Citing BlockBeats, a cybersecurity firm named Socket has identified a malicious Chrome extension called 'Crypto Copilot' that siphons funds from users' Solana transactions. The extension, which allows Solana transactions directly from the X social media platform, injects additional instructions into each transaction, siphoning at least 0.0013 SOL or 0.05% of the transaction amount. Unlike typical wallet-draining malware, it uses Raydium's decentralized exchange to execute trades and adds a second instruction to transfer SOL to the attacker's wallet, while hiding these actions from the user interface. The extension, launched on June 18, 2024, currently has only 15 users. Socket has requested its removal from the Chrome Web Store.
Malicious Chrome Extension 'Crypto Copilot' Steals Funds from Solana Transactions
KuCoinFlashShare
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.