Many cyber attackers target cryptocurrency investors and are highly skilled in their work. They use increasingly cunning methods to target investors and drain their wallets. For a while, accounts were being emptied for undetected reasons. Now, the vulnerability has been identified.
Google Crypto Vulnerability
The latest attack method targeting investors using the Google browser surprised everyone. Attackers emptied even professional investors’ wallets through Google Extensions. The extension named AGGR sent cookies from all visited sites on the installed computers to the attackers.
AGRR Trade was an extension advertised by many influencers and reached a significant number of users. This extension, which stole cookies from all websites you visited and received many positive reviews in the Chrome store, has been circulating for 2 months.
It is advised to recognize that Chrome extensions can be as risky as executable files and to only run secure extensions that you need. Installing unverified, insecure extensions on your device can lead to significant losses.
Upon detailed examination of the extension’s code, it initially appears to be a harmless JavaScript file, but a block that extracts all cookies from user.query is found upon closer inspection.
