Security News > 2020 > April > Malicious Google Web Extensions Harvest Cryptowallet Secrets
Large campaigns that are spreading malicious browser extensions are abusing Google Ads and well-known cryptocurrency brands to draw in victims.
Extensions can be installed to add widgets or other functionality to web browsers; they offer the ability to do everything from setting a special search wallpaper to displaying continuous weather data to language translation.
Researchers from MyCrypto recently found several fake extensions that purported to be of use to cryptocurrency users, for offer inside Google's web store.
To lure victims to their nefarious wares, the extensions impersonated legitimate brands, including Electrum, Exodus, Jaxx, KeepKey, Ledger, MetaMask, MyEtherWallet and Trezor; and were being promoted via a malvertising campaign that takes advantage of Google Ads.
In addition to intentionally malicious browser extensions that compromise users, legitimate offerings are also common targets for cybercriminals who look to exploit vulnerabilities in their code.
News URL
https://threatpost.com/malicious-google-web-extensions-cryptowallet/154832/