A fake Skype app downloaded through Baidu is stealing users’ crypto, according to data from security firm SlowMist. The security researcher confirmed this after receiving a call from a Chinese individual who downloaded the app from the internet rather than an app store.
SlowMist has red-flagged an app pretending to be Skype that robbed a Chinese person of their crypto. The app was likely created by a Chinese gang who injected malicious code into an application package (APK) file the user downloaded.
Gang Uses Fake Chinese Binance App to Steal Crypto
The gang requested permission to access files and photo albums, much like a genuine social media app. The malicious files were then sent to the backend.
It appears that the gang used the same backend domain “bn-download3.com,” that was used for a fake Binance app last November. The fake Skype app has used this domain since May 23.
In addition to requesting file entrance, the fake app monitored traffic for the strings “ETH” and “TRX,” representing the Ethereum and TRON cryptocurrencies. It replaced the crypto addresses in the string with fixed malicious addresses and some retrieved from another domain.
Read more: 9 Crypto Wallet Security Tips To Safeguard Your Assets
Around 192,856 of TRX was sent to TJhqKzGQ3LzT9ih53JoyAvMnnH5EThWLQB using 110 deposits. The ETH address received 7,800 USDT in 10 transactions.
Go to Source to See Full Article
Author: David Thomas
Tip BTC Newswire with Cryptocurrency
Donate Bitcoin to BTC Newswire
Donate Bitcoin Cash to BTC Newswire
Donate Ethereum to BTC Newswire
Donate Litecoin to BTC Newswire
Donate Monero to BTC Newswire
Donate ZCash to BTC Newswire
