Although the Google Play Store passes the App Store in terms of the number of applications, it also brings some problems.
Researchers found that an application included in the Play Store was doing crypto money theft, out of users’ requests.
Eset researchers published the results of the last Friday, the legitimate way of doing a crypto money business application that actually appears in the Android clipboard by copying the wallet addresses revealed that the burglary. So when you wanted to use your own crypto money wallet, you were putting the money in the wallet of the attackers.
A similar event hit users in Windows in 2017, and in 2018, they stole users’ money by copying addresses in a bot named Satori. The current application on the Google Play Store has been designed as a copy of another application running Ethereum-based MetaMask (non-malicious and really running).
Eset quickly discovered that the application published on Google Play on the 1st of February was actually theft and informed Google. “Google for the first time overlooked malicious software about crypto money,” says Lukas Stefanko, who is one of Eset’s researchers.