8 Crypto Mining Apps Exposed as Fakes – And 120 More are Still in Business

Background and Discovery

In a comprehensive cybersecurity investigation, US-Japanese cybersecurity firm Trend Micro uncovered a sophisticated fraud scheme involving fake cryptocurrency mining applications. These malicious apps claimed to offer cloud mining services for popular cryptocurrencies such as Bitcoin and Ethereum, but were designed solely to exploit users through deceptive practices.

Cloud mining, in legitimate contexts, allows users to participate in cryptocurrency mining operations without owning expensive hardware. Users typically invest in mining power hosted by remote data centers. However, the fake crypto mining apps identified in this investigation bore no connection to actual mining operations, instead functioning as elaborate scams designed to generate revenue through fraudulent means.

The investigation revealed that these applications employed multiple deceptive tactics, including forcing users to watch advertisements, charging for premium subscription services, and selling fictional "mining capability upgrades" that provided no actual value. The average monthly subscription fee for these fraudulent services was approximately 15 USD, though some in-app purchases reached as high as 189.99 USD.

The Eight Exposed Fake Apps

Trend Micro identified and reported eight specific Android applications to Google Play, which were subsequently removed from the platform. The exposed fake crypto mining apps include:

• BitFunds – Crypto Cloud Mining
• Bitcoin Miner – Cloud Mining
• Bitcoin – Pool Mining Cloud Wallet
• Crypto Holic – Bitcoin Cloud Mining
• Daily Bitcoin Rewards – Cloud Based Mining System
• Bitcoin 2021
• MineBit Pro – Crypto Cloud Mining & btc miner
• Ethereum – Pool Mining Cloud

Among these applications, two were paid downloads requiring upfront payment. Crypto Holic – Bitcoin Cloud Mining was priced at 12.99 USD, while Daily Bitcoin Rewards – Cloud Based Mining System cost 5.99 USD. The remaining six applications were available as free downloads, though they generated revenue through other deceptive means once installed.

How These Fake Apps Operate

Technical analysis conducted by Trend Micro revealed that none of the identified applications performed any actual cryptocurrency mining operations. Instead, they employed a local mining simulation module to create the illusion of mining activity on the user interface.

This simulation module consisted of basic programming elements including counters and random number generators that mimicked the appearance of mining progress. The displayed hash rates, mining rewards, and other metrics shown to users were entirely fictional, generated locally on the device without any connection to blockchain networks or mining pools.

The primary revenue generation methods employed by these fake crypto mining apps included:

• Advertisement Revenue: Users were required to watch numerous in-app advertisements, generating ad revenue for the app developers
• Subscription Services: Monthly recurring charges averaging 15 USD for supposed premium features
• In-App Purchases: Sales of fictional mining capability upgrades ranging from 14.99 USD to 189.99 USD
• Initial Download Fees: Some apps charged upfront download costs of up to 12.99 USD

None of these payments resulted in any actual cryptocurrency being mined or delivered to users, making the entire operation a complete fraud.

Scale of the Problem

While eight specific applications were removed from Google Play following Trend Micro's report, the investigation uncovered a much larger ecosystem of fraudulent crypto mining apps. The cybersecurity firm's analysis identified more than 120 fake cryptocurrency mining applications that have been deceiving users through similar tactics.

Between July 2020 and July 2021, these fraudulent applications affected more than 4,500 users globally. The actual number of victims is likely higher, as this figure only accounts for users tracked during the specific research period. Many victims may not have realized they were using fake applications, attributing their lack of mining returns to normal market conditions or technical difficulties.

The geographic distribution of affected users spanned multiple countries and regions, demonstrating the global reach of this fraud scheme. The continued presence of over 120 similar fake apps in various app stores suggests that this problem extends beyond the eight specifically identified applications and represents a persistent threat to cryptocurrency enthusiasts seeking legitimate mining opportunities.

Financial Impact on Victims

The financial damage inflicted by these fake crypto mining apps extends far beyond the initial download costs or subscription fees. Users who believed they were participating in legitimate cloud mining operations often made substantial investments in fictional mining capability upgrades.

According to Trend Micro's research, despite these applications having no connection to actual cloud-mining operations or cryptocurrency-mining features, they prompted users to make in-app purchases ranging from 14.99 USD to as high as 189.99 USD. These purchases were presented as investments in increased mining power or enhanced mining capabilities, but provided absolutely no return on investment.

When combining all revenue streams—initial download fees, monthly subscriptions, advertisement viewing, and in-app purchases—individual victims could potentially lose hundreds of dollars over several months of use. The cumulative financial impact across thousands of affected users represents a significant fraud operation generating substantial illegal profits for the app developers.

Beyond direct financial losses, victims also suffered opportunity costs. Time and resources invested in these fake applications could have been directed toward legitimate cryptocurrency investment or mining opportunities, representing additional economic harm to users.

Security Recommendations

To protect against fake crypto mining apps and similar fraudulent applications, users should implement several security measures:

Verification Before Download: Research any cryptocurrency-related application thoroughly before installation. Check independent reviews, verify the developer's credentials, and look for red flags such as unrealistic promised returns or lack of transparent operational information.

Understanding Cloud Mining Economics: Legitimate cloud mining operations have specific economic characteristics. Be suspicious of services that guarantee returns, require no technical knowledge, or promise mining capabilities that seem disproportionate to the investment required.

App Store Precautions: While major app stores like Google Play implement security measures, fraudulent apps can still appear temporarily. Check app ratings, read recent reviews carefully, and be wary of applications with limited download history or suspicious review patterns.

Monitoring Financial Transactions: Regularly review subscription services and in-app purchases associated with your accounts. Cancel any recurring charges from applications that fail to deliver promised services.

Technical Indicators: Legitimate mining applications should demonstrate actual network connectivity to mining pools, display verifiable blockchain addresses, and show mining activity that can be independently confirmed through blockchain explorers.

By implementing these security practices, users can significantly reduce their risk of falling victim to fake crypto mining apps and similar fraudulent schemes in the cryptocurrency ecosystem.

FAQ

What are cryptocurrency mining apps and how do they work?

Crypto mining apps are applications that use your device's computing power to validate blockchain transactions and solve complex mathematical problems. Users earn cryptocurrency rewards by contributing processing power to the network. These apps distribute earnings based on computing contribution and network difficulty.

How to identify fake or scam crypto mining apps? What are the warning signs?

Watch for red flags: unrealistic promised returns, no transparent team info, pressure to invest quickly, poor app reviews, requests for personal data, no verifiable mining infrastructure, and hidden fees. Legitimate apps show clear operational details and honest earning rates.

What deceptive tactics do fake mining apps usually employ?

Fake mining apps typically use these deception methods: false promised returns with unrealistic daily profits, requiring upfront payments or deposits to unlock earnings, fake balance displays showing non-existent coins, requiring referrals to withdraw funds, and offering premium features that never deliver actual mining rewards.

What security risks and consequences come from downloading and using fake mining apps?

Fake mining apps pose severe risks: they steal personal data and cryptocurrency credentials, install malware, drain device battery and storage, cause excessive data consumption charges, and enable unauthorized fund transfers. Users may suffer identity theft, financial loss, and compromised device security with no actual mining rewards generated.

What are some legitimate and reliable cryptocurrency mining methods or applications?

Legitimate mining options include running full nodes on home computers, joining mining pools with transparent operations, using ASIC miners for Bitcoin, GPU mining for altcoins, and staking cryptocurrencies. Always verify developer backgrounds, check community reviews, and ensure transparent fee structures before participating.