Delete These 20+ Malicious Crypto Apps Now, CRIL Alerts Android Users
Android users face a major crypto scam as fake wallet apps mimic real ones. CRIL urges immediate deletion to prevent financial and data theft.
image for illustrative purpose
A cybersecurity warning has been issued after over 20 malicious applications on the Google Play Store were discovered posing as legitimate cryptocurrency wallets, with the goal of stealing sensitive personal data from Android smartphone users.
The alert comes from Cyble Research and Intelligence Labs (CRIL), which identified a coordinated phishing campaign using counterfeit crypto wallet apps to collect wallet recovery phrases from unsuspecting users.
Disguised under names such as SushiSwap, PancakeSwap, Suiet Wallet, and Raydium, these applications mimic the interface and features of authentic decentralized finance (DeFi) platforms. Once installed, they prompt users to input their 12-word seed phrases—critical credentials that give full access to crypto funds. These details are transmitted to threat actors, compromising the user's digital assets.
The distribution tactic involves uploading these harmful apps under developer identities previously associated with video editing and gaming utilities. The phishing links are concealed within the apps’ privacy policies, leading users to believe the request for credentials is legitimate. According to CRIL, this method enhances the apps’ credibility and reduces user suspicion.
High-Risk Apps to Uninstall Immediately
Users are urged to check their devices and remove the following apps without delay to mitigate the risk of data theft or unauthorized wallet access:
* Suiet Wallet
* SushiSwap
* Raydium
* PancakeSwap
* Hyperliquid
* BullX Crypto
* Meteora Exchange
* OpenOcean Exchange
* Harvest Finance Blog
Installing any of these applications may result in permanent loss of digital assets through unauthorized transactions.
Preventive Measures for Android Users
CRIL advises the public to follow these precautions to avoid falling victim to similar attacks:
* Refrain from installing lesser-known or unofficial crypto apps.
* Never input wallet recovery phrases unless using a verified and trusted platform.
* Check developer credentials and user feedback before downloading apps.
As cryptocurrency adoption grows, so does the sophistication of cyber threats. Experts stress that user vigilance and cautious app behavior remain the best defense.
