Malicious Google Web Extensions Harvest Cryptowallet Secrets

2020-04-15 21:10

Large campaigns that are spreading malicious browser extensions are abusing Google Ads and well-known cryptocurrency brands to draw in victims.

Extensions can be installed to add widgets or other functionality to web browsers; they offer the ability to do everything from setting a special search wallpaper to displaying continuous weather data to language translation.

Researchers from MyCrypto recently found several fake extensions that purported to be of use to cryptocurrency users, for offer inside Google's web store.

To lure victims to their nefarious wares, the extensions impersonated legitimate brands, including Electrum, Exodus, Jaxx, KeepKey, Ledger, MetaMask, MyEtherWallet and Trezor; and were being promoted via a malvertising campaign that takes advantage of Google Ads.

In addition to intentionally malicious browser extensions that compromise users, legitimate offerings are also common targets for cybercriminals who look to exploit vulnerabilities in their code.

News URL

https://threatpost.com/malicious-google-web-extensions-cryptowallet/154832/

#google #WEB

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Google		141	996	4905	2857	1622	10380