Application stolen from the wallets

Researchers from the Check Point Research (CPR) team discovered malware hidden in an app on Google Play.

That app, WallConnect, had more than 10,000 discharges and stole about 70,000 dollars in cryptomonade from the victims, until Google removed it. The WallConnect app has been on Google Play Store since March 2024.

The legitimate WalletConnect developed to facilitate the connection of decentralised apps (dApps) to crypto wallets. However, the WalletConnect has certain restrictions, as not all wallets support it, the CPR said, broadcast Telegrafi.

<x)

When the victims dismiss the version with the wrong intention, they are required to link their crypto portfolio, which leads them to a badly intended website.

“Users should then verify the selected portfolio and be required to authorize certain transactions,” explained CPR.

“Any user action sends encrypted messages to the Command and Control server (C&C) and user portfolio data, blockchain networks and addresses are received”, among other things.

Malware is designed to attract first the most expensive crypto-tokens before passing through to others.

The “Only 20 users whose money was stolen left negative comments on Google Play, showing that there are many victims who may not yet be aware of what happened to their money”, CPR warned.

Researchers say at least 150 users were deceived and their total loss exceeds $70,000. Given the difference between the number of victims and dismissals, it is possible that frauds have also artificially absorbed the number of downloads.

Check Point researchers reported the fraudulent app on Google and was removed from Google Play Store.

Users should be more cautious when connecting crypto wallets to a platform or service, and carefully inspecting any transaction before adopting it. /Telegraphy/