Fun

Criminals Target Privacy Coins: How To Avoid Downloading Fake Wallet Apps

News Feed - 2020-09-05 04:09:13

Criminals Target Privacy Coins: How To Avoid Downloading Fake Wallet Apps


Reports in the past few weeks detail that bad actors are targeting two privacy coin projects, Monero and Zcash, adding to concerns about the growing rate of security incidents involving blockchain networks. Such incidents, as well the repeated 51% attacks on the Ethereum Classic network or the Electrum wallet breach, suggest criminals are becoming more sophisticated.


Still, bad actors sometimes use less sophisticated methods and appear to get away with it. For instance, the security breach targeting Monero users emerged after scammers created a fake Mymonero android app URL.


In a post on Reddit urging users to ignore the fake link, Monero developers claimed this to be the work of the “same group of scammers that have been targeting Myetherwallet since at least 2016.” According to these developers, “every time it gets reported (the fake Myetherwallet) and taken down, they manage to come back up again.”


Explaining why they issued an alert, the XMR Core team believes its “very likely that the app can be used to steal user’s funds” and is thus urging users to “report the fake web address to Google.”


Meanwhile, another privacy-focused crypto, the Zcash project appears to have been targeted as well after attackers created a fake Twitter account, according to Tim Ismilyaev, CEO and Founder at Mana Security.




According to Ismilyaev, “the account (which now boasts more than 6,000 followers) even publishes information about fake distributions of the crypto and contains Ethereum addresses for fundraising.”


Explaining why the privacy coins are apparently getting targeted now, the Mana Security founder says for criminals, this is more logical than aiming for bigger coins.


“The key reason for this is the simplicity to get to the top-3 positions in search results. It’s orders of magnitude more challenging to get the same places for Bitcoin and Ethereum,” explains Ismilyaev.


Still, the CEO is also blaming the Google Play store, which he says does not “manually verify each update of apps like Apple does for its store.”


As a consequence, Google’s store “contains at least dozens thousands of counterfeit apps.” It costs less than $25 “for an attacker to publish a new fake wallet” after “spending just a couple of days making the app.”


It also appears that attackers target users that “don’t want to take extra steps to verify wallets from multiple sources.” Security experts like Ismilyaev say that “before installing a new crypto wallet” it would be wise to “find references about the particular wallet on the internet.”


Other steps that new users can take in order to protect themselves include triple-checking wallets. “Developers usually post recommended wallets to use. Also, users can find reviews of specific wallets on the internet: all good wallets have a handful of youtube/blog reviews posted in 2018/2019,” says Ismalyaev.


Meanwhile, as law enforcement and cybersecurity tech firms make advances in the arena of blockchain analysis and tracing, there is a likelihood that transactions on privacy-focused networks will become traceable. Just recently, Ciphertrace claimed it now has tools capable of tracing Monero transactions even as other experts doubt this claim.


Whichever is the case, Ismilyaev is urging crypto buyers not to take chances when acquiring coins such as Monero.


“Buy crypto in batches — to minimize the likelihood of buying stolen funds. Limit the first purchase of a cryptocurrency to $10 and withdraw the coin at any crypto exchange. If it works well, then buy the rest of the coins.”


Despite Google Play’s alleged failure to flag fake apps, the CEO says users can still check an application’s installations, ratings, and reviews for guidance.


“It’s a good practice to install only apps with 100k+ installs, four-star+ rating, and 1000+ reviews,” Ismaliyaev argues.


