Tech | Visa | Scholarship/School | Info Place

Trader lost $800,000 in cryptocurrency to malicious Google Chrome extension

A cryptocurrency investor claims that two “weird extensions” have drained $800,000 from his multiple wallet applications.

The trading and cryptocurrency user, who goes by “sell9000” on X, has taken to the social media platform to speculate on how this happened.

“I suspect this is a compromise of Google Chrome that may contain a keylogger targeting a specific wallet extension application…” he said.

Keyloggers are malicious applications used by cybercriminals to record every keystroke of other users. The data can then be retrieved by the person operating the logging program.

The user explained how he updated his Google Chrome browser a few weeks ago, but said that when the browser restarted, “all my tabs were gone and extension logins were reset,” which was unusual. This includes his wallets, which are now logged out and require details to be added again.

He claimed that “Chrome was compromised during that unusual restart event” and said he discovered two extensions called “Sync Test Beta” and “Simple Games.”

Hackers have reportedly sent funds to two exchanges, Singapore-based MEXC Exchange and Cayman Islands-based Gate.io.

“A mistake that cost $800,000”

In one of the latest updates, Sell9000 requested further help and reported that this is an ongoing issue.

While X users have yet to determine how the extension got into Chrome and what the attack vector is, they say they can confirm that “Sync test BETA (Color)” is a keylogger. Another “simple game” is described as checking if a tab is updated, opened, closed and refreshed.

Sell9000 chalked the incident up to “a costly $800,000 mistake” and said “The lesson is, if anything goes wrong, such as prompting you for a seed, wipe your entire computer first.

“I let my guard down because the update happened to coincide with Chrome getting a major update (now you have to choose a user and[n] Sign in using Google UI has changed), so I think that’s what caused the extension to reset and I lost all my tabs. “

Featured Image: Photo courtesy of Firmbee.com on Unsplash


#Trader #lost #cryptocurrency #malicious #Google #Chrome #extension

Leave a Reply

Your email address will not be published. Required fields are marked *