Fun

Google Pulls 49 Cryptocurrency Wallet Browser Extensions Found Stealing Private Keys

News Feed - 2020-04-16 01:04:12

Google Pulls 49 Cryptocurrency Wallet Browser Extensions Found Stealing Private Keys


Google has removed 49 cryptocurrency wallet browser extensions after a security researcher discovered they were stealing private keys. These Chrome extensions targeted users of crypto wallets, such as Ledger, Trezor, Jaxx, Electrum, Myetherwallet, Metamask, Exodus, and Keepkey.


Also read: Bitcoin Revolution: Wanna Earn $1,000 a Day? Government Warns About This Scam49 Malicious Chrome Browser Extensions


Security researcher Harry Denley revealed on Tuesday that 49 Chrome browser extensions have been stealing users’ cryptocurrency wallet private keys. Denley is the director of security at Mycrypto, an open-source tool for generating ether wallets and handling ERC20 tokens.


Posing as legitimate cryptocurrency wallet extensions, the 49 fake Chrome browser extensions contained malicious code that stole private keys, mnemonic phrases, and keystore files, the director described. They gathered data entered during different wallet configuration steps and sent them to one of the attacker’s servers or a Google Form. Some of these fraudulent browser extensions even had a network of fake users rating them with five stars or positive feedback. According to Denley, the extensions appear to be the work of one person or a group of people who are likely to be based in Russia.The 49 Chrome browser extension IDs caught stealing cryptocurrency wallet private keys, discovered by security researcher Harry Denley.The Targeted Cryptocurrency Wallets


Denley further revealed that the cryptocurrency wallets targeted by the 49 malicious Chrome browser extensions were Ledger, Trezor, Jaxx, Electrum, Myetherwallet, Metamask, Exodus, and Keepkey. He found that the most attacked wallet was Ledger, targeted by 57% of the malicious browser extensions. The second most targeted wallet was Myetherwallet (22%), followed by Trezor (8%), Electrum (4%), Keepkey (4%), and Jaxx (2%).


During his test, the security researcher sent funds to a few addresses and entered some secrets. He found that the funds sent were not automatically swept, concluding that the attackers were either only interested in high-value accounts or had to manually empty the addresses. Moreover, he noted that the malicious extensions started to hit the Google Chrome store in February slowly and rapidly increased releases through April. He added that they were reported to Google and removed within 24 hours.


What do you think about all these malicious browser extensions? Let us know in the comments section below.How to Hide Your Bitcoin - Opsec, Anonymity, Cold Storage, Brainwallet, Dexes and Non-CustodialsSECURITY | Feb 25, 2020


In an era of increasing economic uncertainty, surveillance, specialized cybercrime and hacking, knowing how to hide bitcoin safely has become… read more.Bitgo to Offer Regulated Crypto Custody in Switzerland and GermanySECURITY | Feb 11, 2020


European crypto exchanges, as well as other companies with significant crypto holdings they need to protect, now have another option… read more.Tags in this storyBitcoin, browser extensions, browser steal cryptocurrency, browser steals private keys, BTC, Chrome, chrome extension, crypto, Cryptocurrency, Google, Google Chrome, google crypto, google crypto wallets, google cryptocurrency, google private keys, google wallet, google wallet extensions, steal private keys, wallet extensions


Image Credits: Shutterstock, Pixabay, Wiki Commons, Harry DenleyPurchase Bitcoin without visiting a cryptocurrency exchange. Buy BTC and BCH here.Disclaimer: This article is for informational purposes only. It is not an offer or solicitation of an offer to buy or sell, or a recommendation, endorsement, or sponsorship of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article.Read disclaimer Show comments

News Feed
Massachusetts-Based Bankprov to End Loan Offerings Secured by Cryptocurrency Mining Rigs
Massachusetts-Based Bankprov to End Loan Offerings Secured by Cryptocurrency Mining Rigs The Amesbury, Massachusetts-based Bankprov, a subsidiary of Provident Bancorp, has announce
2023-02-01 04:30 AM
This 360 treadmill could make Disney’s metaverse a physical playground
Tristan Greene5 hours agoThis 360 treadmill could make Disney’s metaverse a physical playgroundYouTuber and Ultimate star MKBHD tested the device using a game controller, his legs, and the Force.1183 Total views16 Tota
2024-04-28 03:46 AM
Trump crypto venture WLFI a ‘potential pump-and-dump disaster’ 
Daniel Ramirez-Escudero10 hours agoTrump crypto venture WLFI a ‘potential pump-and-dump disaster’ The launch of the Trump family’s World Liberty Financial crypto project during election season carries risks, possi
2024-09-27 22:47 PM
Ethereum Co-Founder Vitalik Buterin Downplays Ethereum PoW Fork, Hopes It ‘Doesn’t Lead to People Losing Money’
Ethereum Co-Founder Vitalik Buterin Downplays Ethereum PoW Fork, Hopes It "Doesn"t Lead to People Losing Money" Ethereum co-founder Vitalik Buterin recently discussed what he think
2022-08-09 05:30 AM
Shanghai Aims to Grow a $52 Billion Metaverse Cluster by 2025
Shanghai Aims to Grow a $52 Billion Metaverse Cluster by 2025 The Government of the city of Shanghai has proposed a group of guidelines to help it shift into a metaverse power. The
2022-07-15 14:30 PM
CoinEx Lists ONES Token First and Launches Initial Trade Offering with OneSwap’s Official Launch
CoinEx Lists ONES Token First and Launches Initial Trade Offering with OneSwap’s Official LaunchOneSwap is a groundbreaking new DeFi project offering a decentralized exchange prot
2020-09-19 22:30 PM
XRP Price Set To Resume Upside: Is Momentum Building?
Este artículo también está disponible en español. XRP price is holding gains above the $0.5450 zone. The price seems to be eyeing more gains above the $0.5550 and $0.5650
2024-10-18 13:08 PM
Crypto Custody Firm Fireblocks Launches Web3 Services Suite
Crypto Custody Firm Fireblocks Launches Web3 Services Suite Fireblocks, a crypto custody service provider, is expanding its services with the launch of an institutional suite of We
2022-05-21 05:30 AM
Biggest Movers: APE Hits 2-Month High, as UNI Nears Highest Point Since April
Biggest Movers: APE Hits 2-Month High, as UNI Nears Highest Point Since April Apecoin rose to its highest point in over two months on hump day, as prices rebounded following a two-
2022-08-04 01:00 AM
Prashant Jha1 hour agoBankrupt crypto lender Genesis sues Gemini to recover $689M of ‘preferential transfers’Genesis claims Gemini made preferential transfers of about $689 million from Genesis and wants the court to
2023-11-22 17:00 PM
Investors Lost $10,000 on Average to Russian Crypto Pyramid Finiko, Poll Reveals
Investors Lost $10,000 on Average to Russian Crypto Pyramid Finiko, Poll Reveals Investors defrauded by the Russia-based cryptocurrency Ponzi scheme Finiko have sent the crypto pyr
2021-10-13 20:30 PM
Decentralized Finance Is Blossoming, But Just How Decentralized Is Defi?
Decentralized Finance Is Blossoming, But Just How Decentralized Is Defi? The defi market has hit an all-time high as the total value locked up in decentralized finance has surged
2020-01-30 16:00 PM