Bitcoin Forum
July 17, 2019, 09:37:41 PM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: [2019-02-13] Fake MetaMask App Found On Google Play  (Read 80 times)
Unblock_news
Member
**
Offline Offline

Activity: 168
Merit: 12


View Profile
February 13, 2019, 02:39:12 AM
 #1

Be careful what you download from the Google Play store. There is a fake MetaMask app found on Google Play.

The Clipper takes advantage of this mechanism. It dabbles with the content of the clipboard, and instead of pasting your cryptocurrency address into the transaction, you will be inputting the address of the hacker.

Read more here: https://www.unblock.news/news/fake-metamask-app-can-steal-peoples-ethereum
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1563399461
Hero Member
*
Offline Offline

Posts: 1563399461

View Profile Personal Message (Offline)

Ignore
1563399461
Reply with quote  #2

1563399461
Report to moderator
livingfree
Hero Member
*****
Offline Offline

Activity: 1036
Merit: 516



View Profile
February 13, 2019, 03:34:11 AM
 #2

I think those people who have been complaining from the past days about their funds were gone on Metamask were victims of this fake App. If the WLS didn't found out that it is a fake app, Google will not remove it.

This is why I'm very careful on downloading apps on playstore and I only trust those apps coming from the website directly. These frauds shall be taken down by Google Play and take action on the other fraud apps that's still on their platform.

           ▄▄████▄▄
      ▄▄███▀    ▀███▄▄
   ▄████████▄▄▄▄████████▄
  ▀██████████████████████▀
▐█▄▄ ▀▀████▀    ▀████▀▀ ▄▄██
▐█████▄▄ ▀██▄▄▄▄██▀ ▄▄██▀  █
▐██ ▀████▄▄ ▀██▀ ▄▄████  ▄██
▐██  ███████▄  ▄████████████
▐██  █▌▐█ ▀██  ██████▀  ████
▐██  █▌▐█  ██  █████  ▄█████
 ███▄ ▌▐█  ██  ████████████▀
  ▀▀████▄ ▄██  ██▀  ████▀▀
      ▀▀█████  █  ▄██▀▀
         ▀▀██  ██▀▀
.
.WINDICE.
.


      ▄████████▀
     ▄████████
    ▄███████▀
   ▄███████▀
  ▄█████████████
 ▄████████████▀
▄███████████▀
     █████▀
    ████▀
   ████
  ███▀
 ██▀
█▀
.


     ▄▄█████▄   ▄▄▄▄
    ██████████▄███████▄
  ▄████████████████████▌
 ████████████████████████
▐████████████████████████▌
 ▀██████████████████████▀
     ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
     ▄█     ▄█     ▄█
   ▄██▌   ▄██▌   ▄██▌
   ▀▀▀    ▀▀▀    ▀▀▀
       ▄█     ▄█
     ▄██▌   ▄██▌
     ▀▀▀    ▀▀▀
.


                   ▄█▄
                 ▄█████▄
                █████████▄
       ▄       ██ ████████▌
     ▄███▄    ▐█▌▐█████████
   ▄███████▄   ██ ▀███████▀
 ▄███████████▄  ▀██▄▄████▀
▐█ ▄███████████    ▀▀▀▀
█ █████████████▌      ▄
█▄▀████████████▌    ▄███▄
▐█▄▀███████████    ▐█▐███▌
 ▀██▄▄▀▀█████▀      ▀█▄█▀
   ▀▀▀███▀▀▀
.


.


.
iOPlay NowOi
.


.



.
.
Follow Us
▀▀▀▀▀▀▀▀▀▀▀▀
joniboini
Hero Member
*****
Offline Offline

Activity: 630
Merit: 1076



View Profile WWW
February 13, 2019, 03:57:30 AM
 #3

Seems like the best protection is still security awareness. How easy it is for people to fall victim for this if they think any apps on Play Store is legit and checked by Google (did you, Google?).

But I wonder why the attacker use the clipper though, why not take the private key directly? I believe some users will enter their private key if they want to import their wallet to this app.

        ▄▄▀▀▀▀▀▀▀▀▀▄▄
     ▀▀ ▄▄▀▀▀▀▀▀▀▄▄ ▀▀▄
  ▄  ▄▀▀           ▀▀  ▀▄
 ▄▀ █      ▐█ █▌      █ ▀▄
▄█ █     ▄███████▄     █ █▄
█ ▄▀    ██▀▐█ █▌▀██     █ █
█ █     ██ ▐█ █▌ ██     █ █
█ ▀▄    ██▄▐█ █▌███    ▄▀ █
▀█ █     ▀████████▄    █ █▀
 ▀▄ ▀      ▐█ █▌ ▀█▌  █ ▄▀
  ▀▄  ▀▄           ▄▄▀  ▀
    ▀▄▄ ▀▀▄▄▄▄▄▄▄▀▀ ▄▄
       ▀▀▄▄▄▄▄▄▄▄▄▀▀
      █▀▀▀▀▀▀▀▀▀▀▀▀█
▄▄▄▀▀▀█   ▄▄▄▄▄▄   █
█     █ ▄▀      ▀▄ █
 █  ▄██ █        █ █
 █  █ █ █        ▀ █
  █ █ █ █ ▄█▄█▄  ▀ █
  █  ██ █  █▄▄█▄ █ █
   █ ██ ▄ ▄█▄▄▄█ █ █
   █  █ ▄  ▀ ▀   █ █
    █ █ █        █ █
    █ █ ▀▄      ▄▀ █
     ██   ▀▀▀▀▀▀   █
      █▄▄▄▄▄▄▄▄▄▄▄▄█
.PLATINUM  STABLECOINS
..USDQ KRWQ CNYQ JPYQ...

