Bitcoin Forum

If you are an Android user, you need to scan your device to ensure that you have not been compromised by a potent virus called the 'Anubis' virus.

This virus has the ability to render 2FA void via a MITM (man-in-the-middle) attack.

In addition, this virus could even render certain encryptions (i.e., DSAs like ECDSA) via a timing attack.

This virus is extremely sophisticated and it is targeting blockchain users specifically.

Make sure that you read this report. This was put out with particular urgency because it does not appear that this has been covered in the blockchain sphere at all for some reason. There are numerous cybersecurity experts in other sectors of this tech space that have written about this virus (including ZDnet as recently as this month).

Below is the link to the first report:

https://blog.zerononcense.com/2019/07/27/anubis-virus-major-android-virus-attacking-bitfinex-binance-exchange-apps-and-others-pt-1/

It is better to stay away from using mobile apps to trade. You can install those apps, to observe prices, but should not log in your accounts with mobile apps and trade directly on apps.
I only log in my accounts and trade on computers.

Even computers can be compromised especially PCs running on Windows. Lots of Malware out there.
Best thing to do is keep your device clean. Only download or get app links from the official websites.
And also have a good antivirus running on your device anytime you are using it.

There are some mobile apps that ease trading on the go Like Binance, Huobi, Kucoin apps, tab trader. If you are a day trader trust me... they come in handy when you are not with your computer. So you can't do away with them entirely.

There's really no need to scan if you're aware of what to avoid, since you can't get it through random usage:


If you're installing random apps on your android phone, you'd probably have a lot more threats to worry about than just this considering the state of the Play Store. You should be taking care of your phone like your PC, where you avoid installing unnecessary apps and verify all your downloads.

All kinds of devices are vulnerable to attacks if we are not careful on how we use them in online environments. Mobile devices are more vulnerable than computers, that what I want to emphasize. I do installed those apps but just to observe price, nothing more. I will keep sticking with my computers for tradings. If I don't have connection to computers, don't trade. In my opinion, it is more important to protect my funds, rather than increase them with some types of risks.

Many people are just holders and hence they can use computer to buy/sell at low frequency. But for regular traders, the demand to take profit or cut loss are high, especially when bitcoin rises or falls suddenly. Thus, mobile apps are needed. The only downside is that Binance app is not available on iOS. Using Android devices, CH Play apps are more lenient controlled and hence more risk of malwares. However, it doesn't matter whether it's PCs or smartphones, using in a smart and proper way can help avoid the risk of being attacked.

That's it. Screens of mobile devices are much smaller than computers, sure. And, on smaller screens, people are easier to make mistakes. It does not an issues if you make mistakes when typing Word documents, but if you do it when trading, it is serious issue.

I'm looking forward to switching to the new Huawei OS that Trump forced them to develop. :)

It will be another step towards freeing myself from Google et al.

Do you think that it will provides better security? I don't think so, because China (governments, locals, companies) tend to not play fairly in so many aspects, from political, human rights, commercial, technologies, and others. Personally, I do not believe in China and Chinese companies.

These days most all android phones have virus scanners inbuilt in them to check for potential viruses, and the process is automatically done hence most of the users should be safe.
I completely disagree with your statement because computer wallet hacking is more reported than mobile wallet hacking, eg Electrum desktop users were effected in recent hacks, but their mobile users were not effected.


@JetCash this move of yours is like trading USD for EURO and feeling safe that your money won’t loose it’s value, but we both know it’ll. The only software that gave complete privacy was BlackBerry, why do you think all big influential people always have one blackberry phone with them.

Link: https://www.cashify.in/blog/barack-obama-and-his-blackberry/

If you don't mind flashing OSs on your phone and a bit of minor bugs here and there depending on your phone model, I suggest taking a look at LineageOS, which was previously known as CyanogenMOD. Pretty famous OS on the mobile custom ROM community. Also, it's open source!

Check it out: https://lineageos.org/

For me, The privacy issues are more of an annoyance than a major issue. The biggest problem is the number of apps and other unwanted routines that Google keeps installing and updating. I want a mobile phone that works for me, and not for Google.

It seems like someone has put a lot of effort into programming of this virus, and things like this definitely create a lot of distrust in using mobile apps for banking and cryptocurrency. For now, the only defense against this virus is maximum caution when downloading something from Google Play, since this is identified as a major source of potential infection.

But when I done some reasearch about this virus, it's not really about something completely new, but the most likely modified version of virus which is first detected 12 years ago.

---

It all comes down to who spies on you, now it is Google, but if you use one day smartphone with Huawei OS, then China will do same thing USA is doing today. Spying competition between the great powers always breaks over the back of ordinary users, and therefore we can say that the age of privacy that existed 20-30 years ago is a thing of the past.

In what way are mobile devices more "vulnerable" than computers?

Come on, we all know that incidents of Malware attacks on computers especially those that run Windows are much more than those documented on mobile devices... But that's not the point.

My point is it's up to you to be security conscious to avoid such attacks, whether you are using PC or Phone. Just download necessary and egit apps and stay away with the junk.

I do trading on my phone when am not with my computer and its pretty easy. Screen size is 6 inches and I can even view and analyze graphs so easily using the tradingview app.

It probably has nothing to do with inherent security features, but the average person uses their phone far more than their PC, so missteps (like connecting to random wifi spots, random people spying on your screen, etc.) are more probable. It's also more vulnerable to physical attacks like theft.

That is not to say that they're vulnerable, of course, just that users need to take extra precautions when using them.

Thank you for contributing good points.
- People tend to less prepare security tools for their mobile devices. At least in my nation, and from what I observed.
- People might more probably to lose their phones on restaurant, on taxi cab, hotels, etc. due to carelessness.
- People tend to more carelessly when using mobile devices, clicking, downloading, surfing, etc. They likely do it or their children do it when they have rights to use their parents' phones.
These reasons are only true with careless people; and careful guys are excluded.  :)

And with Huawei you'll get a phone that works for the Chinese government, not you.


It's probably the best to have 2 phones - one for finances, important accounts, work, and the other for entertainment. The first one can be pretty simple and doesn't need to be replaced every few years.

Clicking on the very site you just shared OP could be a mistake, but sure nothing gets downloaded.