Trezor, a major wallet provider of cryptocurrencies, has alerted users to the fake Trezor app on Google Play.
According to Trezor, the fake app is malicious and has nothing to do with Trezor or SatoshiLabs, the company behind Trezor’s wallet. Trezor announced the news on January 18, asking its customers not to install the malicious app, reminding users that their original statement should never be shared with anyone.
Trezor has also provided users with a quick guide to using Trezor Wallet on Android. In the guide, the company has listed Trezor’s major third-party apps, including Mycelium, Sentinel or Walleth.
At the time of publication, the malicious app is still available on Google Play. The app has reportedly been downloaded more than 1,000 times since January 18. The Doppelgänger app also has around 200 reviews on the App Store, most of which warn that this is a scam. “This app is a scam. Never write your recovery statement in anything other than official Trezor devices. Anyone requesting this phrase (other than physical Trezor) will try to trick you,” wrote one of the alleged users.
Trezor did not immediately respond to a request for comment from Cointelegraph.
This is not the first time a fake app is listed on Google Play. In May 2019, the Cointelegraph reported on a malicious app on Google Play that mimicked Trezor’s wallet. The app was found by ESET antivirus researchers who said they expect more scams to appear in the Android Store as the cryptocurrency market grows.
Online scammers target other popular crypto companies to impersonate their apps on Google and steal money from users. In May 2020, a cybersecurity researcher discovered 22 malicious extensions of Google Chrome that mimic crypto services, such as Ledger, which competes with Trezor, and the large Ether (ETH) wallet MetaMask.