Google exposes malicious plug-in chrome plug-in to steal users' cryptocurrency
4hw.com.cn: Google Chrome is the Royal browser of people in the currency circle. Many cryptocurrency wallets and blockchain games are implemented with the help of chrome plug-ins. But it is also true that Google Chrome is targeted by criminals who steal users' digital assets by spreading malicious plug-ins.
According to a report this week by network security company trend technology, a malicious plug-in named FacexWorm was found on Google Chrome. The plug-in has been specially modified for cryptocurrency exchange, which can steal the certificate of MyMonero wallet and Coinhive plug-in, transfer the user's cryptocurrency to the attacker's wallet, and consume the user's computer computing power to mine.
What's more, trend technology claims that facexworm can hijack the wallets of several mainstream cryptocurrency exchanges, including poloniex, hitbtc, bitfinex, ethinex, binance and blockchain (formerly blockchain. Info), which will cause users' digital assets to be stolen.
Facexworm's malicious plug-in was first exposed in August 2017. However, at that time, it was not aimed at cryptocurrency users, but could send malicious links through Facebook, steal facebook accounts, and infect the operating system. The name of the facexworm plug-in comes from Facebook.
In April this year, facexworm 'upgraded heavily', targeting cryptocurrency users.
According to trend technology, FacexWorm currently has at least one case of bitcoin trading theft, but it is not sure what specific benefits the attacker will get from it.
At present, Google Chrome has deleted many facexworm extensions, but users still need to be alert, because there are many malicious plug-ins like facexworm that steal digital assets.