Hackers attacked Poloniex users with a fake mobile application

Users of one of the largest cryptocurrency exchanges Poloniex have become the target of a phishing attack. The attackers used a mobile application disguised as the official resource of the exchange, but used exclusively to steal data. Poloniex still does not have its own mobile application, which the criminals decided to use.



ESET analyst Lucas Stefanko discovered a new application under the brand Poloniex on Google Play at the end of March. An interesting fact - initially the program did not commit malicious actions, but only redirected users to the exchange website. According to the expert, in this way, the attackers wanted to build a loyal user base, which would be more likely to subsequently enter their account details into the application.

The goal of phishing attacks are not only users of popular projects, but also employees of companies. Each year, Positive Technologies experts conduct work on assessing the awareness of employees working in various areas of business in matters of information security. Experts mimic the actions of intruders who use social engineering techniques to carry out attacks on corporate infrastructure.

')

On Thursday, April 12, at 14:00 , during the free webinar, Positive Technologies analyst Dmitry Katalkov will tell about how researchers pretend to be violators, how many employees run the file with the topic “List of employees for dismissal” - and what to do about it. The topic will be interesting to all who use e-mail.



To participate in the webinar you need to register .