Chrome Extension Steals Passwords, and Cryptocurrencies

Courtesy of Robert Scoble (Flickr CC0)

Chrome Danger

Researchers contend that a dangerous cryptocurrency-stealing malware has gotten updates to make it even some-more dangerous. Avast cybersecurity experts have warned that a Microsoft malware ViperSoftX has developed into a antagonistic Google Chrome extension.

For a many part, ViperSoftX would watch a things that a putrescent mechanism would duplicate into their clipboard, and if a mechanism would duplicate a cryptocurrency wallet address, a malware would reinstate a one from a clipboard with a people behind a hacker’s cryptocurrency wallet address. When this occurs, a putrescent mechanism will unintentionally send supports to a hackers.

Courtesy of David Martyn Hunt (Flickr CC0)

Examine Before You Install

Cryptocurrency addresses are a prolonged line of what demeanour to be pointless characters, that in spin creates this conflict successful for a many part. The prolongation does a accurate same thing, though a small better.

The name of a malware-infested prolongation is “Google Sheets 2.1.” This is a dangerous extension; If someone has it, endorsed for deletion.

“VenomSoftX steals cryptocurrency by hooking API requests on some renouned cryptocurrency exchanges that victims revisit or have an comment with,” researchers explained.

Avast says that a conflict gets used on vast crypto companies, like Coinbase, Kucoin, Binance,, and Not usually those companies, though a conflict also keeps a surveillance for wallets copied onto a clipboard.

Even if a plant creates certain that they double-check a wallet address, it won’t matter since a prolongation modifies a HTML so that a victim’s wallet is displayed. Basically, behind a scenes, a hacker’s wallet residence gets sheltered as a victim’s wallet address.

So far, investigate has resolved that a conflict has been means to take $130,000 in opposite forms of cryptocurrencies. The series of people influenced by a penetrate is unknown, though a people hacked were especially located in India, Brazil, a U.S., and Italy.

Written By Lance Santoyo


Tech Radar: This nasty Google Chrome prolongation is after your crypto and your passwords

Bleeping Computer: Google Chrome prolongation used to take cryptocurrency, passwords

GB Hackers: Chrome Extension Deploy Windows Malware to Steal Cryptocurrency and Clipboard Contents

Top and Featured Image Courtesy of Robert Scoble Flickr Page – Creative Commons License

Inset Image Courtesy of David Martyn Hunt Flickr Page – Creative Commons License

Chrome Extension Steals Passwords, and Cryptocurrencies combined by Lance Santoyo on Nov 23, 2022
View all posts by Lance Santoyo →