher at ESET — who has a long history of finding dodgy Android apps — said the fake Trezor app “appeared trustworthy at first glance” but was using a fake developer name to impersonate the company.

The fake app was designed to trick users into turning over a victim’s login credentials. Uploaded to Google Play on May 1, the app quickly ranked as the second-most popular search result when searching for “Trezor” behind the legitimate app, said Stefanko. Users on Reddit also found the fake app and reported it as recently as two weeks ago.

According to Stefanko, the server where user credentials were sent was linked to a website linked to another fake wallet, purportedly to store cryptocurrency, and also listed on Google Play since February 25.

“The app claims it lets its users create wallets for various cryptocurrencies,” said Stefanko. “However, its actual purpose is to trick users into transferring cryptocurrency into the attackers’ wallets – a classic case of what we’ve named wallet address scams in our previous research into cryptocurrency-targeting malware.”

Both apps were collectively downloaded more than a thousand times. After ESET contacted Google, the apps were pulled offline the next day.

Read more:

  • Half a million Android users tricked into downloading malware from Google Play
  • Security researchers find over a dozen iPhone apps linked to Golduck malware
  • A powerful spyware app now targets iPhone owners
  • Google warns app developers of three malicious SDKs being used for ad fraud
  • Apple tells app developers to disclose or remove screen recording code
  • Apple restores Google’s internal iOS apps after certificate misuse punishment

Read More

Did you like this?
Tip Cryptos UK with Cryptocurrency

Donate Bitcoin to Cryptos UK

Scan to Donate Bitcoin to Cryptos UK
Scan the QR code or copy the address below into your wallet to send some bitcoin:

Donate Bitcoin Cash to Cryptos UK

Scan to Donate Bitcoin Cash to Cryptos UK
Scan the QR code or copy the address below into your wallet to send bitcoin:

Donate Ethereum to Cryptos UK

Scan to Donate Ethereum to Cryptos UK
Scan the QR code or copy the address below into your wallet to send some Ether:

Donate Litecoin to Cryptos UK

Scan to Donate Litecoin to Cryptos UK
Scan the QR code or copy the address below into your wallet to send some Litecoin:

Donate Monero to Cryptos UK

Scan to Donate Monero to Cryptos UK
Scan the QR code or copy the address below into your wallet to send some Monero:

Donate ZCash to Cryptos UK

Scan to Donate ZCash to Cryptos UK
Scan the QR code or copy the address below into your wallet to send some ZCash:

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.