KuCoin warns users of a malicious Google docs Chrome web extension

KuCoin’s security team recognized a malicious Chrome web extension for Google Sheets attached with the attacker's address to steal digital assets from the withdrawal wallet during transactions.

[{"selector":"#anim-83cf6504-3abe-46b7-80da-e260d49ba7fb","keyframes":{"opacity":[0,1]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-3a9ad476-9ea4-463b-a51e-9fc3b6d28ded","keyframes":{"transform":["rotate(20deg) translate3d(0px, 72.44856%, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ac7aacab-065d-4cbc-b86d-f2ac02ce1343 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(-1.572067065844765%, 3.23208779113798%) scale(0.9345794392523364)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":3000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] On Wednesday, 24 August, KuCoin, a well-known crypto exchange, updated its followers on Twitter about the malicious link. The team warned users to not download any suspicious extensions. On Wednesday, 24 August, KuCoin, a well-known crypto exchange, updated its followers on Twitter about the malicious link. The team warned users to not download any suspicious extensions.

Scammers and hackers have been finding new ways to attack innocent people. Just a week ago, investigations revealed Lazarus Group impersonating Coinbase to scam job seekers in Web3.

[{"selector":"#anim-320a5bb4-a59b-46eb-9a62-36ef12b7c0f0 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":3000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] Read more

[{"selector":"#anim-464a64ef-f6db-4783-bd05-6626b54647bd","keyframes":{"opacity":[0,1]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-bdf621f6-9c15-4aee-8e95-d5d0b3fa8d39","keyframes":{"transform":["rotate(20deg) translate3d(0px, 76.33746%, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-999cbd57-d9cf-4e1a-a097-a6bc65fc28e2 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":3000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] Now, the attackers seem to have designed web extensions to steal digital assets. When a user downloads the Google Sheets extension, it replaces the user’s withdrawal address with the attacker’s own. Now, the attackers seem to have designed web extensions to steal digital assets. When a user downloads the Google Sheets extension, it replaces the user’s withdrawal address with the attacker’s own.

The best way to avoid getting scammed is not to click on any suspicious link even if you have your anti-virus on your pc. Sometimes, these links pass the check, so personal precautions are necessary.

[{"selector":"#anim-d817fc78-c022-4c9b-9e60-d40552ca9e6e [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":3000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]

KuCoin has already warned its users to protect themselves from this scam as attackers are looking for the opportunity to attack vulnerable users via the fake web extension.

[{"selector":"#anim-c5fc70e0-54e1-4613-ac77-04a6bb31888c","keyframes":{"opacity":[0,1]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4a8fe88c-204a-4422-a5b2-3cc06507f530","keyframes":{"transform":["rotate(20deg) translate3d(0px, 75.41152%, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

– Don’t store sensitive wallet info online – Don’t use public WiFi – Use 2-Factor Authenticator

[{"selector":"#anim-0291180c-7bcd-4d67-9b5b-1c824e221561 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(-1.910813774618415%, -5.172628219887454%) scale(0.8771929824561403)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":3000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]

Additionally, Don’t autosave on Google Chrome, Save private keys offline, and Always check the link before clicking and giving the site access to your wallet. This can keep you safe to some extent.

[{"selector":"#anim-092b6fd5-db8e-4984-881f-de45d4817573","keyframes":{"transform":["rotate(20deg) translate3d(70.00000%, 0px, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-92cae7eb-89af-4823-8dbf-20d3806e1722","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-29676730-0092-44a5-99a3-fe9b5e5ba854","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-d2c7e042-92d2-4d69-a016-deaa272008fa","keyframes":{"transform":["rotate(20deg) translate3d(-54.33333%, 0px, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-06119cb4-7c50-455b-a3c1-70319015213a","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-993ba575-08b5-4404-9201-bf7b38e18abb","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-e1d252ee-d283-4b87-9825-670fb7bb691d","keyframes":{"opacity":[0,1]},"delay":800,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-8c766333-89e6-48a2-87a1-87dc763249e3","keyframes":{"transform":["translate3d(104.82955%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":800,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-81f48bfe-9463-463a-afb0-330ba0c00696","keyframes":{"opacity":[0,1]},"delay":900,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4312e24e-7aae-4d83-a117-8ebd00faf9ce","keyframes":{"transform":["translate3d(115.43408%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":900,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] Lastly, always remain updated with the latest news because most security teams warn users before the actual attack takes place.

Other stories

[{"selector":"#anim-8d68c3ab-cfae-45bf-878a-a913bd12b4e5","keyframes":{"opacity":[0,1]},"delay":400,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-e015f90c-979d-464f-b243-8983169d7756","keyframes":{"transform":["translate3d(-127.51679%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":400,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-e1b9ddf6-3028-4c17-8631-af6e6b75933e","keyframes":{"opacity":[0,1]},"delay":800,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-0396ab5f-9b6e-465f-b87d-70e5dd3f7215","keyframes":{"transform":["translate3d(130.20134%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":800,"duration":1600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-59dc16da-f95e-4d34-83f2-744067ab23cb","keyframes":{"opacity":[0,1]},"delay":500,"duration":1000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-9f3218b8-6b95-4749-a96d-b31451763d47","keyframes":{"opacity":[0,1]},"delay":900,"duration":1000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-b6fdb43e-7108-44fb-8fde-ac48d6b4f248","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-fc32f14a-f31e-4d36-b37e-7ce1cfde44b6","keyframes":{"transform":["rotate(20deg) translate3d(44.33333%, 0px, 0) rotate(-20deg)","rotate(20deg) translate3d(0px, 0px, 0) rotate(-20deg)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] Oak Paradise NFT collection sold out in 2 minutes MIR4 MMORPG game announces new NFT servers NFTStudio24

KuCoin warns users of a malicious Google docs Chrome web extension

KuCoin warns users of a malicious Google docs Chrome web extension

KuCoin’s security team recognized a malicious Chrome web extension for Google Sheets attached with the attacker's address to steal digital assets from the withdrawal wallet during transactions.

KuCoin’s security team recognized a malicious Chrome web extension for Google Sheets attached with the attacker's address to steal digital assets from the withdrawal wallet during transactions.

Scammers and hackers have been finding new ways to attack innocent people. Just a week ago, investigations revealed Lazarus Group impersonating Coinbase to scam job seekers in Web3.

Scammers and hackers have been finding new ways to attack innocent people. Just a week ago, investigations revealed Lazarus Group impersonating Coinbase to scam job seekers in Web3.

The best way to avoid getting scammed is not to click on any suspicious link even if you have your anti-virus on your pc. Sometimes, these links pass the check, so personal precautions are necessary.

The best way to avoid getting scammed is not to click on any suspicious link even if you have your anti-virus on your pc. Sometimes, these links pass the check, so personal precautions are necessary.

KuCoin has already warned its users to protect themselves from this scam as attackers are looking for the opportunity to attack vulnerable users via the fake web extension.

KuCoin has already warned its users to protect themselves from this scam as attackers are looking for the opportunity to attack vulnerable users via the fake web extension.

– Don’t store sensitive wallet info online – Don’t use public WiFi – Use 2-Factor Authenticator

Here are some tips on how you can save yourself and your wallet details from being stolen by attackers.

Here are some tips on how you can save yourself and your wallet details from being stolen by attackers.

Additionally, Don’t autosave on Google Chrome, Save private keys offline, and Always check the link before clicking and giving the site access to your wallet. This can keep you safe to some extent.

Other stories