US based cryptocurrency exchange Poloniex.com (the largest exchange service in the world) seems to be having some security issues...
Poloniex users are being targeted by at least two fake Poloniex Android apps.
These apps, which appear legitimate at a glance, were available on Google Play Store and can not only steal the victims Poloniex credentials but also potentially their Gmail as well.
As of yet there is no official Poloniex mobile app, making easy targets of uninformed users.
The first app was called 'POLONIEX' published by developer: 'Poloniex'
The other app was called 'POLONOEX EXCHANGE' published by developer: 'POLONIEX COMPANY'
(Note: Both appear to have been removed from the Google Play Store)
They work by posing as officiall Poloniex apps, obviously, and asking the victim for their credentials to be entered on startup which if done are sent to the attacker giving them control of the account; assuming 2FA (two factor authentication) is not enabled, which would protect you.
Additionally, the malicious app(s) may at some point pose as, or otherwise ask for the Gmail login credentials to confirm a fake 2FA, which if given will give the attacker control of Gmail account as well.
If you feel you may have been victimized by such an attack uninstall the offending apps, change your passwords and enable 2FA if you have not done so already.
Stay safe out there!
thanks for share.
Thanks for sharing,upvoted:)
I dont know when these scammers die ? :P i mean they all dont care of others difficult time they just hack all the data snatchers they are
Nice Catch ,find this easy to believe ..resteemed
thanks for the awareness and explore the scam, 2FA should used for safe transaction.
2FA is very important now a days
POLONOEX haha thanks for sharing bro about it :)
hackers trying their best to scam out people
ohhh damm thanks for telling about this
i will never use the apps thanks for spreading the news about it :)
thx for sharing the info
Even the apps they had to fake it..π
This post was resteemed by @resteembot!
Good Luck!
Curious? Check out:
The @resteembot users are a small but growing community.
Check out the other resteemed posts in resteembot's feed.
Some of them are truly great.
We missed this one. Wonder if they will have an official app; their API looks interesting, though. We'll just have to see where it goes and whether other devs stronger than us jump on it to inspire its legitimate use.