As reported by HashNews, a malicious Chrome extension named 'Safery: Ethereum Wallet' has been identified by blockchain security platform Socket for stealing users' mnemonic phrases. The extension, which ranks fourth in Chrome Store search results for 'Ethereum Wallet,' uses a backdoor to encode mnemonics into Sui addresses and broadcast small transactions via attacker-controlled wallets. Users are at risk whether creating a new wallet or importing an existing one, as the extension transmits the mnemonic in both cases. Socket warns that attackers can reconstruct the original mnemonic from the transaction data and steal assets. The extension lacks user reviews, has poor branding, grammatical errors, no official website, and is developed from a Gmail account. Users are advised to conduct due diligence, safeguard mnemonics, and monitor transactions for suspicious activity.
Malicious Chrome Extension 'Safery' Steals Ethereum Wallet Mnemonics
HashNewsShare
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.