Android Users Hit by Crypto Phishing Scam
Google’s Play Store has seen a wave of phishing apps that mimic legitimate cryptocurrency wallets. These fake apps trick users into handing over their digital wallet passwords, giving scammers access to their cryptocurrencies. The apps were designed to look like real services, complete with familiar names and functions.
Cyble, a cybersecurity firm, identified the malicious apps and reported them to Google. The apps have since been removed from the Play Store, but users who installed them earlier may still be at risk.
How the Scam Works
When installed, the fake apps open an internal browser, displaying fake content that tries to trick users into thinking they’ve made an error or that their funds are in danger. The scammers then ask users to enter their digital wallet password, giving them access to the user’s cryptocurrencies.
To avoid falling victim to this scam, users should be cautious when installing apps from the Play Store. They should always verify the authenticity of an app and its developer before installing.
Malicious Apps Identified
The following apps were identified as malicious:
- Pancake Swap
- Suiet Wallet
- Hyperliquid
- Raydium
- BullX Crypto
- OpenOcean Exchange
- Meteora Exchange
- SushiSwap
- Harvest Finance blog
These apps used similar privacy policies and the Median structure. Two additional apps, Raydium and PancakeSwap, used different package names and privacy policies but had the same underlying goal: to steal users’ mnemonic phrases.
Remove Malicious Apps and Secure Your Device
If you’ve installed any of these apps, remove them immediately and use a security solution to scan your device for any malicious software. This will help ensure that your device and cryptocurrencies are secure.
Remember to always be cautious when installing apps, especially those related to finance and cryptocurrency. Verify the authenticity of an app and its developer before installing, and never enter sensitive information into an app that you’re not sure is legitimate.