ETHERLive
ETHERLive delivers real-time price and volume data across 16+ exchanges to users in a clear and easy-to-understand package. Users can get up-to-the-second updates for each exchange/currency pair, as well as aggregated market averages for each exchange, currency, and the market as a whole. It also provides a global converted average of all the currency pairs monitored by ETHNews, converted to USD.

---

24hr ---
--%
Tuesday Feb 19th 2019
RESOURCES

The Basics

Learn the basics of Ethereum and various cryptocurrency technologies

Learn More

What is Ethereum?

Understand the underlying principles of the Ethereum Platform

Learn More

The Blockchain

Discover the revolutionizing technology known as the blockchain

Learn More
SUBMIT

Press Release

Submit a press release for consideration on ETHNews

Submit Press

Story / Dapp

Submit a story or DAPP to be considered for publication on ETHNews.

Submit Story

Explanation

Submit "Ethereum Explainer" content for consideration to be featured on ETHNews

Submit Topic
ETHNews Logo
---
--%
Home
News
Etherlive
Ether Price Analysis
Resources
Contact Us

That's Not MetaMask Mobile, It's Malware

By

Nathan

Graham

WriterETHNews.com

The clipper malware can steal credentials and keys and change wallet addresses.

In a February 8 announcement, cybersecurity firm ESET said it had discovered malware in the Google Play store that was designed to steal crypto wallet addresses and keys.

According to ESET, this type of malware, dubbed a "clipper," was first spotted in 2017 on Windows before infecting Android app stores in 2018. ESET researchers say it has been available on "underground hacking forums" and on popular software-hosting site download.cnet.com. The Google Play store is the latest to be affected.

The clipper malware is so named because it can copy a bitcoin or Ethereum wallet address that has been saved on a digital clipboard and change that address to one that belongs to the attacker. The malware is also designed to steal private keys.

To accomplish this goal, the developers of the malware designed the software to look like a mobile MetaMask application, enticing users to download the malware onto a mobile device. However, though MetaMask has been developing a mobile app, one has not been released.

The malware has since been removed from the Google Play store. Just in case, the ESET team reminded cryptocurrency users to always check the official website of the app developer or service provider for the link to the official app.

In October 2017, the ESET team discovered fake mobile apps from the Poloniex exchange in the Google Play store. That malware was designed to steal login credentials and compromise victims' Gmail accounts as a means of sidestepping two-factor authentication. 

Nathan Graham

Nathan Graham is a full-time staff writer for ETHNews. He lives in Sparks, Nevada, with his wife, Beth, and dog, Kyia. Nathan has a passion for new technology, grant writing, and short stories. He spends his time rafting the American River, playing video games, and writing.

ETHNews is committed to its Editorial Policy

Like what you read? Follow us on Twitter @ETHNews_ to receive the latest MetaMask, mobile or other Ethereum dapps news.