A new strain of Trojan malware for Android phones is targeting global users of top crypto apps such as Coinbase, BitPay and Bitcoin Wallet, as well as banks including JPMorgan, Wells Fargo, and Bank of America.
The malware is described as being designed for mass infection and is spread by SMS messages with links to load malicious Android package kit files.
The malware's creators have reportedly created "Automatic Transfer Systems" that aim to expedite and scale the thefts by triggering autofills of payment fields for legitimate Android apps to maliciously reroute transfers to the hackers.
The app is purported to issue a host of "Web fakes" that mimic legitimate apps to phish for sensitive data from users - specifically targeting customers of as many as 32 different crypto apps.
Push notifications using legitimate icons are a further device the malware uses to automate downloads of fake apps and trigger transaction autofills.
Group IB reportedly identified 27 fake crypto and banking apps specific to the United States, 16 for Poland, 10 for Australia, nine for Germany and nine for India.
The malware also targets payment systems and messenger services such as PayPal, Revolut, Western Union, eBay, Walmart, Skype and WhatsApp.
"Using the Accessibility Service mechanism means that the Trojan is able to bypass changes to Google's security policy introduced in new versions of the Android OS. Moreover, Gustuff knows how to turn off Google Protect; according to the Trojan's developer, this feature works in 70 percent of cases."
Roid users are advised by Group IB to download apps strictly from the Google Play store and pay attention to the extensions of downloaded files.
As reported in February, decentralized app MetaMask was recently pulled from Google Play after researchers detected malware impersonating the tool to steal crypto from users.
Android Malware Targets Users of 32 Crypto Apps, Including Coinbase, BitPay
Published on Mar 29, 2019
by Cointele | Published on Coinage
Coinage
Recent News
View All
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.