⚠️Warning! Russian Hackers Steal $1 Million with Fake MetaMask Wallets
A group of Russian hackers called GreedyBear has intensified their attacks, managing to steal over $1 million in just five weeks. Their main tactic, identified in research by Koi Security (a security platform based in the U.S. and Israel), is to create and distribute fraudulent versions of browser extensions for popular cryptocurrency wallets like MetaMask, Exodus, and Rabby Wallet.
How does this scam work?
The hackers take advantage of the security controls of browsers. First, they upload harmless versions of the extensions. Then, once users install them, they update them with malicious code that steals credentials. To make them more convincing, the group posts fake reviews, giving them an air of legitimacy.
The Koi Security report highlights that this extension campaign has been GreedyBear's most profitable method, surpassing their other attacks, which include the use of pirated software and phishing websites.
How can you protect your cryptocurrencies?
To avoid falling victim to these attacks, follow these tips:
* Verify the source: Only install extensions from developers with a verified history and a solid reputation.
* Avoid pirated software: Sites offering "free" software are often traps.
* Opt for hardware wallets: To store significant amounts, consider a hardware wallet, but make sure to purchase it directly from the official manufacturer’s website. Hackers often create fake sites to steal payment data.
The key is caution.
------------------
Disclaimer ⚠️
This post was created for informational and educational purposes. It is not an investment recommendation, nor legal, tax, or financial advice. 🚫
In this community, knowledge is your best defense.
Research, contrast, question.
DYOR is not a catchphrase; it is an essential practice.