What do you think of these security breaches? Share your thoughts in the comments section below.Research: New Malware Employs Tor and Bittorrent To Steal Bitcoin and EtherSECURITY | 14 hours agoEthereum Classic Suffers 51% Attack Again: Delisting Risk AmplifiedSECURITY | 5 days agoTags in this storyBitcoin, Ciphertrace, Counterfeit apps, fake accounts, fake apps, Fake Wallets, Google Play, Monero, Monero (XMR), Privacy, privacy coin, verify wallet


Image Credits: Shutterstock, Pixabay, Wiki CommonsUse Bitcoin and Bitcoin Cash to play online casino games here.Show comments

News Feed
Biggest Movers: XRP Hits Fresh 5-Month High on Tuesday, Extending Recent Win Streak
Biggest Movers: XRP Hits Fresh 5-Month High on Tuesday, Extending Recent Win Streak Xrp rose to a fresh five-month high on Tuesday, as prices climbed for a fourth straight session
2023-03-29 01:00 AM
Citadel, Charles Schwab, Fidelity Join Forces to Build Cryptocurrency Trading Platform
Citadel, Charles Schwab, Fidelity Join Forces to Build Cryptocurrency Trading Platform Citadel Securities and Virtu Financial are reportedly building a cryptocurrency trading platf
2022-06-09 08:30 AM
Coinbase to launch DOGE futures, says it 'transcended' meme origins
Tom Mitchelhill6 hours agoCoinbase to launch DOGE futures, says it "transcended" meme originsCrypto exchange Coinbase has announced plans to launch futures trading for Dogecoin, Litecoin and Bitcoin Cash as soon as April
2024-03-21 11:39 AM
While Miners Deal With Low BTC Prices, Bitcoin’s Mining Difficulty Target Expected to Increase 3% Higher
While Miners Deal With Low BTC Prices, Bitcoin"s Mining Difficulty Target Expected to Increase 3% Higher Bitcoin’s mining difficulty target is expected to increase on Dec. 1
2022-12-19 06:00 AM
Okcoin and Coinbase to Halt XRP Trading Due to the US SEC Lawsuit Against Ripple
Okcoin and Coinbase to Halt XRP Trading Due to the US SEC Lawsuit Against Ripple Two major cryptocurrency exchanges joined the XRP trading suspension campaign in
2020-12-30 00:40 AM
Value Locked in Defi Jumped 7% in 5 Days — Harmony’s Horizon Bridge Siphoned for $100M
Value Locked in Defi Jumped 7% in 5 Days — Harmony"s Horizon Bridge Siphoned for $100M While crypto prices have seen some healing during the last few days, the total value locked
2022-06-26 00:30 AM
Gareth Jenkinson18 hours agoTether CTO Paolo Ardoino says Bitcoin mining needs better analytical toolsStablecoin issuer Tether is building specialized Bitcoin mining software aimed at using data analytics to optimize min
2023-08-17 23:25 PM
Daniele Servadei6 hours agoWSJ debacle fueled US lawmakers’ ill-informed crusade against cryptoThe Wall Street Journal corrected its misreporting about crypto funding Hamas, but it was too late to stop lawmakers from a
2023-10-31 02:03 AM
FUFU Raises $1.7m From Major Investors to Develop the Next Generation Content Marketing Platform
FUFU Raises $1.7m From Major Investors to Develop the Next Generation Content Marketing Platform sponsored UwUFUFU.com, a content marketing platform, has successfully raised $1.7 mi
2021-09-14 14:00 PM
$15 Million Bounty on Maduro: US Charges Venezuelan President With Narco-Terrorism and Drug Trafficking
$15 Million Bounty on Maduro: US Charges Venezuelan President With Narco-Terrorism and Drug Trafficking The U.S. has charged 14 high-ranking officials of the Venezuelan governmen
2020-03-27 15:15 PM
Bitcoin, Ethereum Technical Analysis: ETH Back Under $2,000 as Balenciaga Gains Lose Steam
Bitcoin, Ethereum Technical Analysis: ETH Back Under $2,000 as Balenciaga Gains Lose Steam Following strong gains to start the week, BTC once again fell under $30,000, as crypto pr
2022-05-24 23:15 PM
Grayscale’s ETH ETF outflows could subside this week — Analyst
Tom Mitchelhill3 hours agoGrayscale’s ETH ETF outflows could subside this week — AnalystEther ETFs posted a net outflow of $98 million on July 29, marking the fourth consecutive day of bleeding — but analysts predi
2024-07-30 14:55 PM