Researchers have uncovered a security breach in SwitchyOmega, a popular Chrome extension. According to reports, this breach has left over 500,000 users at risk of losing their private keys. Analysts at SlowMist confirmed that the compromised version of the extension has been stealing private keys from cryptocurrency wallets, putting many users in danger of losing their funds.
How the Crypto Security Breach Started
A phishing email targeted an employee at Cyberhaven, an AI data security company. This attack added harmful code to the SwitchyOmega extension.
The researchers also revealed that an email falsely claimed that Cyberhaven’s browser extension broke Google’s policies and threatened removal unless immediate action was taken.
This vulnerability allowed cybercriminals to secretly collect sensitive information, such as private keys, from users’ crypto wallets without their knowledge. Cybercriminals use these stolen private keys to access users’ cryptocurrency, resulting in financial losses.
While the exact number of affected users is unknown, this incident has raised serious concerns about the security of browser extensions.
Users are advised to uninstall the compromised version of SwitchyOmega and check their crypto wallet for any unauthorized transactions. To protect their sensitive information in the future, users should also install reliable security software, enable two-factor authentication (2FA), and stay alert for phishing attacks.
Different Scam and Fraud Tactics Target Users’ Funds
The digital currency system is filled with scams and fraud tactics targeted at users’ hard-earned money. While cybercriminals have continued to evolve their approach, the education and awareness campaign must also match this evolution to keep crypto investors safe.
One of the approaches developed by hackers to steal users’ funds is through the Mars stealer malware, a sophisticated tool that can obtain users’ information without authorization. While this appears similar to other cybercriminals’ tools, it is different because it is distributed in a downloadable application. One of these applications is called the Mars Wallet.
It is worth noting that Mars Wallet targets browsers and applications, including Chrome, Edge, Internet Explorer, Brave, Kometa, MetaMask, and Coinbase Wallet. However, the safe bet against Mars Wallet is to avoid downloading it in the first place.
Crypto Security Concerns Intensify
February’s surge in crypto-related hacks is alarming, especially given the declining trend observed in late 2023. Losses had been falling, with December 2024 having $28.6 million stolen, down from $63.8 million and $115.8 million in November and October, respectively.
Certix warns that wallet security and smart contract vulnerabilities remain the biggest risks. The blockchain security firm also urged exchanges and protocols to adopt stronger security measures before another major breach shakes the industry.
The post Researchers Flags Crypto Security Breach in Chrome Extension appeared first on TheCoinrise.com.
TheCoinrise.com – Read More