Security News > 2020 > April > Malicious Google Web Extensions Harvest Cryptowallet Secrets

Malicious Google Web Extensions Harvest Cryptowallet Secrets
2020-04-15 21:10

Large campaigns that are spreading malicious browser extensions are abusing Google Ads and well-known cryptocurrency brands to draw in victims.

Extensions can be installed to add widgets or other functionality to web browsers; they offer the ability to do everything from setting a special search wallpaper to displaying continuous weather data to language translation.

Researchers from MyCrypto recently found several fake extensions that purported to be of use to cryptocurrency users, for offer inside Google's web store.

To lure victims to their nefarious wares, the extensions impersonated legitimate brands, including Electrum, Exodus, Jaxx, KeepKey, Ledger, MetaMask, MyEtherWallet and Trezor; and were being promoted via a malvertising campaign that takes advantage of Google Ads.

In addition to intentionally malicious browser extensions that compromise users, legitimate offerings are also common targets for cybercriminals who look to exploit vulnerabilities in their code.


News URL

https://threatpost.com/malicious-google-web-extensions-cryptowallet/154832/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Google 102 253 4225 4525 728 9731