Warning: Fake BTC core BTC wallet in Google Play

jseverson

hero member

Activity: 1834

Merit: 759

Quote from: TryNinja on July 08, 2019, 12:48:42 AM

I’ve never seen a fake wallet in the Apple Store. Meanwhile, I can remember at least 4 only this year at the play store. No one here is asking for automation or 100% detect rate. We are asking for some basic background check before allowing apps in the store

It isn’t either 0% or 100%.

That I can agree with. I wasn't saying it needed to be 100%, I was saying that because nothing is 100% effective (or guaranteed for that matter), Google isn't necessarily liable in court. Again, my original response was under the context of taking Google to court.

As far as fake wallets in iOS goes, here's at least one instance, and there are a couple more. We can all try to hold these companies to a higher standard, but the fact of the matter is that we can't rely on them to protect us.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: jseverson on July 08, 2019, 12:32:25 AM

I'm saying you cannot realistically expect any automated system to be 100% accurate in detection of malicious activity. Apple is famous for their walled garden approach, but even they suffer occasional breaches. Android does say they check all apps being published according to this page, but that doesn't mean a couple (or a thousand) won't slip through the cracks, especially because of their more open approach. You could argue that they're being negligent, which they easily could be, but that's ultimately up to the courts to decide. Meanwhile, all users could really do is either GTFO or practice due diligence.

To be clear, I'm not defending Google, just saying that litigation would be a weak option given the specified circumstances.

I’ve never seen a fake wallet in the Apple Store. Meanwhile, I can remember at least 4 only this year at the play store. No one here is asking for automation or 100% detect rate. We are asking for some basic background check before allowing apps in the store

It isn’t either 0% or 100%.

jseverson

hero member

Activity: 1834

Merit: 759

Quote from: TryNinja on July 08, 2019, 12:00:29 AM

Quote from: jseverson on July 07, 2019, 09:41:26 PM

They can be sued, but whether or not that will be successful is an entirely different discussion. They didn't develop or run the app, and malicious apps aren't allowed in the Play Store in the first place. Checking all apps with 100% accuracy is a literal impossibility as well, so you can't really hold that against them.

Apple does that. And not only check for “malwares”, but also see if the app matches their guidelines. Are you saying that an company worth ~$766 billions (Alphabet) can’t create a system and hire people to check their apps?

I'm saying you cannot realistically expect any automated system to be 100% accurate in detection of malicious activity. Apple is famous for their walled garden approach, but even they suffer occasional breaches. Android does say they check all apps being published according to this page, but that doesn't mean a couple (or a thousand) won't slip through the cracks, especially because of their more open approach. You could argue that they're being negligent, which they easily could be, but that's ultimately up to the courts to decide. Meanwhile, all users could really do is either GTFO or practice due diligence.

To be clear, I'm not defending Google, just saying that litigation would be a weak option given the specified circumstances.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: jseverson on July 07, 2019, 09:41:26 PM

They can be sued, but whether or not that will be successful is an entirely different discussion. They didn't develop or run the app, and malicious apps aren't allowed in the Play Store in the first place. Checking all apps with 100% accuracy is a literal impossibility as well, so you can't really hold that against them.

Apple does that. And not only check for “malwares”, but also see if the app matches their guidelines. Are you saying that an company worth ~$766 billions (Alphabet) can’t create a system and hire people to check their apps?

jseverson

hero member

Activity: 1834

Merit: 759

Quote from: Betwrong on July 07, 2019, 07:50:11 AM

I think it isn't right on the part of Google. They should be definitely checking the apps they are selling. Can't they be sued for the sale of malicious equipment/software?

They can be sued, but whether or not that will be successful is an entirely different discussion. They didn't develop or run the app, and malicious apps aren't allowed in the Play Store in the first place. Checking all apps with 100% accuracy is a literal impossibility as well, so you can't really hold that against them.

