Chrome Extensions a Hacker Loophole? Analysts Warn of Risks for Crypto Users!

Jakarta, Pintu News – Analysts have revealed that the popular Chrome extension SwitchyOmega has been compromised, compromising the security of users’ private keys. Check out the full news here!

Cyberattacks on Popular Extensions

A Chrome-based proxy extension, SwitchyOmega, was recently found to be compromised and used to steal private keys from crypto wallets. More than 500,000 users were threatened by this modified version.

According to a report from SlowMist, this attack started with a phishing email addressed to employees of Cyberhaven, an AI-based data security company. The email claimed that Cyberhaven’s browser extension violated Google’s policies and threatened to remove it if action was not taken immediately.

As a result, malicious code was successfully injected into the extension. Users who updated their extensions to the compromised version (24.10.4) without realizing it installed the malicious code.

Also read: Will Bitcoin Hit the Bottom at $70,000? Check out Arthur Hayes’ Prediction!

Assault Methods and Their Impact

The attackers used OAuth to access the Cyberhaven account and uploaded a compromised extension version. The malicious code in the extension was designed to steal sensitive data, including private keys and mnemonic phrases from crypto wallets.

While it’s unclear how many of the 500,000 users are affected, analysts at SlowMist advise users to check the IDs of installed extensions to match the official version.

This attack demonstrates a significant vulnerability in the security of browser extensions that cybercriminals can exploit. Users are advised to always be vigilant and check for security updates for their extensions.

Read also: Is Altcoin Season Over? Check out the Latest Analysis of March 2025!

History of Attacks on Browser Extensions

Attacks on crypto merchants through browser extensions are nothing new. Cybercriminals have long been trying to exploit this security hole.

In September 2024, analysts from cybersecurity firm Group-IB revealed that North Korean hacking group Lazarus Group had increased their efforts to target crypto professionals and developers.

The group is known for its sophisticated cyber campaigns against the crypto industry and has expanded its targets to browser extensions and fake video apps. This shows the importance of strict cybersecurity and regular updates to protect digital assets.

That’s the latest information about crypto news today. Get more information about crypto academy from beginner to expert level only at Pintu Academy and enrich your knowledge about the world of crypto and blockchain.

Follow us on Google News for the latest updates on crypto and blockchain technology. Enjoy an easy and secure crypto trading experience by downloading Pintu crypto app via Google Play Store or App Store now.

Experience web trading with advanced trading tools such as pro charting, various order types, and portfolio tracker only at Pintu Pro. Click Register Pintu if you don’t have an account or click Login Pintu if you are already registered.

*Disclaimer

This content aims to enrich readers’ information. Pintu collects this information from various relevant sources and is not influenced by outside parties. Note that an asset’s past performance does not determine its projected future performance. Crypto trading activities have high risk and volatility, always do your own research and use cold cash before investing. All activities of buying and selling bitcoin and other crypto asset investments are the responsibility of the reader.

Reference

• Crypto News. Chrome Extension Compromise Puts Crypto Wallets at Risk, Analysts Warn. Accessed on March 13, 2025
• Featured Image: Cyber Security 360