Google Pulls 49 Cryptocurrency Wallet Browser Extensions Found Stealing Private Keys

Google Pulls 49 Cryptocurrency Wallet Browser Extensions Found Stealing Private Keys
фото показано с : news.bitcoin.com

2020-4-16 19:45

Google has removed 49 cryptocurrency wallet browser extensions after a security researcher discovered they were stealing private keys. These Chrome extensions targeted users of crypto wallets, such as Ledger, Trezor, Jaxx, Electrum, Myetherwallet, Metamask, Exodus, and Keepkey.

Also read: Bitcoin Revolution: Wanna Earn $1,000 a Day? Government Warns About This Scam

49 Malicious Chrome Browser Extensions

Security researcher Harry Denley revealed on Tuesday that 49 Chrome browser extensions have been stealing users’ cryptocurrency wallet private keys. Denley is the director of security at Mycrypto, an open-source tool for generating ether wallets and handling ERC20 tokens.

Posing as legitimate cryptocurrency wallet extensions, the 49 fake Chrome browser extensions contained malicious code that stole private keys, mnemonic phrases, and keystore files, the director described. They gathered data entered during different wallet configuration steps and sent them to one of the attacker’s servers or a Google Form. Some of these fraudulent browser extensions even had a network of fake users rating them with five stars or positive feedback. According to Denley, the extensions appear to be the work of one person or a group of people who are likely to be based in Russia.

The 49 Chrome browser extension IDs caught stealing cryptocurrency wallet private keys, discovered by security researcher Harry Denley. The Targeted Cryptocurrency Wallets

Denley further revealed that the cryptocurrency wallets targeted by the 49 malicious Chrome browser extensions were Ledger, Trezor, Jaxx, Electrum, Myetherwallet, Metamask, Exodus, and Keepkey. He found that the most attacked wallet was Ledger, targeted by 57% of the malicious browser extensions. The second most targeted wallet was Myetherwallet (22%), followed by Trezor (8%), Electrum (4%), Keepkey (4%), and Jaxx (2%).

During his test, the security researcher sent funds to a few addresses and entered some secrets. He found that the funds sent were not automatically swept, concluding that the attackers were either only interested in high-value accounts or had to manually empty the addresses. Moreover, he noted that the malicious extensions started to hit the Google Chrome store in February slowly and rapidly increased releases through April. He added that they were reported to Google and removed within 24 hours.

What do you think about all these malicious browser extensions? Let us know in the comments section below.

The post Google Pulls 49 Cryptocurrency Wallet Browser Extensions Found Stealing Private Keys appeared first on Bitcoin News.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Global Cryptocurrency (GCC) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 0.00 %
Cегодня L: $0 - H: $0
Капитализация $0 Rank 99999
Цена в час новости $ 0.0016427 (-100%)

extensions google stealing private keys browser cryptocurrency

extensions google → Результатов: 21


1.4M XRP Stolen via Fake ‘Ledger Live’ Chrome Extension; Still Available on Google

Approximately 1.4 million XRP has been stolen from the users in the month of March alone through the use of a fake Google Chrome extension. Through a thread of tweets released on March 24, a research group known as xrplorer forensics, revealed that hackers are stealing user backup passphrases through fraudulent Ledger Live extensions. Xplorer […]

2020-3-26 21:30


Фото:

Google will remove shady data-stealing Chrome extensions starting October 15

Google is making good on its “root-and-branch review” of third-party developer access to user data. The company has now said its new policy for Minimum Permission and updated User Data policy will be enforced starting October 15, 2019 — in other words, Chrome will no longer support sketchy extensions that gather data on your browsing activity.

2019-7-24 08:46


Фото:

Google is cracking down on Drive and Chrome extensions that abuse your data

Google is expanding its privacy audit to make third-party developer access to Chrome and Google Drive more secure. To that effect, developers must rework their Chrome extensions to request only minimum permissions without compromising their functionality “We’re requiring extensions to only request access to the appropriate data needed to implement their features,” Google outlined on its Safety and Security page.

2019-5-31 11:41


Mozilla wants to localize the most popular Firefox add-ons

Mozilla’s Firefox browser is available in 90 different languages, ranging from Afrikaans to Welsh. Sadly, not all of its extensions are as well translated. This is something the company is actively working on, and during a two week period, the company used the skills of 100 multilingual Firefox volunteers to translate nine of the most popular extensions into seven languages.

2018-7-17 14:43