A malicious cryptocurrency wallet app masquerading as the popular Web3 protocol WalletConnect was downloaded 10,000 times on the Google Play Store before being taken down.
According to Official Information, Only 150 Out of 10,000 People Who Downloaded Fake Crypto Wallet Had Their Assets Stolen
The app siphoned off more than $70,000 worth of cryptocurrency in a sophisticated phishing attack over a four-month period. While only 150 users were reportedly affected, the incident highlights the ongoing vulnerabilities in mobile app marketplaces.
According to cybersecurity firm Checkpoint Research, the fake app tricked users into confirming transactions by redirecting them to a phishing site, which gave the hackers access to users’ digital wallets. In contrast, the legitimate WalletConnect protocol facilitates secure communication between crypto wallets and decentralized applications (dApps) using QR codes, allowing users to interact with dApps without exposing private keys.
Michael McLaughlin, Co-Leader of the Cybersecurity and Data Privacy Practice Group at Buchanan Ingersoll & Rooney, said basic cybersecurity measures are especially important for crypto users. “If you’re using Coinbase, Kraken, or any other crypto trading platform, they offer multi-factor authentication, even on mobile apps. And you have to implement that,” he said.
McLaughlin also urged users to be careful when downloading apps from digital stores, advising them to thoroughly examine app ratings and reviews. “If it only has three users and no stars, you’re not going to trust it,” McLaughlin said. McLaughlin also warned about sudden changes in app behavior, such as legitimate-looking apps switching from a different function to cryptocurrency trading overnight.
*This is not investment advice.