WalletConnect Steals $70,000 Through App

WalletConnect App Theft: A fake WalletConnect app on the Google Play Store stole $70,000 in cryptocurrency from over 150 users. The fraudulent app mimicked WalletConnect’s name and logo, misleading users and redirecting them to a phishing website.

Despite being downloaded 10,000 times, only 20 users reported the scam before Google removed the app after five months.

WalletConnect App Theft Raises Security Concerns 

The scammers behind the app were well aware of the typical challenges faced by web3 users, such as compatibility issues and lack of widespread support for WalletConnect across different wallets. The WalletConnect security breach was unsuspected and hit the crypto community with security concerns.

WalletConnect App Theft
Image Source: Thehackernews

They cleverly marketed the fraudulent app as a solution to these problems, taking advantage of the absence of an official WalletConnect app on the Play Store.

Coupled with a slew of fake positive reviews, the app appeared legitimate to unsuspecting users.

Checkpoint Research, a cybersecurity firm, investigated the malicious application and detailed the sophisticated mechanisms used by the hackers to deceive users and steal their assets. 

Although the fake WalletConnect app has since been removed from the Google Play Store, its existence raises concerns about the security vulnerabilities within app marketplaces and the growing sophistication of crypto-targeted malware.

How the WalletConnect App Hack Worked

The fake app posed as a legitimate WalletConnect service, which is widely used in the cryptocurrency space to facilitate decentralized application (dApp) interactions with crypto wallets. However, the malicious version contained hidden malware designed to funnel users to a scam website where their crypto wallet credentials were compromised.

Once users entered their wallet details and private keys on the fraudulent site, the scammers were able to access their funds and initiate unauthorized transactions, draining assets from their accounts. 

This scheme proved to be highly effective, with many victims losing significant sums of cryptocurrency before realizing they had been tricked.

The $70,000+ loss represents a combination of various cryptocurrency assets, including Bitcoin (BTC), Ethereum (ETH), and other altcoins, all stolen from unsuspecting users who had downloaded the fraudulent app.

Also Read: FNB Alerts About Criminals Targeting Digital Wallets

Google’s Reaction To The WalletConnect App Theft

Google, in response to these findings, stated that all malicious versions of the app identified by CPR were removed before the report’s publication.

The tech giant highlighted that its Google Play Protect feature is designed to automatically protect Android users against known threats, even when they stem from outside the Play Store.

The incident follows a recent campaign exposed by Kaspersky, in which 11 million Android users unknowingly downloaded apps infected with Necro malware, resulting in unauthorized subscription charges.

Interact with us via our social media platforms:

Facebook: Silicon Africa.
Instagram: Siliconafricatech.
Twitter: @siliconafrite.

Abdullahi Kafayat
Abdullahi Kafayat

Abdullahi Kafayat is an enthusiastic writer interested in the tech world. She's a graduate of Obafemi Awolowo University and has a BSc in Chemistry. You can reach her at Kafayatabdullahi17@gmail.com.

Articles: 689