$ 29,289.00 3.29%
$ 1,965.52 3.16%
$ 49.63 5.28%
$ 0.084129 3.08%
$ 7.77 2.63%
$ 1.34 5.46%
$ 0.000114 18.35%

Internet security firm ESET exposes fake apps bypassing Google’s message restrictions

fraud sa bitcoin scam

Analysts from the security firm ESET uncovered that fraudulent crypto apps have been employing a method to bypass authentication mechanisms on Google.

Google had recently imposed restrictions on SMS and calling for Android apps to prevent illicit firms from exploiting them.

The said apps, named BTCTurk Pro Beta, BtcTurk Pro Beta and BTCTURK PRO had created impressions of a legitimate Turkish crypto firm – BtcTurk – to gain access to the services.

Once the fraudulent versions of the BtcTurk apps are downloaded by a user, they ask for notification access from the user. Upon doing this, the apps can them peruse notifications from other apps on the user’s device and exploit them for their own financial gain.

“One of the positive effects of Google’s restrictions from March 2019 was that credential-stealing apps lost the option to abuse these permissions for bypassing SMS-based 2FA mechanisms. However, with the discovery of these fake apps, we have now seen the first malware sidestepping this SMS permission restriction,” said Lukáš Štefanko, a researcher from ESET.

The notification feature was implemented recently in the Jelly Bean 4.3 version of Android, which signifies that almost all current Android devices could fall prey to the scam’s methods of intrusion. The fraudulent BtcTurk apps could operate on a vast majority of Android devices of the day.

Despite this, the fake apps’ preferred technique of intrusion does come with its setbacks: The scam’s operators can only gain access to content that fits the text field.

This means that all text will not be included in the OTP. Messages that are shorter and more concise will likely be left out of the notification message.

Siranjeev Santhanam

Siranjeev Santhanam

Siranjeev has been involved in content development and professional writing for over five years now. He's worked with tech firms, digital management companies and news outlets. Cryptocurrency has occupied one of his top interests for a few years now, and he's really passionate about this booming new sector.

Related News

Hot Stories

Dogecoin price analysis: DOGE illustrates stable dynamics at $0.0869
Verasity Price Prediction 2022-2031: Soon to hit $0.50 after Crypto.Com listing?
Seth Green loses his 4 NFTs in a Phishing scam; begs not to buy them.
Polkadot price analysis: DOT/USD gains a massive value at $10.08
Vitalik Buterin reveals when Ethereum merge could happen

Follow Us

Industry News

President of Panama Refuses to Sign the Cryptocurrency Bill
Gabe Plotkin's hedge fund Melvin Capital shut its doors this week
CFTC indicts 2 men for running a $44M crypto Ponzi scheme
Goldman Sachs: crypto crash has little effect on the US economy
Commonwealth bank halts crypto pilot program