Android Phishing Malware Impersonates Turkish Crypto Exchange, BtcTurk
Android Phishing Malware Impersonated Turkish Crypto Exchange
Hackers and scammers are getting more dangerous every day. According to ESET, the cybersecurity company behind NOD32, a new kind of malware that is based on Android uses Google’s SMS permissions in order to overcome two-factor authentication (2FA).
By using this exploit, the malware is able to receive the numbers of the verification and to use them to invade accounts. These one-time passwords are often used in order to restrict the use of sites if the person does not allow them, so they are a security measure against hackers who stole passwords.
This dangerous new threat infects the computer by impersonating a Turkish cryptocurrency exchange called BtcTurk. You get the fake app online and then use your credentials. As soon as you do it, the malware will know your password and try to intercept your SMS messages. This way, it can get access to your cryptos.
The malware even has some techniques in order to prevent users from discovering that they have been attacked. For instance, the app can dismiss notifications that would generally appear and that would make the users perceive that they have been affected by some kind of threat.
Initially, the fake app appeared on Google Play Store on June 7. It was named BtCTurk Pro Beta and it was installed 50 times before it was reported. After the initial case, even two more versions of the software were also removed from the store because they also tried to fool people.
Unfortunately, cases such as this one are actually far from rare. Since cryptos cannot be seized (unless you are using a centralized wallet), it is tempting for the hackers to create programs that will use this in their advantage and many crypto-related businesses suffer from that.
BitMEX, for instance, reported that its P2P exchange had witnessed an influx of attacks. This is why according to the company (and everyone in the industry) security is essential when dealing with cryptos.
Without good security measures, you can easily lose your money to hackers, as they often have all the necessary tools in order to discover passwords and infiltrate into your account if you are not very careful.