AltcoinCryptocurrencyEthereum (ETH)

Security Warning: ETH browser wallet is injecting malicious JS to steal secrets

An Ethereum Browser wallet has tried to inject into the malicious Javascript code in order to steal secrets.

Shitcoin wallet that is working as a Chrome browser extension and a Desktop app for windows, has made an attempt to steal and scrape the data from other open windows.

Security expert warns about the breach

This breach has been noticed by a security expert Harry Denley. He identified the code and then warned about this potential breach in a tweet. He says that a crypto browser wallet has tried to inject into the JS in order to steal from some of the websites.

He also posted the Extention ID on Twitter that is “ExtensionID: ckkgmccefffnbbalkmbbgebbojjogffn”. He said that the Shitcoin wallet extension chrome downloaded several JS files from a remote server.

📰 Also read:  Ethereum Crosses $3,000 Following 'Surprising Change' in Investor Sentiment

Binance and IDEX were on the hit list

This crypto browser wallet has targeted several crypto websites. Binance and IDEX crypto exchanges were on the hit list of this code. The other websites that were on the target list of code are MyEtherWallet, NEO Tracker, and Switcheo. The code specifically looks for the password and private keys.

The code first finds out the browser windows that are opened on several websites and then attempts to scrape data and secrets from them. And after scraping the data it sends it to the remote server that is erc20wallet.tk.

Shitcoin wallet is covered by insurance as its website claims. And the website also stated that you do not need to worry about any hacking activity because your private keys are stored in your local PC.

📰 Also read:  Bitcoin Dips Below $69,000, Pushing Liquidations Above $300 Million

Tokenhell produces content exposure for over 5,000 crypto companies and you can be one of them too! Contact at info@tokenhell.com if you have any questions. Cryptocurrencies are highly volatile, conduct your own research before making any investment decisions. Some of the posts on this website are guest posts or paid posts that are not written by Tokenhell authors (namely Crypto Cable , Sponsored Articles and Press Release content) and the views expressed in these types of posts do not reflect the views of this website. Tokenhell is not responsible for the content, accuracy, quality, advertising, products or any other content or banners (ad space) posted on the site. Read full terms and conditions / disclaimer.

📰 Also read:  Solana Hits $200 as Bitcoin Records New All-Time High

Leah Hutton (Luxembourg)

Leah Hutton has recently joined Tokenhell team as a freelance writer. She has comprehensive knowledge of blockchain and various cryptocurrencies.

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button
Close
Skip to content