A fake app masquerading as Hyperliquid, a decentralized perpetual exchange, has been discovered on the Google Play Store, highlighting ongoing issues with app store moderation and malicious software monitoring.
ZachXBT, a well-known cryptocurrency detective, tagged the app as a scam aimed at stealing users’ funds by phishing their wallet credentials and private keys in a warning published on his Telegram channel.
Malicious fake app masquerading as Hyperliquid on Google Play Store. Source: ZachXBT (via Telegram)
Hyperliquid does not have an official mobile app
In a warning post he shared on Telegram, Zac warned his followers about “fake Hyperliquid apps on Google Play Store” and complained that platforms like the Play Store don’t do enough to filter these scams.
He also included the stolen address 0x8c12C21C394D9174c3b1a086A97d2C5523ABb8F5, and reports say the Ethereum address has already been linked to more than $281,000 in thefts.
This news comes months after cybersecurity companies such as Cyble identified more than 20 similar phishing apps on the Play Store that were purposefully built to imitate popular crypto platforms such as Hyperliquid, SushiSwap, and PancakeSwap.
Apps created with such deceptive purposes can evade detection by using legitimate-looking icons, descriptions, and even fake reviews. These factors are the ones that exploit Google’s vetting process because they help you assume a legitimate persona similar to the real app you’re imitating.
The latest episode to watch is Hyperliquid, but such a listing should be considered a scam as the platform has never had an official mobile app.
Fraudsters are using Google’s infrastructure for malicious purposes
ZachXBT’s warning comes weeks after another well-known crypto personality from X, who goes by the alias Mztacat, highlighted another way that scammers are using Google to do their dirty work.
According to Mztacat, scammers are posting Google ads on various sites, and all of these ads reportedly point to a phishing site hosted at “sites.google.com.” The post was accompanied by a screenshot, which he said was a “perfect example” of why people get scammed when searching for cryptocurrencies.
He said this is because the “sponsored” results shown at the top are not real Uniswap domains, but fake Uniswap links hosted on Google Sites, and clicking on them drains the wallet of the person who approved them.
⚠️ Friends, please be careful!
Scammers are posting Google ads on various sites pointing to phishing sites hosted at sites(.)google(.)com.This screenshot is a perfect example of why people get scammed when searching for cryptocurrencies. The top “Sponsored” result is fake Uniswap… pic.twitter.com/2JSjhn72NP
— 〽️ᄃmut 🐾acat September 12th
He also attached a video demonstrating the modus operandi, noting that only those who were paying attention would have been able to notice that something was wrong.
News like this pops up from time to time on various platforms from X to Reddit, but it’s important to realize that there’s an increase and they’re getting smarter. Even if you don’t fall for phishing links from fake apps on the Google Play Store, you can still fall for phishing links from sites recommended by Google. Those who avoid these pitfalls can fall victim to apps like Telegram, with some users reporting being fooled by fake support teams.
Overall, the emphasis on vigilance in the crypto space cannot be overstated, especially since many countries’ laws still do not have provisions for crypto-related victims.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
