Fake crypto wallets of Ethereum, Tether, NEO found on Google Play
A malware researcher, Lukas Stefanko, recently shared on his blog post that he has found four fake crypto wallets on Google Play Store. Lukas noted that the apps were posing as crypto wallets for Tether, an extension for accessing Ethereum (ETH), NEO and MetaMask.
According to the blog post published November 13, they were trying to steal users’ personal data. Reportedly, they were designed to phish users’ credit card details and mobile banking credentials. Stefanko even classified the wallets – the fake MetaMask app was classified as a “phishing wallet” whereas the other three apps were classified as “fake wallets.” After the phishing app is installed, it asks the users for their private key and wallet password.
In the video which Stefanko attached along the blog post, he stated that the “fake wallets,” for example of the fake NEO app which is dubbed as “Neo Wallet” had over 1,000 installs since October when it was launched. Reportedly, the crypto wallets did not create a new wallet via generating a public address and a private key – things essential for securely sending and receiving digital currency.
It displayed only the public address of the attacker with no user access to the private key. This was done so that users would deposit funds to the wallet, but would not be able to withdraw them since the private key belonged to a cybercriminal.
Stefanko wrote, “What concerns me the most is that these fake wallets were created using Drag-n-Drop app builder service without any coding knowledge required. That means that – once Bitcoin price rises and starts to make it into front pages – than literally anyone can “develop” simple but effective malicious app either to steal credentials or impersonate cryptocurrency wallet.”
Recently, Google’s G Suite’s official Twitter account was supposedly compromised to promote a Bitcoin (BTC) scam. The Twitter account of the Google unit was hacked and a fraudulent 10,000 BTC giveaway was promoted, as reported by The Next Web. G Suite has over 800,000 followers on its Twitter profile, which had the following message promoting the scam.
Image via Shutterstock