Fake WalletConnect App Steals $70K from Google Play Users

A fake app on Google Play Store has stolen over $70,000 from unsuspecting users, posing as the popular WalletConnect platform, according to a report by Check Point Research. The fraudulent app, initially launched in March under the name “Mestox Calculator,” used deceptive tactics to avoid detection for over five months, targeting users’ cryptocurrency wallets.

Check Point Research revealed that the app tricked more than 150 users into connecting their wallets by employing “advanced evasion techniques.” While it initially passed Google Play’s security checks by appearing as a harmless calculator, once installed, it redirected users to malicious software, known as MS Drainer, designed to steal funds.

The WalletConnect Foundation is aware of a recent scam where bad actors developed a malicious app that exploited the WalletConnect name and was available on the Google Play Store. The app has been removed from Google Play Store. The Foundation reminds everyone that there is no…
— WalletConnect (@WalletConnect) September 29, 2024

The app lured users into linking their crypto wallets by requesting permissions to “verify” them, which unknowingly allowed the attackers to transfer large sums of cryptocurrency to their own accounts. However, only those who linked their wallets were affected, while others remained untouched by the scam.

Despite being downloaded over 10,000 times, the app has since been removed from Google Play. This marks the first instance of a wallet-draining app specifically targeting mobile users, raising significant security concerns for cryptocurrency holders.

“Fake reviews and consistent branding helped the app gain high rankings in search results, leading to its widespread downloads,” said Check Point Research.

This incident underscores the increasing threat of mobile-based scams in the crypto space. Experts urge users to verify the authenticity of apps before connecting their wallets to avoid falling victim to such attacks.

About The Author

Gate of Wise

Gate of Wise empowers you to stay ahead in digital innovation with insightful and accurate news on AI, blockchain, and digital currencies. We also offer smart advertising solutions to seamlessly connect your brand with a tech-savvy and engaged audience.

See author's posts

One thought on “Fake WalletConnect App Steals $70K from Google Play Users”

Leave a Reply Cancel reply

California Governor Vetoes AI Safety Bill Amid Industry Pushback

Mon Sep 30 , 2024

Governor Gavin Newsom rejects a bill mandating strict safety tests for AI, citing fears it would drive tech companies out of California. California Governor Gavin Newsom has vetoed a high-profile bill aimed at tightening safety regulations for artificial intelligence, following intense opposition from the tech industry. The Safe and Secure […]