Anonymous cryptocurrency investor loses $800,000 to malicious Google Chrome plugin
An anonymous cryptocurrency investor using the username "Sell When Over" on Platform X has lost $800,000 to two allegedly malicious Google Chrome extensions. The investor first posted a warning on Platform X that they had lost $500,000 to multiple wallet apps. They suspected that Google Chrome was compromised, possibly involving keyloggers targeting specific crypto wallet extensions. A few weeks ago, the trader delayed a Google Chrome update several times. However, a mandatory Windows update eventually forced a system reboot. Upon restarting Chrome, they found that all tabs had disappeared and the extension's login information had been reset. Thereafter, the victims were forced to re-enter all their credentials on Chrome and manually re-import the seed phrase for their cryptocurrency wallet from another secure device. Users suspected that the keylogger had compromised their sensitive information, leading to the emptying of funds. After an initial investigation, they discovered two suspicious extensions - "Sync test beta" and "Simple Game" - as well as an automatic Korean translation setting enabled in Chrome. Users are still unsure how their Chrome browser was compromised, but confirmed that the "Sync test BETA" extension is a keylogger. Meanwhile, "Simple Game" seems to be monitoring tab activity and communicating with PHP scripts on external websites.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.