There are many cyber attackers targeting cryptocurrency investors, and they are very skilled in their work. Every day, they use more cunning methods to target investors and empty their wallets. For a while, accounts were being emptied for undetected reasons. Now, the vulnerability has been identified.
Google Crypto Vulnerability
The latest attack method targeting investors using the Google browser surprised everyone. Professional investors had their wallets emptied by attackers using Google Extensions. On computers where the extension named AGGR was installed, all cookies from visited sites were sent to the attackers.
AGRR Trade was an extension advertised by many influencers and reached a significant number of users. This extension, which stole all cookies from all websites you visited and received many positive reviews in the Chrome store, has been circulating for 2 months.
It is advised to run only secure extensions that you need, realizing that Chrome extensions can be almost as risky as executable files. If you install unverified, insecure extensions on your device, it can cause significant losses.
When the extension’s code is examined in detail, at first glance, there is a harmless JavaScript file, but upon closer inspection, there is a block that pulls all cookies from user.query.
