More than 600 malicious apps after your bitcoin in popular app stores: RiskIQ | finder.com

More than 600 malicious apps after your bitcoin in popular app stores: RiskIQ

Kyle Torpey 24 January 2018

Apple and Google Play users are among those at risk of downloading a malicious app.

Some of the most well-known app stores in the world are housing malicious bitcoin apps. These apps are built with the sole intention of stealing personal data and money from the associated hacker’s targets, according to digital threat management company RiskIQ.

Apple, Google Play, SameAPK, and APKPlz are among the app stores potentially at risk.

RiskIQ’s methodology was simple

In order to find the malicious apps, RiskIQ analyzed 18,408 apps found in twenty different app stores.

To find the malicious apps more easily, RiskIQ scanned the app stores or apps that included one of the top ten most popular bitcoin exchanges in the title. Of the apps that were found via this method. 661 of them were already blacklisted by cybersecurity vendors. However, they were still available for download in the app stores.

The Google Play store took the top spot in terms of having the highest number of malicious bitcoin apps found in its app store, with 272 potentially dangerous apps found on the Android-focused platform.

Bitcoin users must be cautious

When tricking someone into using a malicious bitcoin app, a hacker is able to steal real money with no possibility of a charge-back or refund for the victim. In the case of apps that are disguised as legitimate bitcoin exchange apps, hackers are able to obtain login credentials that could then be used to withdraw bitcoin and other cryptocurrencies from the victim’s exchange account.

For this reason, it’s extremely important for all digital asset exchange users to always enable two-factor authentication.

Anyone interested in downloading bitcoin-related apps should be careful of what they’re putting on their device and try to stick to the official app stores.

“We are seeing threat actors around the world exploiting what is already a hostile currency in a lawless digital world. Before handing over any cash or personal data, investors should carry out thorough research into the exchange and wallet apps they intend to use,” RiskIQ EMEA vice president Fabian Libeau said.

“By checking the developer’s name, user reviews and the number of app downloads, investors can measure the validity of an app and be more confident in their choice.”

This information should not be interpreted as an endorsement of cryptocurrency or any specific provider, service or offering. It is not a recommendation to trade. Cryptocurrencies are speculative, complex and involve significant risks – they are highly volatile and sensitive to secondary activity. Performance is unpredictable and past performance is no guarantee of future performance. Consider your own circumstances, and obtain your own advice, before relying on this information. You should also verify the nature of any product or service (including its legal status and relevant regulatory requirements) and consult the relevant Regulators' websites before making any decision. Finder, or the author, may have holdings in the cryptocurrencies discussed.

Picture: Shutterstock

Ask an Expert

You are about to post a question on finder.com:

  • Do not enter personal information (eg. surname, phone number, bank details) as your question will be made public
  • finder.com is a financial comparison and information service, not a bank or product provider
  • We cannot provide you with personal advice or recommendations
  • Your answer might already be waiting – check previous questions below to see if yours has already been asked

Finder only provides general advice and factual information, so consider your own circumstances, or seek advice before you decide to act on our content. By submitting a question, you're accepting our Terms and Conditions and Privacy Policy.
Go to site