FBI, Google Warn of Sophisticated Scam Surge

Researchers from Cyble Research and Intelligence Labs (CRIL) have identified over 20 malicious cryptocurrency wallet apps on the Google Play Store, which impersonated popular DeFi wallets like SushiSwap, Pancake Swap, Hyperliquid, and Raydium to steal users' recovery phrases and crypto assets. These scams bypassed Google’s app review by utilizing established developer accounts tied to legitimate apps. Both the FBI and Google have issued alerts about a nationwide surge in phone spoofing scams, where attackers impersonate agencies—including the FBI—demanding money or sensitive data under threat of arrest. A cybercrime group named UNC6040 has been linked to social engineering 'vishing' attacks targeting corporate cloud data. Users are advised to uninstall suspicious apps, avoid entering recovery phrases into unofficial platforms, and be cautious of unsolicited calls. Authorities urge the public to remain vigilant and report any suspicious activity.