The scheme, discovered by Koi Security and known as "GreedyBear," spread through the Firefox add-ons store by impersonating well-known cryptocurrency wallet extensions. According to reporting from Bleeping Computer, the identified malware has been removed by Mozilla, but attackers may be able to quickly and easily mount similar campaigns targeting more users in the future. In fact, researchers have found a possible expansion of GreedyBear to the Chrome web store via an extension called Filecoin Wallet.
Threat actors initially uploaded benign crypto wallet extensions for approval with branding that matched known platforms like MetaMask, TronLink, and Rabby and accumulated fake positive reviews to make them appear more trustworthy. Only later did they remove and replace the names and logos and inject malicious code, which turned said extensions into keyloggers that captured form field inputs and sent them to attackers' servers. The compromised extensions also logged victims' external IP addresses.
How to protect your crypto wallet from malware
For crypto wallets, a safer option than searching the add-on store is to go directly to the project's website, which will link you to the legitimate extension.
Hence then, the article about malicious firefox extensions are draining crypto wallets was published today ( ) and is available on Live Hacker ( Middle East ) The editorial team at PressBee has edited and verified it, and it may have been modified, fully republished, or quoted. You can read and follow the updates of this news or article from its original source.
Read More Details
Finally We wish PressBee provided you with enough information of ( Malicious Firefox Extensions Are Draining Crypto Wallets )
Also on site :
- China's First Domestic Anti-CTLA-4 Monoclonal Antibody, Innovent's TABOSUN® (Ipilimumab N01 Injection) Received NMPA Approval
- Prominent Canadian Musician Says Gig Was Cancelled After Google AI Overview Wrongly Branded Him Sex Pest
- Goldman Sachs expects layoffs to keep rising—and says investors are punishing the stocks of companies that slash staff