Many cyber attackers target cryptocurrency investors and are highly skilled in their work. They use increasingly cunning methods to target investors and empty their wallets. Accounts have been drained for some time without detection. Now, the vulnerability has been identified.
Google Crypto Vulnerability
The latest attack method targeting investors using the Google browser has surprised everyone. Attackers emptied the wallets of even professional investors through Google Extensions. The AGGR extension sent cookies from all visited sites on the installed computers to the attackers.
AGRR Trade was an extension advertised by many influencers and reached a large number of users. This extension, which stole cookies from all websites you visited, received many positive reviews in the Chrome store and has been circulating for 2 months.
It is advised to run only the secure extensions you need, recognizing that Chrome extensions can be almost as risky as executable files. Installing unverified, insecure extensions on your device can lead to significant losses.
When the extension’s code is examined in detail, it initially appears as a harmless JavaScript file, but upon closer inspection, there is a block that pulls all cookies from user.query.
