In our rapidly evolving digital age, it’s all too easy to place unwavering trust in the internet without fully considering what we might be sacrificing in return.
This is particularly true when it comes to mobile applications. Our smartphones are teeming with them, boasting nearly two million on Apple’s App Store and almost three million on Google’s Play Store – all at our fingertips and ready for use.
It’s often claimed that the average individual has approximately 100 apps installed. Naturally, these include popular social media platforms such as X/Twitter, Facebook and Reddit, alongside news apps like Dublin Live’s own app available across all devices, dating apps like Tinder, Bumble, games like Clash of Clans, and many more, according to Mirror US.
We’re consistently advised by major mobile and security firms to only download applications from the official stores, yet it appears even this isn’t a foolproof method to ensure complete safety.
Researchers at Cyble have discovered a series of apps that have managed to infiltrate the Play Store by imitating the names or icons of legitimate digital wallets.
Once these deceptive apps are installed onto your mobile device, they launch a phishing website or an in-app WebView where they solicit mnemonic phrases that can be used to drain your wallet entirely.
Cyble identified over 20 different apps targeting crypto wallet users by masquerading as well-known wallets such as SushiSwap, PancakeSwap, Hyperliquid and Raydium.
Nine wallets are reportedly under threat of impersonation, and experts warn that this number may increase, putting more individuals at risk.
The Mirror US has urgently advised smartphone users to delete certain apps identified as harmful immediately. It is equally important to activate Google’s Play Protect for added security on your device.
Cyble cautions: “[These apps] employ phishing techniques to steal users’ mnemonic phrases, which are then used to access real wallets and drain cryptocurrency funds.”
“They have been progressively discovered over recent weeks, reflecting an ongoing and active campaign.”
All identified malicious apps have promptly been flagged to Google, who is currently working on purging them from the PlayStore.
Google has been reached for an official statement on the matter.