Google Removes 49 Phishing Google Chrome Web Browser Extensions With The Help Of PhishFort
Google Removes 49 Phishing Google Chrome Web Browser Extensions With The Help Of PhishFort
April 16, 2020
Google Removes 49 Phishing Google Chrome Web Browser Extensions With The Help Of PhishFort
Google Removes 49 Phishing Google Chrome Web Browser Extensions With The Help Of PhishFort
April 16, 2020

Google removed 49 phishing Google Chrome web browser extensions with the help of PhishFort, a phishing-specialized cybersecurity firm, after receiving reports about their activity.

On April 14, it has been reported that Harry Denley, the Director of Security at MyCrypto, the cryptocurrency wallet startup, explained how he got the extensions removed from Chrome’s store within 24 hours with the help of PhishFort.  

However, the removed extensions include ones that targeted the owners of hardware wallets and users of software wallets produced by:

  • Ledger,
  • Trezor,
  • KeepKey,
  • Jaxx,
  • MyEtherWallet,
  • Metamask,
  • Exodus, and
  • Electrum

It has been analyzed that the extensions triggered the users to enter the credentials needed to access the wallet, such as mnemonic phrases, private keys, and keystore files, and sent them to bad actors. Then, hackers were able to steal the crypto assets contained in the wallets.

ALSO READ :  Trillions Of Dollars Injected Into The Global Markets To Revitalize The World Economy

Also, some of the extensions had fake five-star ratings in the Chrome extension store, but the reviews contained little to no info ranging from “good,” “helpful app” to “legit extension.” 

As per the report, one of the extensions reportedly had the same review copied and pasted eight times by different users. The copypasta included an introduction to Bitcoin (BTC) and explained why MyEtherWallet, the extension’s targeted wallet, was the preferred wallet option. Hence, it is worth noting that MyEtherWallet does not actually support Bitcoin.

It has also been analyzed that the investigation uncovered 14 control servers behind all the extensions, but fingerprinting analysis revealed that some of the servers were managed by the same bad actors, with the oldest domain being linked to many other control servers.

Subsequently, Denley concluded that the same bad actors were behind most of the extensions.

However, some of the domains used in the phishing campaigns were relatively old, but 80% of them were registered in March and April 2020.

ALSO READ :  Microsoft Reveals A New Ransomware “PonyFinal” That Attacks Healthcare Sector

Thus, most of the extensions were published on Chrome’s store this month.

Source: Cointelegraph | Image: Fossbytes


Disclaimer

Crypto News Point a news platform of Digital Notice Media Labs is primarily a regular publication of information, commentary and articles focused extensively on fintech, blockchain technology, cryptocurrency, blockchain-based tokens, cryptocurrency market trends, and trading strategies. We do not provide individually tailored investment advice and does not take a subscriber’s or anyone’s circumstances into consideration when discussing investments, nor is Crypto News Point registered as an investment adviser or broker-dealer in any jurisdiction. Information contained herein is not an offer or solicitation to buy, hold, or sell any digital assets.

Affiliate Disclosure: To help support the work we do here at CNP, we often link to products and deals from around the web. Should you buy some of these, we may get a portion of the sale.

We in generally gather content from the major websites. In every article there is always a clear link and attribution to the source publication. If you have any issue with any of our published content taken from your site, kindly let us know so that we can take appropriate action. In any case, the content of the pages of this website is for your general information and use only. It is subject to change without notice.

You May Also like

Ishita Bora

Ishita Bora is a Senior Content Creator at Digital Notice Media Labs with an experience of 1 year. She has completed her Master's Degree in Language and Linguistics in 2019 from Gauhati University, India. Her interest lies in blockchain technology and cryptocurrency space, as she loves writing about blockchain and other blockchain-related articles. Currently, she is working on blockchain-based news, reviews, featured articles, and guides.
Share This

Share This

Share this post with your friends!