Security News > 2020 > January > Chrome Extension Stealing Cryptocurrency Keys and Passwords
According to Denley, the extension is dangerous to users in two ways.
First, any funds managed directly inside the extension are at risk.
Denley says that the extension sends the private keys of all wallets created or managed through its interface to a third-party website located at erc20wallet[.
Tk. Second, the extension also actively injects malicious JavaScript code when users navigate to five well-known and popular cryptocurrency management platforms.
This code steals login credentials and private keys, data that it's sent to the same erc20wallet[.
News URL
https://www.schneier.com/blog/archives/2020/01/chrome_extensio.html