This article is a follow-up to our previous warning: “Android Warning: 20 Malicious Crypto Apps Found on Google Play Store” . While Google has taken steps to remove malicious apps, cybersecurity researchers have now confirmed that over 20 fake apps were involved in the campaign, actively targeting users of nine well-known crypto wallets (source [1] – The Economic Times).
Malware Campaign Still Active
The campaign remains ongoing, with new fake apps being added continuously. These apps impersonate trusted brands like MetaMask, Trust Wallet, Exodus, and others to trick users into revealing their seed phrases and private keys.
Scope and Tactics
Unlike isolated scams, this attack involves a wide network of phishing apps, some disguised as wallet tools and others posing as updates. The coordinated nature and diversity of targets suggest a deliberate and persistent effort by attackers.
Recommended Actions
- Use Play Protect or other trusted mobile security tools.
- Only install crypto apps through verified links from official wallet providers.
- Be skeptical of any app asking for your seed phrase.
- Check app reviews and developer names before installing.
Sources
