A new form of cryptocurrency-stealing malware has been identified in the Google Play store.
Dubbed 'clipper' malware, it was discovered inside an app impersonating MetaMask-a full browser extension which allows Ethereum-based apps to run on a browser without running a full Ethereum node.
Clipper malware works by taking advantage of the copy-paste feature.
Crypto apps are especially vulnerable because they require that users input long and complicated cryptocurrency addresses.
The malware then monitors the clipboard of the infected system and identifies values that look like a wallet address.
Once identified, the malware swaps the victim's address for the hacker's address.
If the victim completes the transaction without noticing the change, the crypto gets deposited in the attacker's account instead. This malicious app was discovered by cybersecurity company Eset and is the first known app of its kind to pass Google's vetting procedures.
There has been much discussion about what has now been dubbed as 'crypto-jacking' which is coin mining that is done using the computing power of other people's machines.
Another crypto-jacking attack is performed via email, where a user is phished and malicious mining software is installed on the victim's computer.
"Coin miners made up 24 percent of all web attacks blocked in December 2017, and 16 percent of web attacks blocked in the last three months of 2017, demonstrating the big impact of these browser-based coin miners," the report from Symantec read.Did you like this article? Join us.
First Case of Crypto-Jacking 'Clipper' Malware Found on Google Play Store
Published on Feb 12, 2019
by Cryptoslate | Published on Coinage
Prominent Investor Thinks Bitcoin Will Hit $1 Trillion Valuation in Next Bull Market
Chris Burniske-former crypto lead at ARK Invest and a partner at Placeholder, a crypto venture capital partnership based in New York with $150 million in capital under management-believes the market cap of bitcoin will surpass $1 trillion during the next bull market.
Craig Wright Continues to Chase His Critics as Major Crypto Platforms Boycott His Cryptocurrency, BSV
One of the world's largest cryptocurrencies, decided to delist BSV amid Wright's campaign to deanonymize one of his critics, other major platforms - including ShapeShift and Kraken - followed suit.
Bitcoin Holds Over $5,300 as Top Altcoins See Mixed Signals
Saturday, April 20 - most of the top 20 cryptocurrencies are reporting slight gains and losses capped under 2% on the day to press time.
There's a new 'Coinbase effect'-the Binance Chain pump
Since its launch, Binance Chain has attracted coins away from competitors, pumping the value of coins that switch.