Detected by ESET as Android/Clipper.C, the clipper malware was published in the Google Play Store on February 1 and tried to sabotage Ethereum transfers by replacing the wallet addresses in the clipboard with the ones of its creator.
Basically, whenever users tried to transfer digital coins to someone else and copied their wallet address to the clipboard, the malware kicked in and replaced this address with the one belonging to its developer.
When the transfer was complete, the funds ended up being transferred to the malware author, ESET explains in a technical analysis of the malware. Additionally, the clipper malware also tried to steal credentials required to manage Ethereum funds.
“This attack targets user... (read more)