Watch out for the fake Poloniex phishing apps on Google Play

via TNW

Avid cryptocurrency traders ought to be extra careful what apps they download from Google’s Play Store – especially if they do their trading on popular exchange desk Poloniex.

ESET security researcher Lukas Stefanko has stumbled upon a malicious Poloniex copycat app designed to phish your credentials and steal your funds.

The researcher noted that when he first discovered the app, it was still in its “feeding phase” – meaning that it was set to redirect to the official Poloniex website until it has built up trust and a large enough user base.

“Once hundreds/thousands of users are logging into Poloniex through it,” Stefanko told TNW, “then it removes redirection and display only phishing screen to gain credentials.”

The good thing is that it appears Google was swift to remove the malicious app from the Play Store. “It was removed from the Play Store after I tweeted about it,” Stefanko told us.

It remains unclear whether the attackers were able to swipe any credentials, but we’ve reached out to the Big G for a clarification and will update this piece accordingly should we hear back.

For the record, this is hardly the first time a malicious app has slipped the cracks to end up on Google’s mobile software distribution platform. Indeed, a couple of months ago Ethereum thieves were targeting Android users with fraudulent copycats of popular cryptocurrency wallet MyEtherWallet on Google Play.

In other news, Poloniex was recently acquired by Goldman Sachs-backed payment company Circle for a reported fee of $400 million.

1 Like

Yes, I heard about these applications and it’s really terrible, because about a million people downloaded it, it means that more than a million devices are infected. In fact, Google should monitor such offers and not allow them to download. Despite the fact that I love Google, they sometimes behave very unprofessionally, however, Google remains one of the most popular application stores and it is a leader in this market. By the way, I recently learned that they launched a campaign where you can get a gift card from Google or loans, and buy various paid apps for free thanks to this. At first I did not believe it and decided to read on the Internet and stumbled upon and it turned out to be really true and I was already able to buy in more than 2 paid applications and am very happy

💰 YEN · DCTV ·️ Bitcoin Lambo · 10 Days of Bitcoin ·️ CEO's Brainpan 🧠