[ad_1]
By Matheus Henrique
Published on 09 February 2019
A malicious application that attacks users of criptomoedas has been discovered in the official Google Play store. The application is designed to steal crypto-rooms from users.
Malware, which was disguised as a legitimate cryptocurrency application, worked by swapping the Android clipboard portfolios for hackers' addresses. Quite simply, when the user copied an address to send Bitcoins, at the time of pasting, what was sent was the address of the criminals. He was also trying to access Ethereum portfolios.
A researcher Eset is the one who made the discovery and reported in a message. This type of attack, with exchange of addresses copied to the clipboard, called "Clipper" and is widespread on Windows since 2017.
The malware available on Google Play imitated a service called MetaMask, a program that allows everyone the browsers can run applications running with Ethereum. The main purpose of Android / Clipper.C (as Eset called the virus) was to steal identification information to access Ethereum funds. The malware has also replaced the addresses in the clipboard, as we mentioned earlier.
Eset researcher Lukas Stefanjo said:
"This attack was aimed at users wishing to use the mobile version of the MetaMask service, designed to run a token using a chain of blocks to encourage the development and the # 39; adoption. " Clbad = "glossaryLink" target = "_ blank"> Ethereum dapps in a browser, without running the complete Ethereum node, but MetaMask does not offer a mobile version of the service. "
A number of malicious apps have already been intercepted imitating MetaMask on Google Play. However, they simply hid important information to access the ETHs stored by users.
Eset discovered the application quickly after its launch. Google has already deleted the malware. This is the first time that a clipper is hosted in the official Google Store.
This discovery only reinforces the fact that Google Play should not be used to manage cryptocoins! So be very careful and considerate when you download something from the official Google store.
See also: Bithumb Launches OTC Operations Table!
Source link
