Fake MetaMask Crypto Malware Pulled From Google Play After Tipoff

February 11, 2019
52 Views

An app masquerading as DApp MetaMask contained malware that aimed to steal coins by replacing wallet addresses.

Decentralized app (DApp) MetaMask is facing fresh problems from cryptocurrency scammers after malware impersonating the tool appeared on Google Play, cybersecurity company Eset reported on Feb. 8.

The malware, which replaces computer clipboard information in an attempt to steal cryptocurrency, was removed by Google at the beginning of the month after a tipoff from Eset researchers.

Known as a “Clipper,” the malware replaces copied cryptocurrency wallet addresses with an address belonging to an attacker in the hope that funds will be sent elsewhere without the user noticing.

The discovery marked the first time such malware had made it past Google’s vetting procedures, the security firm notes.

“The clipper we found lurking in the Google Play store, detected by ESET security solutions as Android/Clipper.C, impersonates a legitimate service called MetaMask,” Eset explained, continuing:

“The malware’s primary purpose is to steal the victim’s credentials and private keys to gain control over the victim’s Ethereum funds. However, it can also replace a Bitcoin or Ethereum wallet address copied to the clipboard with one belonging to the attacker.”

MetaMask, which is one of the oldest Ethereum (ETH)-based DApps, has fallen victim to malicious schemes before.

In July last year, Google developers pulled the app from Google Play altogether, leaving only fake impersonations. A subsequent report from MetaMask revealed the action had occurred by mistake.

In November, MetaMask confirmed its plans to launch a mobile app, which ended up being the target of the latest malware issue.

You may be interested

In First, FinCEN Penalizes Bitcoin Trader for Violating AML Laws
Crime
10 views
Crime
10 views

In First, FinCEN Penalizes Bitcoin Trader for Violating AML Laws

btcethereumadmin - April 19, 2019

The Financial Crimes Enforcement Network (FinCEN) has for the first time penalized what it dubs a “peer-to-peer cryptocurrency exchanger” for…

South Korean Crypto Exchange Coinnest Announces Closure
Crypto News
12 views
Crypto News
12 views

South Korean Crypto Exchange Coinnest Announces Closure

btcethereumadmin - April 19, 2019

Cryptocurrency exchange Coinnest, once South Korea’s third largest, is closing down. The exchange posted a notice on its website saying that…

SBI Holdings: Bitcoin Cash Removal Amid Bitcoin SV Delistings Was Coincidence
Bitcoin
16 views
Bitcoin
16 views

SBI Holdings: Bitcoin Cash Removal Amid Bitcoin SV Delistings Was Coincidence

btcethereumadmin - April 19, 2019

In a statement to Cointelegraph, the finance giant said its move to stop supporting BCH had been pre-planned. Japanese financial…

Leave a Comment

Your email address will not be published.