GoPlus: Beware of malicious Chrome extensions masquerading as ETH wallets

PANews reported on November 14th that GoPlus issued a security alert warning of a malicious Chrome extension masquerading as an ETH wallet. This extension steals user assets by encoding the user's mnemonic phrase into Sui transactions. Released on November 12th, 2024, this malicious extension is advertised as a simple and secure Ethereum (ETH) wallet, but it contains a backdoor that steals the user's mnemonic phrase by encoding it into a Sui address and broadcasting micro-transactions from an attacker-controlled Sui wallet. The extension is highly stealthy. Currently, the malicious extension has not been removed from the Chrome Web Store, and GoPlus has reported it to Chrome and blocked the download link.

  • Malicious file extension: Safery: Ethereum Wallet;
  • Attacker's email address: kifagusertyna@gmail.com.
Share to:

Author: PA一线

This content is for informational purposes only and does not constitute investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANews
Recommended Reading
31 minute ago
9 hour ago
14 hour ago
15 hour ago
15 hour ago
17 hour ago

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe

Curated Series

App内阅读