For reference, a class action lawsuit has been filed in California over similar concerns, and it was dismissed.

boyptc

hero member

Activity: 3024

Merit: 680

★Bitvest.io★ Play Plinko or Invest!

Quote from: Velkro on July 06, 2019, 04:01:43 PM

Everyone should do that. I mean how it even happened? Google scrutiny should be a lot higher here.
I hope not many people will get damaged by this, report it asap.

Don't worry it has been reported already and google had taken it down.

Visit and check the link, there's no more content in it.

nakamura12

hero member

Activity: 2268

Merit: 669

Bitcoin Casino Est. 2013

Quote from: mk4 on July 05, 2019, 10:08:19 PM

Quote from: Kemarit on July 05, 2019, 01:44:52 PM

I guess collectively as a community, we can put more pressure on them by reporting this app so that they can take it down right away.

True. The problem though is, by the time someone publicizes the scam/fraudulent wallet here on Bitcointalk or on Reddit, chances are that there are already at least a few people that have been negatively affected by these scams. Yea sure they seem to remove the scam apps quite fast, but I don't think it's enough.

We don't know if this fake bitcoin core - btc wallet might have victims already and I also agree that the victims are negatively affected by these scams mentioned in the post above before the app is removed from google play store. It's not actually the problem of those people who reported the scam app of fake btc wallet and much more. I agree that it's not enough even though they removed the scam app right away because the real problem why there are scam apps, fake apps is the owner of the google play store or the one who manage the google play store. Google Play Store should be strict if the app is involved in cryptocurrency or it will involve cryptocurrency or having a rules to follow or a requirements that the app developer needs to complete/meet the requirements before their apps are accepted or their app .

Harlot

hero member

Activity: 1806

Merit: 672

Quote from: mk4 on July 05, 2019, 04:26:34 AM

Good find. It's funny how this fraudulent wallet is claiming to be a bitcoin full node(via app description), but the app has BitcoinCash and Ethereum support lmao.

Seriously though, Google needs to be a bit more strict concerning app submission.

Even if you didn't put your private keys on it, I wouldn't advice you on downloading the fake Bitcoin Core app since their permissions does not limit only to the app itself. Apps also have the power to touch some parts of your phone and act as a tracker/spyware so it's really not safe to install does kinds of apps. I would advice you to uninstall it right away and have your phone cleaned up through an anti-virus and malware bytes just to be sure.

Betwrong

legendary

Activity: 3374

Merit: 2198

I stand with Ukraine.

Quote from: TryNinja on July 06, 2019, 05:58:17 PM

Quote from: Velkro on July 06, 2019, 04:01:43 PM

I mean how it even happened? Google scrutiny should be a lot higher here.

That's what happens when Google lets anyone put any app they want on the play store without any review for just $25. Apple at least checks these apps.

All we can do is keep looking for these and report as soon as we see something like this. Maybe someone could create a "report fake wallets" megathread or something like this. Then we could just make everybody report it.

I think it isn't right on the part of Google. They should be definitely checking the apps they are selling. Can't they be sued for the sale of malicious equipment/software?

I personally support the idea of an absolutely free market where adults can buy anything they want at their own risk, but, as far as I know, we don't have such a market currently(legally we don't have it for sure). For example, McDonald's was sued in the early 1990s for claiming their French fries were vegetarian, while in fact, beef flavoring was added to the fries during the production phase. Consequently, McDonald's paid $100M to vegetarians and some religious groups. So why does Google get away with it?

Spendulus

legendary

Activity: 2926

Merit: 1386

What's not right about this is the lack of positive ID on the part of Google, that those who presented the App to the App Store were who they said they were.

That's why we have the ability to sign messages.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: Velkro on July 06, 2019, 04:01:43 PM

I mean how it even happened? Google scrutiny should be a lot higher here.

That's what happens when Google lets anyone put any app they want on the play store without any review for just $25. Apple at least checks these apps.

