News

Google Has Removed 49 Malicious Chrome Extensions Stealing Cryptocurrency Wallet Private Keys

These 49 malicious chrome web browser extensions were found to be stealing private keys from users’ crypto-wallets.  After receiving reports, Google has removed these crypto wallet browser extensions involved in the illegal activity. A security researcher named Harry Denley who is the director of security at Mycrypto managed to find about this illegal activity and revealed the report on Tuesday.

49 fake browser extensions were using malicious codes

According to the report, these chrome extensions were posing to be the legitimate crypto wallet extensions but actually, these were 49 fake browser extensions and were having malicious codes inside them. According to the security director, they used malicious codes in order to steal private keys and important Keystore files.

The security researcher further explains that one person or group which might be “a Russian-based actor” has put these malicious 49 chrome browser extensions together. Adding more to it, the researcher said, “Whilst the extensions all function the same, the branding is different depending on the user they are targeting.”

📰 Also read:  Price Analysis January 9th, 2025 - BTC, DOGE, XRP, BNB, SOL, and ETH

The security researches identified these 49 chrome extensions in the report.

The list of crypto wallets targeted by the attacker

Harry Denley also identified and revealed in the report the names of crypto wallets that were on the hit list of attackers. In the list of cryptocurrency wallets targeted by the group include Ledger, Trezor, Jaxx, Electrum, Myetherwallet, Metamask, Exodus, and Keepkey.

The most targeted crypto wallet among them was Ledger as the fake browser extensions hit this wallet by 57%. Second to Ledger was Myetherwallet which was targeted by 22%. While on the other hand, Trezor, Electrum, Keepkey, and Jaxx were targeted by 8%, 4%, 4%, and 2% respectively.

However, the researcher’s report claims that they did not steal funds straightforwardly. It apparently seemed that the attacker was after the high-value accounts or the attacker could not automate the thefts. The scammer is still out there and might try again by creating more fake web browser extensions.

📰 Also read:  Solana and Ethereum NFT Scammers Charged in $22M Rug Pull Scheme

At Tokenhell, we help over 5,000 crypto companies amplify their content reach—and you can join them! For inquiries, reach out to us at info@tokenhell.com. Please remember, cryptocurrencies are highly volatile assets. Always conduct thorough research before making any investment decisions. Some content on this website, including posts under Crypto Cable, Sponsored Articles, and Press Releases, is provided by guest contributors or paid sponsors. The views expressed in these posts do not necessarily represent the opinions of Tokenhell. We are not responsible for the accuracy, quality, or reliability of any third-party content, advertisements, products, or banners featured on this site. For more details, please review our full terms and conditions / disclaimer.

📰 Also read:  This Week in Crypto: US-Listed Bitcoin and Ethereum ETFs Process $35B Net Inflows in 2024

Tokenhell

Tokenhell is a blockchain & crypto news agency where you can discover all the recent news about cryptocurrency and blockchain.

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button
Close
Skip to content