A new malware related to Chrome has been discovered on the web. Users of Binance, Coinbase and Kucoin under threat

Клиентов бирж предупредили о новом способе мошенничества Хакер использует фейковый плагин, который маскируется под «Google Sheets»

  • Customers of exchanges were warned about a new method of fraud
  • The hacker uses a fake plugin that masquerades as “Google Sheets”

  • Malware changes the target address to the criminal’s account when conducting a transaction

On Monday, August, the Wallet Guard service team discovered a new threat. A fake extension for Google Chrome called “Google Sheets” is being distributed online. Through this plugin, criminals can gain access to the user’s funds.

Later, the support of the Kucoin exchange reported about the threat. The exact extent of malware distribution is still unknown. Clients of not only Kucoin, but also sites such as Coinbase and Binance are at risk.

The #KuCoin security team has noticed a malicious Chrome web extension called Google Sheets which may replace your withdrawal address with the attacker’s address when you try to make a transaction.

Please don’t download any suspicious extensions, or click any suspicious links. ⚠️

— KUCOIN (@kucoincom) August , 1600

The mechanism of the scam is extremely simple. The user downloads a fake plugin under the guise of real “Tables“. Note that the icon and name of the official add-on are different.

Then, when the transaction is made, the software automatically replaces the target address with the hacker’s account. Thus, the user, without knowing it, transfers money to the attacker’s wallet.

Protection against this method of fraud is very simple – you cannot install add-ons from suspicious sources or conduct transactions from someone else’s computer. Also, it will not be superfluous to check the browser for suspicious plugins. See also: hacker lost $8,000 in an unsuccessful attempt to hack Rainbow Bridge from NEAR Protocol.


Related Articles

Back to top button