Latest news with #SushiSwap
Time of India
2 hours ago
- Time of India
Delete these dangerous apps immediately from your phone to protect your crypto wallet
Source: YouTube The apps listed on the Play Store are supposed to be properly examined and safe for our smartphones, devices, and data. However, some apps manage to sneak past Google's strict policies and access personal information. These malicious apps are tricking users into entering their 12-word wallet recovery phrases, leading to potential theft of crypto assets. They include fake versions of popular wallets such as SushiSwap, PancakeSwap, Hyperliquid, and Raydium. These apps, disguised as legitimate cryptocurrency wallets, are targeting sensitive user data. According to a new report by Cyble Research and Intelligence Labs (CRIL), more than 20 harmful apps on the Google Play Store pose a significant threat by stealing users' wallet recovery information. If installed, these apps should be deleted immediately to avoid phishing attacks, where hackers trick you into revealing personal information, and prevent potential financial loss. List of apps you need to delete to protect your personal data and crypto wallet To protect your crypto assets and personal data, uninstall these harmful apps from your device right away. by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like 5 Books Warren Buffett Wants You to Read In 2025 Blinkist: Warren Buffett's Reading List Undo Here's a list of the malicious apps: Name Package name Privacy Policy Pancake Swap hxxps:// Pancake Swap hxxps:// Raydium hxxps:// Raydium hxxps:// Raydium hxxps:// BullX Crypto hxxps:// OpenOcean Exchange hxxps:// Meteora Exchange hxxps:// SushiSwap hxxps:// SushiSwap hxxps:// Hyperliquid hxxps:// Hyperliquid hxxps:// Hyperliquid hxxps:// Hyperliquid hxxps:// BullX Crypto hxxps:// Harvest Finance blog hxxps:// Suiet Wallet hxxps:// Suiet Wallet hxxps:// Suiet Wallet hxxps:// Suiet Wallet hxxps:// In addition to the 20 applications that shared similar privacy policies and leveraged the Median framework, it was also identified two applications that used different package names and privacy policies. How to delete these dangerous apps from your smartphones Open settings Tap apps or Apps & Notifications Scroll and locate any suspicious wallet apps listed above Tap the app > Select uninstall If the uninstall is blocked due to device admin success Go to settings > Security > Device admin apps Disable access, then return to uninstall Huge phishing scam targets mobile users These fake cryptocurrency wallet apps are designed to steal the wallet recovery phase's essential key to accessing users' DeFi wallets. Once a user installs the app, it prompts them to enter their 12-word recovery phases, which cybercriminals then steal to access the user's wallet. Recommendations to avoid getting scammed by these dangerous apps: Users must follow the following cybersecurity best practices that serve as the first line of defense against attackers. Only install apps from trusted developers and double-check reviews. Avoid any app that asks for sensitive details like your recovery phrase. Use reliable antivirus and internet security software on all your devices — including smartphones, laptops, and desktops. Set strong, unique passwords and use multi-factor authentication whenever available. Enable biometric security features like fingerprint or face recognition to protect your mobile device. Be careful with links sent through SMS or email, especially if they seem suspicious or unexpected. Make sure Google Play Protect is turned on for added security on Android devices.
Metro
2 days ago
- Metro
9 apps you should delete from your phone immediately
Hiyah Zaidi Published June 11, 2025 11:54am Link is copied Comments Experts have recommended people get rid of certain apps from their phone after a team of researchers uncovered a series of them which imitate the names or icons of legitimate ones. Many of us keep hundreds of apps on our phones and often forget about them shortly after they download – but that can make us vulnerable (Picture: Getty) Experts tend to urge people to download apps from official apps stores, such as the Apple's App Store or Google's Play Store. However, even that is not always guaranteed to keep you safe. A list, issued by cyber security software company Cyble, revealed that these fake digital crypto wallets apps open a phishing website or an in-app WebView once they have been installed and opened (Picture: Getty) The apps then request a mnemonic phrase which can be used to empty your crypto-wallet. The company found more than 20 apps target crypto users by impersonating 'popular wallets such as SushiSwap, PancakeSwap, Hyperliquid, and Raydium' which trick users into installs by using 'compromised or repurposed developer accounts'. Right now, they warn there are nine wallets that are being mimicked, but that list could grow as there are more than 20 apps currently identified (Picture: Getty) The apps you should delete immediately are:• Pancake Swap• Suiet Wallet• Hyperliquid• Raydium• BullX Crypto• OpenOcean Exchange• Meteora Exchange• SushiSwap• Harvest Finance Blog (Picture: Getty) Digital wallets have no safety net, so any losses can't be recovered. Therefore, it is important that you do not download any apps unless you are sure they are provided by the people behind the wallet, and you have linked to the app from the actual website. If you have any of these apps, its important to delete them (Picture: Getty) In the report, the team concluded: 'This campaign highlights a