─────────────────────────
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█▄▄▄▄▄▄▄▄▄▄▄▄▄▄█
█              █
█              █
█              █
█              █
█              █
█              █
█              █
█              █
█▀▀▀▀▀▀▀▀▀▀▀▀▀▀█
█     ████     █
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
██████
██
██







██
██
██████
██████
██
██







██
██
██████
▬▬▬▬▬▬▬▬   WHITEPAPER   ▬▬▬▬▬▬▬▬
...FACEBOOK... .....TWITTER..... ...TELEGRAM...
▬▬▬▬▬▬▬▬   ANN THREAD   ▬▬▬▬▬▬▬▬
Kakmakr
Legendary
*
Offline Offline

Activity: 1722
Merit: 1302

★ ChipMixer | Bitcoin mixing service ★


View Profile
February 13, 2019, 06:31:21 AM
 #4

Seems like the best protection is still security awareness. How easy it is for people to fall victim for this if they think any apps on Play Store is legit and checked by Google (did you, Google?).

But I wonder why the attacker use the clipper though, why not take the private key directly? I believe some users will enter their private key if they want to import their wallet to this app.

The Private key is never exposed when you transfer funds from your address to the next. This attack is centered around the replacement of any destination address with the hackers Bitcoin address. So you might Copy the receivers address into the clipboard and then the hacker replace that address with his or her own Bitcoin address when you Paste it and hopefully you will not notice it and just click send.

The Clipboard hijacking method is quite common these days, so you must always verify the receivers address, after you pasted it from the clipboard/memory.  Angry  They use different methods to hijack the clipboard and apps on Google Play is just one of them.  Angry

Naida_BR
Member
**
Offline Offline

Activity: 476
Merit: 28

★777Coin.com★ Fun BTC Casino!


View Profile
February 13, 2019, 09:50:25 AM
 #5

This scam will never be going to stop.

Metamask has been targeted for so many time and something needs to be done from the developers part. Additionally, whoever gets scammed with these apps has to be blamed too. It is unbelievable how you trust an app that came from nowhere and it has appeared in the store.

1Referee
Legendary
*
Offline Offline

Activity: 1946
Merit: 1325

Segwit please.


View Profile
February 13, 2019, 01:04:52 PM
 #6

Additionally, whoever gets scammed with these apps has to be blamed too. It is unbelievable how you trust an app that came from nowhere and it has appeared in the store.

Not everyone knows what to look for when verifying software, especially when people are rushing to claim whatever shitcoin airdrop. In the end, someone needs to be scammed, then another one, and then dozens of more people in order to have it become public enough to pop up on news outlets like this.

Richard Heart has been hardcore shilling his Bhex shitcoin and recommended people to use MetaMask, so I hope they don't end up falling for the fake one.

davis196
Hero Member
*****
Offline Offline

Activity: 1260
Merit: 542


CyberDice - Best Bitcoin Dice Game


View Profile
February 13, 2019, 01:11:33 PM
 #7

Be careful what you download from the Google Play store. There is a fake MetaMask app found on Google Play.

The Clipper takes advantage of this mechanism. It dabbles with the content of the clipboard, and instead of pasting your cryptocurrency address into the transaction, you will be inputting the address of the hacker.

Read more here: https://www.unblock.news/news/fake-metamask-app-can-steal-peoples-ethereum

Google Play can't control all the apps that get listed everyday on the platform.Perhaps they should increase the developer's accounts signup fee.It's no secret that malicious apps can still be found on Google Play.

btyco
Copper Member
Jr. Member
*
Offline Offline

Activity: 364
Merit: 4


View Profile
February 15, 2019, 04:33:41 PM
 #8

When copying and pasting addresses and keys i always double check to ensure it is going to the right place. At least check the last 4 characters which is better than nothing

DarkPayCoin - [100% community governed and built]
[-] Website  [-] ANN Thread  [-] Discord  [-] Twitter  [-] Telegram
\ HIGH ROI, Low supply / - \ A privacy focused MN/PoS coin /
Kemarit
Legendary
*
Offline Offline

Activity: 1330
Merit: 1152


View Profile
February 15, 2019, 07:16:51 PM
 #9

When copying and pasting addresses and keys i always double check to ensure it is going to the right place. At least check the last 4 characters which is better than nothing

I also check the first and last 4 characters, just to make sure. I hope though that this fake MetaMask app has been taken down by Google already so that no more damage can be done. And I think this is not the first one though, so I do hope that people learn from this past mistakes. Wonder though how many times this fake apps have been downloaded. Smiley

CryptoBry
Sr. Member
****
Offline Offline

Activity: 812
Merit: 302



View Profile
February 16, 2019, 05:00:11 AM
 #10

I think those people who have been complaining from the past days about their funds were gone on Metamask were victims of this fake App. If the WLS didn't found out that it is a fake app, Google will not remove it.

This is why I'm very careful on downloading apps on playstore and I only trust those apps coming from the website directly. These frauds shall be taken down by Google Play and take action on the other fraud apps that's still on their platform.

It is quite sad that over and over again fake apps can be found in the Google Play and this is telling us that there is no concrete way that this app marketplace can easily determine a fake from real ones. The thing is that fake appca can easily victimized many people and it is only after something sinister happened that a discovery can transpire. I am hoping that soon there can be a better way that can detect fakes right from the very start...we have to use technology on this as we are now in the technology age and not let allow unscrupulous people from using the same technology to poison the people.
legatus21
Newbie
*
Offline Offline

Activity: 1
Merit: 0


View Profile
February 16, 2019, 10:34:40 AM
 #11

I was a victim of this MetaMask Shit, Please we have to be very careful when downloading from Google Play Store.
The Developers of Google should please try and find a way to fish out these Fake Apps.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!