KuCoin exchange detects malware in Chrome browser to steal cryptocurrencies

Experts reported about an extension called Google Sheets that masquerades as a service of the same name and can modify transaction data

24.08.2022 - 15:10

288

2 min

What’s new? The security service of cryptocurrency exchange KuCoin has warned Chrome browser users about the threat of losing money due to a new fraudulent scheme using malware. Experts discovered a browser extension called Google Sheets' that masquerades as a Google service of the same name. Tech support for the exchange said that if the extension is downloaded, it will be able to change the recipient's address to that of the fraudsters when carrying out cryptocurrency transactions.

The #KuCoin security team has noticed a malicious Chrome web extension called Google Sheets which may replace your withdrawal address with the attacker's address when you try to make a transaction.Please don't download any suspicious extensions, or click any suspicious links.⚠️— KUCOIN (@kucoincom) August 24, 2022

What else does the tech support say? So far, it is unknown how widely the malware has spread and how much damage it has already caused. There have also been no reports that the extension could threaten only users of the KuCoin crypto exchange.

Earlier, SafeGuard Cyber experts warned about the emergence of cryptocurrency key-stealing malware that spreads in the Telegram messenger, masquerading as an image file.

In June, Halborn reported that MetaMask and Phantom wallets fixed a critical vulnerability in a browser software extension. Seed phrases were stored on users' computers as plain text as part of a “Restore Session” feature. This meant that attackers could infiltrate the system with malware or physical access.

Author: