What Happened: Ledger Live Mobile Malicious app on GooglePlay store
with more than 500+ downloads so far.
google play store link: https://play.google.com/store/apps/details?id=com.ledger.lives.mobileapps
Archived: http://archive.vn/y1QZW
website: https://0101.systems/ylm/
Archived:https://web.archive.org/web/20200701003129/https://0101.systems/ylm/
Domain Name: 0101.systems
Registry Domain ID: aab2b5e3cbd449bd841a6feacd6332c7-DONUTS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL:
https://www.namecheap.com/Updated Date: 2020-04-30T10:38:07Z
Creation Date: 2020-04-25T10:37:22Z
Registry Expiry Date: 2021-04-25T10:37:22Z
Registrar: NameCheap, Inc.
![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fi.imgur.com%2FAtKzfj4.png&t=663&c=EjffZa-zyc0nog)
![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fi.imgur.com%2FrcHCBi2.png&t=663&c=TVEEmHLCYewETA)
![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fi.imgur.com%2FWTrWgDa.png&t=663&c=s9fbnIqbdwZrXw)
App loads 0101[.]systems/ylm/ into a Webview and asks for your secrets. Once entered, it will send to their backend and your funds will be swept
https://twitter.com/sniko_/status/1278089644761141254