well-coordinated phishing operation targeting the rapidly growing user base of cryptocurrency wallets. By distributing over 20 counterfeit Android applications through the Google Play Store, the threat actors impersonate legitimate wallets such as PancakeSwap, SushiSwap, Raydium, and others to steal users' mnemonic phrases—the essential keys to accessing their digital assets. What makes this campaign particularly dangerous is the use of seemingly legitimate applications, hosted under previously benign or compromised developer accounts, combined with a large-scale phishing infrastructure linked to over 50 domains. This not only extends the campaign's reach but also lowers the likelihood of immediate detection by traditional defenses' (Picture: Getty) Cyble recommends that people download apps only from verified developers, and to look at reviews before downloading anything. They also stress that people should be using reputable antivirus and internet security software packages on your devices such as PCs, laptops and phones. As per, they recommend using multi-factor authentication, and for even more security try using biometric data where you can (Picture: Getty)
Hindustan Times
3 days ago
- Hindustan Times
Crypto wallet users need to uninstall these apps on their phones right now
If you've installed any cryptocurrency wallet apps recently, it might be time to double-check. Cybersecurity researchers have uncovered a shocking new scam! Over 20 fake crypto wallet apps on the Google Play Store are stealing users' sensitive wallet data, putting digital assets worth thousands of dollars at risk. The report, released by Cyble Research and Intelligence Labs (CRIL), highlights how these apps managed to bypass Google's security checks and landed on the Play Store. They target users of well-known decentralised finance (DeFi) wallets such as SushiSwap, PancakeSwap, Hyperliquid, and Raydium. What makes this scam so dangerous? What makes this scam especially dangerous is its method. Once installed, these apps prompt users to enter their 12-word wallet recovery phrase, a secret key that gives complete access to one's crypto wallet. The moment a user enters this phrase, hackers gain control and can transfer out all funds instantly, leaving victims with nothing. How these apps work: Sneaky strategy, real damage The threat actors behind these apps are taking advantage of repurposed developer accounts. These are the accounts that were once used for legitimate apps like games or media tools. Since these accounts already had a good reputation, users were more likely to trust them. The malicious apps also mimic the design, interface, and even package names of genuine crypto wallet apps, making it hard to tell them apart. Adding to the deception, some apps embed phishing links within their privacy policies, further tricking unsuspecting users into handing over their wallet credentials. How to stay safe? If you use a crypto wallet, follow these steps to protect yourself immediately: List of dangerous apps on Google Play Store Package Name How to delete these dangerous apps? To remove these apps from your Android phone: Your crypto wallet is only as safe as the apps you trust. Act now, deleting these apps could save you from losing everything.
Daily Mail
3 days ago
- Daily Mail
Cybersecurity experts discover 20 apps skimming your digital wallet: 'Delete NOW'
Cybersecurity experts are warning that millions of people could be at risk of having their digital wallets emptied unless they delete several apps right away. A team at cybersecurity company Cyble has uncovered 20 apps that can trick people into handing over access of their cryptocurrency to hackers. The phony apps were found in the Google Play Store and impersonate trustworthy digital wallet apps available for download, using the same exact name or a close copy that could be easily overlooked. The fake apps include Pancake Swap, Suiet Wallet, Hyperliquid, Raydium, BullX Crypto, Meteora Exchange, Harvest Finance Blog, SushiSwap, and OpenOcean Exchange. These malicious apps also use identical or similar logos and designs to trick users into downloading them from the Google Play Store. Although the fake digital wallets use the same name as legitimate apps, people can tell if it's a phony by checking the developer name. The real PancakeSwap app will say that the developer is the PancakeSwap team, while the fake one that steals your money uses a developer 'package' that reads Cyble revealed that the other 11 apps that digital wallet users need to delete right away use variations of the app names for Suiet Wallet, Raydium, SushiSwap, Hyperliquid, BullX Crypto, and Harvest Finance blog, as well as different developer packages. Simply put, you may encounter multiple copies of the same SushiSwap app in the Google Play Store but only one of them is the real thing. Without checking the developer package and looking for other suspicious signs that the app is a fraud, you could download the wrong digital wallet and give a hacker a secret back door to your cryptocurrency. Key ways to spot a phony copy of a trust app include seeing a very low number of downloads. Normally, a popular app will have been downloaded thousands, if not millions, of times. A long list of positive reviews about the app on its Google Play Store page will also help prove that you've found the right one. Estimates show that more than 400 million people worldwide use cryptocurrency, including millions of Android owners. The fake apps are designed to trick users into entering their 12-word mnemonic phrase, a secret code used to access cryptocurrency wallets. Once entered, hackers can steal this phrase, gain access to your real wallet, and take your cryptocurrency, which can't be recovered once it's gone. Stolen cryptocurrency can't be returned because blockchain transactions are permanent, decentralized, and irreversible, giving users more anonymity than regular banking. The scheme could affect anyone who stores digital currencies like Bitcoin or Ethereum in one of these fraudulent wallets. Making the scam even harder to spot is the fact that researchers found the developer packages (or accounts) were at one time reputable app makers. 