• Hackers hijack dormant Snapcraft apps to spread cryptocurrency-stealing malware
• Attackers exploit expired domains to reset passwords and update snaps with malicious code
• Malware mimics wallet apps, stealing recovery phrases and draining funds up to $490,000

Snapcraft is being invaded by hackers who are taking over dormant and inactive apps (‘snaps’) and using them to steal people’s cryptocurrency, experts have said.

“There’s a relentless campaign by scammers to publish malware in the Canonical Snap Store. Some get caught by automated filters, but plenty slip through,” cybersecurity researchers at Anchore said.