Crypto Users Beware! Chrome Extension Targets Your Wallets

D.Vasic image
· 04 May 2018

A cybersecurity firm called Trend Micro issued a statement warning users of a new malware that targets crypto wallets, stealing login data and hijacking transactions in the process.

In the past, the malware, FacexWorm, was shared via Facebook links, and once a user opens an infected link all their data is stolen, and their PCs processing power is drained to fuel cryptocurrency mining of which the user is not aware of.

But currently, the malware is in the form of a Google Chrome extension. Stealing users’ Google, MyMonero, and Coinhive data is the primary goal of FacexWorm. Plus, it can send carry out unauthorized transactions and issue payments to the attacker’s wallet. Finally, FacexWorm is capable of stealing funds on various cryptocurrency exchanges. The cybersecurity company highlighted Poloniex, HitBTC, Bitfinex, Ethfinex, and Binance.

Crypto Users Beware! Chrome Extension Targets Your Wallets

This is not the first encounter with FacexWorm!

Trend Micro writes that this malware was first noticed in August of last year, but it resurfaced as a Chrome extension somewhere in the last 30 days. Fortunately, Google was quick to act. At the time of writing this article, they managed to ban the majority of affected extensions.

Finally, Trend Micro urges crypto users to be more vigilant and careful when sharing links and downloading extensions. After all, this is the only way to protect their digital assets.

So, when playing dice or poker in casinos that accept Bitcoin, make sure you don’t click on suspicious links. However, if you notice something strange with your crypto wallet, contact the customer support team immediately. Hopefully, they will be able to minimize the damage.