• Latest
  • Trending
  • All
  • News
Hackers Are Cloning Web3 Wallets Like Metamask and Coinbase Wallet to Steal Crypto

Hackers Are Cloning Web3 Wallets Like Metamask and Coinbase Wallet to Steal Crypto

June 15, 2022
A Wild Time Capsule in North Dakota Is This Week’s Most Popular Home

A Wild Time Capsule in North Dakota Is This Week’s Most Popular Home

June 25, 2022
5 Lovely Lake Homes Priced Below a Million Bucks

5 Lovely Lake Homes Priced Below a Million Bucks

June 25, 2022
Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

June 25, 2022
Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

June 25, 2022
Germany’s top energy regulator said the country can last just 2.5 months without Russian gas, and  there will be a ‘difficult’ autumn and winter ahead

Germany’s top energy regulator said the country can last just 2.5 months without Russian gas, and there will be a ‘difficult’ autumn and winter ahead

June 25, 2022
Consumers have never hated the U.S. economy this much—it’s a huge recession warning sign

Consumers have never hated the U.S. economy this much—it’s a huge recession warning sign

June 25, 2022
It seems NFT-themed Bored & Hungry restaurant no longer accepts crypto

It seems NFT-themed Bored & Hungry restaurant no longer accepts crypto

June 24, 2022
Celsius Network hires advisers ahead of potential bankruptcy: Report

Celsius Network hires advisers ahead of potential bankruptcy: Report

June 24, 2022
Could Crypto Regulation Actually Shift from the SEC to CFTC?

Could Crypto Regulation Actually Shift from the SEC to CFTC?

June 24, 2022
PancakeSwap: Your Recipe to a Sweet Life of CAKE Farming 

PancakeSwap: Your Recipe to a Sweet Life of CAKE Farming 

June 24, 2022
EUR/GBP: Renewed Brexit fears may start to weigh on sterling – Danske Bank

EUR/GBP: Renewed Brexit fears may start to weigh on sterling – Danske Bank

June 24, 2022
EUR/USD could still dip back to the recent low of 1.0350 – Rabobank

EUR/USD could still dip back to the recent low of 1.0350 – Rabobank

June 24, 2022
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Saturday, June 25, 2022
  • Login
WallStreetReview
  • Home
  • News
No Result
View All Result
WallStreetReview
No Result
View All Result
Home News

Hackers Are Cloning Web3 Wallets Like Metamask and Coinbase Wallet to Steal Crypto

by Editor
June 15, 2022
in News
0
Hackers Are Cloning Web3 Wallets Like Metamask and Coinbase Wallet to Steal Crypto
491
SHARES
1.4k
VIEWS
Share on FacebookShare on Twitter

metamask

Confiant, an advertising security agency, has found a cluster of malicious activity involving distributed wallet apps, allowing hackers to steal private seeds and acquire the funds of users via backdoored imposter wallets. The apps are distributed via cloning of legitimate sites, giving the appearance that the user is downloading an original app.

Malicious Cluster Targets Web3-Enabled Wallets Like Metamask

Hackers are becoming more and more creative when engineering attacks to take advantage of cryptocurrency users. Confiant, a company that is dedicated to examining the quality of ads and the security threats these might pose to internet users, has warned about a new kind of attack affecting users of popular Web3 wallets like Metamask and Coinbase Wallet.

The cluster, that was identified as “Seaflower,” was qualified by Confiant as one of the most sophisticated attacks of its kind. The report states that common users cannot detect these apps, as they are virtually identical to the original apps, but have a different codebase that allows hackers to steal the seed phrases of the wallets, giving them access to the funds.


Distribution and Recommendations

The report found out that these apps are distributed mostly outside regular app stores, through links found by users in search engines such as Baidu. The investigators state that the cluster must be of Chinese origin due to the languages in which the code comments are written, and other elements like infrastructure location and the services used.

The links of these apps reach popular places in search sites due to the intelligent handling of SEO optimizations, allowing them to rank high and fooling users into believing they are accessing the real site. The sophistication in these apps comes down to the way in which the code is hidden, obfuscating much of how this system works.

The backdoored app sends seed phrases to a remote location at the same time that it is being constructed, and this is the main attack vector for the Metamask imposter. For other wallets, Seaflower also uses a very similar attack vector.

Experts further made a series of recommendations when it comes to keeping wallets in devices secure. These backdoored applications are only being distributed outside app stores, so Confiant advises users to always try to install these apps from official stores on Android and iOS.

What do you think about the backdoored Metamask and Web3 wallets? Tell us in the comments section below.

Sergio Goschenko

Sergio is a cryptocurrency journalist based in Venezuela. He describes himself as late to the game, entering the cryptosphere when the price rise happened during December 2017. Having a computer engineering background, living in Venezuela, and being impacted by the cryptocurrency boom at a social level, he offers a different point of view about crypto success and how it helps the unbanked and underserved.



Coinbase Reduces the Size of the Firm's Workforce by 18%

Image Credits: Shutterstock, Pixabay, Wiki Commons, photo_gonzo

Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article.

Read More

Share196Tweet123Share49
Editor

Editor

  • Trending
  • Comments
  • Latest
Canada’s OSC Flags Tweets From Coinbase, Kraken CEOs

Canada’s OSC Flags Tweets From Coinbase, Kraken CEOs

February 22, 2022
Trudeau Invokes Rare Emergency Powers To Shut Down ‘Freedom Convoy’ Blockades

Trudeau Invokes Rare Emergency Powers To Shut Down ‘Freedom Convoy’ Blockades

February 15, 2022
S&P 500 confirms correction as stocks stumble on war fears

S&P 500 confirms correction as stocks stumble on war fears

February 23, 2022
Scholz to warn Putin of western resolve on Ukraine

Scholz to warn Putin of western resolve on Ukraine

0
Waning stockpiles drive widespread global commodity crunch

Waning stockpiles drive widespread global commodity crunch

0
FT Global MBA Ranking 2022: US business schools dominate

FT Global MBA Ranking 2022: US business schools dominate

0
A Wild Time Capsule in North Dakota Is This Week’s Most Popular Home

A Wild Time Capsule in North Dakota Is This Week’s Most Popular Home

June 25, 2022
5 Lovely Lake Homes Priced Below a Million Bucks

5 Lovely Lake Homes Priced Below a Million Bucks

June 25, 2022
Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

Clarence Thomas: Court Should Reconsider Gay Marriage, Birth Control Decisions Next After Overturning Roe

June 25, 2022
WallStreetReview

Copyright © 2022. WallStreetReview.com

Navigate Site

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Follow Us

No Result
View All Result
  • Home
  • News

Copyright © 2022. WallStreetReview.com

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Don't miss the

NEWSLETTER

Exclusive editorial

Breaking News

Quality Company Coverage

Expert Writers

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

WallStreetReview will use the information you provide on this form to be in touch with you and to provide updates and marketing.