translation of the article https://bit.ly/2q7gmdg
ESET experts have discovered a new phishing attack aimed at users of the cryptocurrency exchange Poloniex. In Google Play there is a new malicious application designed to steal data.
Poloniex is a popular cryptocurrency exchange where you can trade more than 100 cryptocurrencies. The resource has an official website, but there is no own mobile application, which has long been successfully used by scammers.
In March, the virus analyst ESET Lucas Stefanko found in Google Play new malicious application that uses the brand Poloniex. At that time, the program did not collect data – only forwarded users to the official website of the exchange.
According to Lucas Stefanko, fraudsters had planned thus to gain a loyal base of users, and then to intercept their data by using fake window to enter a username and password.
The phishing app was removed from Google Play after an ESET message.
In the fall of 2017, ESET warned about other phishing campaigns related to Poloniex. The fake POLONIEX and POLONIEX EXCHANGE apps that collect users ' logins and passwords have been downloaded from Google Play a total of over 5,000 times.
ESET recommends that you check the authenticity of mobile applications (the presence of a link on the official site), user ratings and reviews on Google Play, as well as use two-factor authentication and a reliable antivirus solution for mobile devices.