In line with a recent report published by cybersecurity firm ‘Eset’, DApp [Decentralized app] MetaMask is facing new issues from cryptocurrency ‘scammers‘ after a malware impersonating the tool appeared on the Google Play Store.
The malware, that modifies computer clipboard data in an attempt to steal cryptocurrencies, was removed by Google at the starting of this month after a tip-off from Eset researchers.
Known by the name of ‘Clipper,’ the malware modifies copied cryptocurrency wallet addresses with an address linked to a the spammer in the hope funds will be sent elsewhere without the user consent.
The discovery marked the primary time such malware had created it past Google’s vetting procedures, the security firm noted.
“The clipper we found lurking within the Google Play store, detected by ESET security solutions as Android/ Clipper.C, impersonates a legitimate service known as MetaMask,” While explaining further Eset explained:
“The malware’s primary purpose is to steal the victim’s credentials and personal keys to gain access over the victim’s Ethereum [ETH] funds. However, it can also replace a Bitcoin [BTC] or Ethereum [ETH] wallet address copied to the clipboard with one belongings to the spammer.”
MetaMask – One amongst the oldest Ethereum [ETH]-basd DApps, has fallen victim to malicious illicit schemes before.
Earlier in July last year, Google developers ‘removed‘ the app from Google Play Store altogether, leaving solely fake impersonations. A lately report from MetaMask discovered the action had occurred by mistake.
Even ‘reported‘ earlier in Nov., malware analyst and researcher named ‘Lukas Stefanko’ found four fake crypto wallets available on the Google’s Play Store that were making an attempt to steal users’ personal information.