All we can do is keep looking for these and report as soon as we see something like this. Maybe someone could create a "report fake wallets" megathread or something like this. Then we could just make everybody report it.

Velkro

legendary

Activity: 2296

Merit: 1014

Quote from: GreatArkansas on July 05, 2019, 01:01:24 AM

Thanks for noticing this, I already reported it to the Google Playstore.

Everyone should do that. I mean how it even happened? Google scrutiny should be a lot higher here.
I hope not many people will get damaged by this, report it asap.

boyptc

hero member

Activity: 3024

Merit: 680

★Bitvest.io★ Play Plinko or Invest!

Quote from: Baofeng on July 05, 2019, 09:46:11 PM

It looks like the Google has taken it down already. I can no longer access the download link.

So thanks to those who have reported it as we need to be aware and work as a community here.

Yeah it doesn't appear anymore, great job folks.

One fraud copy cat wallet has been taken down.

mk4

legendary

Activity: 2870

Merit: 3873

Paldo.io 🤖

Quote from: Kemarit on July 05, 2019, 01:44:52 PM

I guess collectively as a community, we can put more pressure on them by reporting this app so that they can take it down right away.

True. The problem though is, by the time someone publicizes the scam/fraudulent wallet here on Bitcointalk or on Reddit, chances are that there are already at least a few people that have been negatively affected by these scams. Yea sure they seem to remove the scam apps quite fast, but I don't think it's enough.

Baofeng

legendary

Activity: 2576

Merit: 1655

It looks like the Google has taken it down already. I can no longer access the download link.

So thanks to those who have reported it as we need to be aware and work as a community here.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: jackg on July 05, 2019, 03:17:08 PM

I get "no results" when I search bitcoin or electrum? Have I broken something or is anyone else getting this?

Working here.

https://play.google.com/store/apps/details?id=org.electrum.electrum
https://play.google.com/store/search?q=bitcoin&c=apps

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

I get "no results" when I search bitcoin or electrum? Have I broken something or is anyone else getting this?

Edit: it works on Web but normt mobile, it'll robavku fix itself.

There's ab core but that's not bitcoin core it's a translator for it also if you want to run core from your phone...

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: idekai on July 05, 2019, 03:00:24 PM

Isn't the web of bitcoin core supposed to be this? https://bitcoin.org/en/bitcoin-core/.
On the download section, there is windows, IOS, and linux icon below it. So I guess it is correct that " core hasn't released any android wallet version "

That means MAC and not iOS (like in the iPhone OS). There is no Bitcoin Core for ANY type of smartphone.

Click the button and you will end up here: https://bitcoin.org/en/download

Where you can see Windows, Mac OS X and Linux.

idekai

jr. member

Activity: 252

Merit: 1

Change Your Worlds Build a New Era!

Quote from: Baofeng on July 05, 2019, 12:34:55 AM

And as far as I know, core hasn't released any android wallet version (correct me if I'm wrong), so obviously this is fake.

Isn't the web of bitcoin core supposed to be this? https://bitcoin.org/en/bitcoin-core/.
On the download section, there is windows, IOS, and linux icon below it. So I guess it is correct that " core hasn't released any android wallet version "

Kemarit

legendary

Activity: 3080

Merit: 1353

Quote from: boyptc on July 05, 2019, 05:05:49 AM

Quote from: mk4 on July 05, 2019, 04:26:34 AM

Seriously though, Google needs to be a bit more strict concerning app submission.

I doubt that they will take action of being more strict, there were a lot of reports before about fraudulent and copy cat apps that has been made but it seems they are still soft about that issue.

I guess collectively as a community, we can put more pressure on them by reporting this app so that they can take it down right away. I would agree that they're very lenient, but at some point with the way crypto is taking the world, they should find time to take seriously reports specially involving fake and scam wallet like this one.

Topic: Warning: Fake BTC core BTC wallet in Google Play (Read 544 times)