GreedyBear Hackers Steal Over $1M in Sophisticated Crypto Theft
Cybersecurity firm Koi Security revealed that the GreedyBear hacker group stole over $1 million in crypto through a multi-faceted attack. The hackers used 150 weaponized Firefox extensions, almost 500 malicious executables, and multiple phishing websites.
The group deployed a novel "Extension Hollowing" technique to bypass security, creating legitimate-looking extension portfolios before adding malicious code. A single server was used to control this extensive theft operation.