greedybear
2,151 views
4 Discussing
Hot
Latest
GreedyBear: $1M Crypto Heist via Firefox Extensions
PANews reports that Russian hacker group GreedyBear stole over $1M in crypto in just five weeks by exploiting 150 weaponized Firefox extensions, nearly 500 malicious executables, and phishing sites.
Their main tactic: fake versions of wallets like MetaMask, Exodus, Rabby Wallet, and TronLink, using Extension Hollowing to bypass security, later updating with malicious code.
Victims were tricked with fake reviews and downloads from piracy sites, leading to stolen wallet credentials.
#CryptoSecurity #GreedyBear #MetaMask #CyberCrime #BlockchainSafety
PANews reports that Russian hacker group GreedyBear stole over $1M in crypto in just five weeks by exploiting 150 weaponized Firefox extensions, nearly 500 malicious executables, and phishing sites.
Their main tactic: fake versions of wallets like MetaMask, Exodus, Rabby Wallet, and TronLink, using Extension Hollowing to bypass security, later updating with malicious code.
Victims were tricked with fake reviews and downloads from piracy sites, leading to stolen wallet credentials.
#CryptoSecurity #GreedyBear #MetaMask #CyberCrime #BlockchainSafety
๐จ Digital Scam Alert: GreedyBear Steals $1M+ in Crypto ๐จ
A hacking group dubbed โGreedyBearโ has pulled off an industrial-scale crypto heist, stealing over $1 million using three attack methods:
๐น Fake Wallet Extensions โ 150+ malicious Firefox add-ons mimicking MetaMask, TronLink, Exodus, and more. They used a new trick called โExtension Hollowingโ โ upload a clean extension, gain good reviews, then switch it to malware.
๐น Infected Software โ 500+ malicious files hidden in pirated downloads, loaded with password stealers, ransomware, and trojans.
๐น Phishing Websites โ Dozens of fake crypto platforms designed to steal private keys and funds.
Why it matters: This is one of the most advanced, large-scale scam operations seen in crypto โ with over 650 scam tools deployed.
Protect yourself:
โ Download extensions only from official sources.
โ Avoid pirated software.
โ Store assets in hardware wallets.
โ Enable multi-factor authentication.
Stay safe. Stay alert. The scam industry is evolving โ so should your defenses. ๐ก
#ScamAlert #GreedyBear #BinanceSquareBTC #Web3Safety
A hacking group dubbed โGreedyBearโ has pulled off an industrial-scale crypto heist, stealing over $1 million using three attack methods:
๐น Fake Wallet Extensions โ 150+ malicious Firefox add-ons mimicking MetaMask, TronLink, Exodus, and more. They used a new trick called โExtension Hollowingโ โ upload a clean extension, gain good reviews, then switch it to malware.
๐น Infected Software โ 500+ malicious files hidden in pirated downloads, loaded with password stealers, ransomware, and trojans.
๐น Phishing Websites โ Dozens of fake crypto platforms designed to steal private keys and funds.
Why it matters: This is one of the most advanced, large-scale scam operations seen in crypto โ with over 650 scam tools deployed.
Protect yourself:
โ Download extensions only from official sources.
โ Avoid pirated software.
โ Store assets in hardware wallets.
โ Enable multi-factor authentication.
Stay safe. Stay alert. The scam industry is evolving โ so should your defenses. ๐ก
#ScamAlert #GreedyBear #BinanceSquareBTC #Web3Safety
See original
โ ๏ธ New Disclosure: Important Details on the Russian GreedyBear Scam in Cryptocurrency Theft
A Russian hacker group named GreedyBear has intensified its activities recently, using over 150 weaponized Firefox extensions to target victims worldwide, especially English speakers, according to a security report by Koi Security.
๐ Key points from the report:
๐ The group stole over a million dollars in just 5 weeks, using:
๐ Key points from the report:
๐ The group stole over a million dollars in just 5 weeks, using:
Login to explore more contents