Affiliate links on Android Authority may earn us a commission.Learn more.
The Google Play Store has a serious crypto scam problem
July 16, 2025
According toThe Next Web, in 2018 alone,Googlehas removed three instances of malicious apps posing as legitimate crypto wallet apps. These imposter apps steal keys from you and then drain your accounts. Granted, each app was removed in a few days and only got a few downloads, if any at all, but this is just one part of the problem.
In the past two months,Android Authorityhas written three articles about Google and its issues when it comes to crypto scams. First, there wasthe Malwarebytes reportabout how millions of Android devices are unwitting crypto miners due to downloading malicious applications.
Then, there was the news of Googleeliminating all crypto mining extensions, even legitimate ones, from theChrome Web Store. This new policy was in response to the prevalence of malicious code present in extensions that sometimes have nothing to do with cryptocurrency.
Not long after that, we wrote about a report from Kaspersky Labs about numerous Google Play Store apps that look legitimate but actuallysecretly mine cryptocurrency.
In this most recent case, Android users searching for popular cryptocurrency appMyEtherWalletmay have mistakenly downloaded a doppelgänger version of the application that is designed to steal your information. It looks like the application remained on theGoogle Play Storefor four days before Google took it down.
This is actually the second time Google took down a MyEtherWallet clone, the first being in January. In that instance, the malicious app was available for almost a week before being removed.
How are these apps not only getting past Google’s supposed quality control checks but then staying active on the Store for so long before removal? According tothis walkthroughon the steps to make an app available on the Google Play Store, it only takes a matter of hours for a submitted app to go live. What is happening in those few hours? Is a live person going through the code to verify it is on the level?
Back in 2015, Google instituted a new policy to combat malicious apps where it claims that a staff member will go through your app to ensure it’s safe. If that is true and still enforced, how is an app that’s clearly a clone of another app still making it through quality control?
While Google’s move to block any and all crypto mining code from the Chrome Web Store is a step in the right direction, it’s clear that the Google Play Store also needs some policy updates. Perhaps a stricter quality control phase where numerous staff members inspect your app before it is available to the public, or some sort of beta testing phase that all apps must go through before they go on sale.
Whatever Google decides to do, it’s clear it needs to do something to respond to these dangerous issues.
NEXT:What is cryptocurrency?
Thank you for being part of our community. Read ourComment Policybefore posting.
