13 apps removed after researchers uncover Trojan crypto wallet scheme

13 apps removed after researchers uncover Trojan crypto wallet scheme

Research by cyber security firm ESET has uncovered a “sophisticated scheme” that disseminates Trojan apps disguised as popular cryptocurrency wallets.

The malicious scheme targets mobile devices using Android or Apple (iOS) operating systems which become compromised if the user downloads a fake app.

Our top trading bots

According to ESET's research, these malicious apps are distributed through bogus websites, and imitate legitimate crypto wallets, including MetaMask, Coinbase, Trust Wallet, TokenPocket, Bitpie, imToken, and OneKey.

The firm also discovered 13 malicious apps impersonating the Jaxx Liberty wallet, available on the Google Play Store. Google has since removed the offending apps, which were installed more than 1,100 times, but there are still many more lurking out there on other websites and social media platforms.

The threat actors disseminated their wares through social media groups on Facebook and Telegram, intending to steal crypto assets from their victims. ESET claims to have uncovered “dozens of trojanized cryptocurrency wallet apps,” going back to May 2021. It also stated that the scheme, which it believes is the work of one group, was primarily targeting Chinese users via Chinese websites.

Lukáš Štefanko, the researcher who unraveled the scheme, said that there were other threat vectors, such as sending seed phrases to the attacker’s server using unsecured connections, adding:

“This means that victims' funds could be stolen not only by the operator of this scheme but also by a different attacker eavesdropping on the same network.”

The fake wallet apps behave slightly differently depending on where they are installed. On Android, it targets a new cryptocurrency that the user may not have previously traded, prompting the user to install the appropriate wallet. While on iOS the apps need to be downloaded using arbitrary trusted code-signing certificates circumnavigating Apple’s App Store. This means that the user can have two wallets installed simultaneously, the genuine one and the Trojan, but poses less of a threat since most users rely on App Store verification for their apps.

Related: Hodlers beware! New malware targets MetaMask and 40 other crypto wallets

ESET advises cryptocurrency investors and traders to only install wallets from trusted sources that are linked to the official website of the exchange or company.

In February, Google Cloud unveiled the Virtual Machine Threat Detection (VMTD) system, which scans for and detects “cryptojacking” malware designed to hijack resources to mine digital assets.

According to a January Chainalysis report, cryptojacking accounted for 73% of the total value received by malware-related wallets and addresses between 2017 and 2021.

Keep reading upon Cointelegraph
Vietnamese deputy PM calls for building legal framework for digital assets
Le Minh Khai, the deputy prime minister of Vietnam has issued a notification to the finance ministry, asking them to explore and amend laws to build a legal...
Binance awarded Bahrain crypto service provider license
Crypto exchange Binance will provide fully regulated services to its first country in the Middle East thanks to a license granted by Bahrain’s central bank.Bahrain...
China’s Supreme Court adds digital currency to list of illegal fundraising methods
China’s hardline policy on crypto took another turn on Thursday as the country’s Supreme Court revised its judicial interpretation for illegal fundraising...
3 things every NFT investor should know to avoid a tax nightmare
2021 will be remembered as the year of nonfungible tokens (NFTs). In a year where names like Beeple and Bored Ape Yacht Club dominated the headlines, it’s...
KlimaDAO increases carbon offset stash by 50% in two months
Carbon offset protocol KlimaDAO has now accrued over 14 million on-chain carbon offsets and is causing waves in the more traditional carbon offset industry.The...
Mexico confirms plans to roll out CBDCs in 2024
Mexico has announced that it would introduce a new national central bank digital currency (CBDC) in 2024, according to a tweet posted on Thursday. The tweet...
Bitcoin rallies above $49K following Fed FOMC announcement of rate hikes in 2022
Bitcoin (BTC) climbed by over $2,000 on Dec. 15 as markets quickly reacted to news that the United States Federal Reserve would raise interest rates and...
Traders say ATOM could eventually do an AVAX-like surge to $100
Cosmos (ATOM) has the potential to record major gains in the upcoming weeks primarily because its longer-timeframe chart is showing a bullish continuation...
NFT collection's price takes a nosedive as creator's racist cartoons circulate
The Jungle Freaks nonfungible token (NFT) collection has lost roughly 80% of its trading value overnight after a series of racist cartoons drawn by one...
Just another bubble? Bitcoin price tops follow Chinese debt cycles, new research shows
Bitcoin (BTC) may be hitting new all-time highs, but it may just be another bubble, new research suggests.Unveiling a theory that could well rile Bitcoin...
Karura launches decentralized exchange on Polkadot and Kusama
Karura, the Kusama implementation of the Acala protocol, has launched its decentralized exchange (DEX) platform, Karura Swap.According to the announcement...
Thailand to introduce in-person KYC for crypto exchanges
Financial regulators in Thailand are preparing to tighten restrictions surrounding new account creation at crypto asset exchanges.According to a May 3 report...
Top 5 cryptocurrencies to watch this week: BTC, ETH, BNB, XMR, CAKE
Corrections in a bull phase are usually a bullish sign as they reduce the frothy excitement and allow stronger hands to enter the markets. However, the...
Garry Tan’s 2013 investment of $300K in Coinbase is now worth $2.4B
Garry Tan, a prominent angel investor and the founder of Initialized Capital, was one of the first investors to provide seed funding to Coinbase eight years...
Malta’s Prime Minister: Blockchain Makes Cryptos Inevitable Future of Money
The leader of the Maltese cabinet Joseph Muscat has openly claimed that unaltered ledger will help bitcoin and its brethren become the future of money....