'These accounts were originally used to distribute legitimate apps, including gaming, video downloader, and live streaming applications, and some have amassed over 100,000 downloads,' the Cyble team wrote in their report. Hackers either compromised these accounts by stealing the login credentials of the original developers or repurposed them, meaning they bought or took over the accounts (legally or illegally) to use for their own purposes. Once in control of the app package, hackers used these trusted accounts to publish the 20 malicious cryptocurrency phishing apps, including the fake PancakeSwap and SushiSwap wallets. Since the accounts already had a history of being a legitimate service with high download numbers, the fake apps appeared to be almost as trustworthy as the real things in the Google Play Store. If you downloaded the fake wallet use your mnemonic phrase, hackers can access your actual cryptocurrency wallet on the blockchain, even if it's on a different app or device, since the phrase works universally for compatible wallets. The app itself is fake. It doesn't manage or store your crypto like a legitimate wallet. Instead, it's all a front to steal that security code. Once hackers have the phrase, they interact directly with the blockchain to move your real cryptocurrency to their wallets. To check if you've got the right app, go to your Android device's app settings or the Google Play Store to see if any of these apps (or their package names) are installed. Package names can be found in the Play Store under the app's details or in your device's app info. For iPhone users, Apple's App Store uses a stricter app review process. However, iPhone users aren't completely safe as similar phishing scams could target iOS through other means, like fake websites or unofficial app sources. Apple users can stay safe by sticking with downloads from the official App Store, avoid sideloading apps from unknown sources, and avoiding suspicious links in emails or texts asking for wallet details. Cyble Research and Intelligence Labs (CRIL) reported the fake apps to Google which has removed most of the apps, but some are still in the Play Store. 20 Malicious Digital Wallet Apps to Delete Immediately Pancake Swap - Package: Suiet Wallet - Package: Hyperliquid - Package: Raydium - Package: Hyperliquid - Package: BullX Crypto - Package: OpenOcean Exchange - Package: Suiet Wallet - Package: Meteora Exchange - Package: Raydium - Package: SushiSwap - Package: Raydium - Package: SushiSwap - Package: Hyperliquid - Package: Suiet Wallet - Package: BullX Crypto - Package: Harvest Finance blog - Package: Pancake Swap - Package: Hyperliquid - Package:
Phone Arena
6 days ago
- Phone Arena
These apps tricked Google to list them in the Play Store and you must delete them from your phone
You might feel safe installing apps from the Play Store. After all, Google says that its Google Play Protect scans apps looking for apps that could come back to bite you in the, well, you know. Since you were a baby in your crib, your parents probably told you over and over again only to install apps from official app storefronts such as Apple's App Store and the Google Play Store. But you must have been disillusioned when, as a teen, you discovered that some apps managed to trick their way into the Play Store. -Cyble The mnemonic phrase is the "master key" of a digital wallet. With it, a cybercrook can gain access to all of the cryptocurrency and tokens associated with a digital wallet. Cyble came across apps that it says trick victims by giving these apps names similar to real popular wallets such as SushiSwap, PancakeSwap, Hyperliquid, and Raydium. One of the fake digital wallet apps that managed to get past Google and was listed in the Play Store. | Image credit-Cyble Developers involved in this scam were once known for distributing legitimate apps but have been compromised by criminals in order to make this scam work. If you have any of these nine apps installed on your phone, they must be deleted immediately: Pancake Swap Suite Wallet Hyperliquid Raydium BullX Crypto OpenOcean Exchange Meteora Exchange SushiSwap Harvest Finance Blog The apps use phishing techniques in order to try to get the mnemonic phrase from a victim for his legitimate digital wallet. These phishing emails or texts are designed to get the victim so worried that he/she did something wrong or is about to get ripped off that he gives away his mnemonic phrase; this results in the victim's digital wallet getting wiped out. Cyble has already given the above app names to Google. Most were already removed while the others have been "reported for takedown." But even if Google removes an app from the Play Store, if it is still installed in your phone, it can still cause havoc, especially for device owner. So even if you can't find these titles in the Play Store anymore, you still must uninstall any of these names if they show up on your phone.
