BSV
$46.62
Vol 19.13m
0.92%
BTC
$68742
Vol 44970.22m
0.15%
BCH
$338.99
Vol 268.56m
0.83%
LTC
$66.94
Vol 319.03m
0.7%
DOGE
$0.16
Vol 3687.74m
8.44%
Getting your Trinity Audio player ready...

Just like there will always be those dimwitted individuals who try to rob banks, there will always be the same in the digital realm. Things like ID theft and account hacks are nothing new on the Internet, and it shouldn’t surprise anyone that they would also be seen with cryptocurrencies. The biggest difference is that it’s actually harder to get away with crypto theft, since all wallet addresses are traceable and the crypto community is all too happy to track down malicious activity. This isn’t stopping some unscrupulous individuals from trying, though, and another crypto malware has now been identified. Like some of its predecessors, this one was found on the Google Play store. 

According to Ars Technica, Clipper was created to try and steal crypto from those who downloaded the application. It was hidden in plain sight, right on the Google Play store, and is based on a similar malware found in 2017 that targeted Windows machines. 

Ars Technica explains, “The malware, which masqueraded as a legitimate cryptocurrency app, worked by replacing wallet addresses copied into the Android clipboard with one belonging to attackers, a researcher with Eset said in a blog post. As a result, people who intended to use the app to transfer digital coins into a wallet of their choosing would instead deposit the funds into a wallet belonging to the attackers.”

Clipper was concealed as MetaMask, an application that allows Ether (ETH) to work on corresponding apps on Google Play and allowed the cybercriminal to gain control of an ETH wallet if found on the Android device that downloaded it. Ars Technica analyst Lukas Stefanko adds, “This attack targets users who want to use the mobile version of the MetaMask service, which is designed to run Ethereum decentralized apps in a browser, without having to run a full Ethereum node. However, the service currently does not offer a mobile app—only add-ons for desktop browsers such as Chrome and Firefox.”

Apparently, the app was added to Google Play at the beginning of this month and has already been removed. However, Google is supposed to have controls in place to prevent such apps from being uploaded. It might be time for the company to rethink its scanning and approving processes. 

Recommended for you

Blockchain firm R3 looking for a buyer: report
R3 has raised over $120 million over the years, but broader market conditions have proven tough as its permissioned blockchain...
November 5, 2024
Zanzibar launches blockchain sandbox for startups
Zanzibar seeks to support blockchain startups and recently launched a sandbox; meanwhile, Vietnam has launched a national blockchain strategy.
November 5, 2024
Advertisement
Advertisement
Advertisement