Home News Bitcoin Google Play Found Hosting Malicious Apps That Steal Cryptocurrencies

Google Play Found Hosting Malicious Apps That Steal Cryptocurrencies

February 11, 2019 14:50
Share with your friends

You think you might have seen it all and then bad actors in the cryptocurrency community find new loopholes to exploit weaknesses and steal funds.

The latest incident was when it was found that Google Play, Google’s app store was hosting malicious applications designed to steal cryptocurrencies. The malware dubbed Clipper has been discovered by researchers at ESET internet security firm. Earlier, the same team had discovered one weakness on download.cnet.com.

The report had said, “The clipper we found lurking in the Google Play store, detected by ESET security solutions as Android/Clipper.C, impersonates a legitimate service called MetaMask. The malware’s primary purpose is to steal the victim’s credentials and private keys to gain control over the victim’s Ethereum funds. However, it can also replace a Bitcoin or Ethereum wallet address copied to the clipboard with one belonging to the attacker.”

The report added that it primarily attacked users who used the mobile version of the MetaMask service, which is designed to run Ethereum decentralized apps in a browser, without having to run a full Ethereum node. However, the service currently does not offer a mobile app – only add-ons for desktop browsers such as Chrome and Firefox.

This is not the first time, that there has been reports of faulty apps found on Google or for that matter, on any other platform. In December, Kaspersky Lab had released a report that said there had been 13 million cryptojacking cases (close to 400 million) in 2018 alone.

In November, the company released a report that stated that cryptocurrency miners infect computers of unsuspecting users operate on the same model as ransomware programs: the victim’s CPU power is harnessed to enrich the cybercriminals.

Not just cryptojacking, Kaspersky Labs had also released a detailed report on how a malware named ‘Lazarus’ “a trojanized cryptocurrency trading application that has been targeting Mac Operating systems (OS), for the first time.”

Liked what you read? Join us on Telegram


Please enter your comment!
Please enter your name here