\n
![](\"https:\/\/readwrite.com\/wp-content\/uploads\/2024\/04\/6RqQYcimSzmIwkdlxmXEgg-900x561.jpg\")
<\/p>\n [ad_1]
\n<\/p>\n
A Cryptocurrency investor has alleged that two \u2018weird extensions\u2019 have drained $800,000 from multiple of his wallet apps.<\/p>\n
The trading and crypto<\/a> user, who goes by the name \u2018sell9000\u2019 on X, has taken to the social media platform to speculate about how this happened.<\/p>\n He says \u201cI suspect this was a Google Chrome compromise containing a possible keylogger targeting specific wallet extension apps\u2026\u201d<\/p>\n Just realized I got $500k drained from multiple wallet apps 46 hours ago<\/p>\n Think I got extension attacked, with two suspicious extensions that appeared on my chrome browser<\/p>\n does not feel good fam<\/p>\n still investigating<\/p>\n \u2014 Sell When Over | 9000.sei (@sell9000) April 8, 2024<\/a><\/p>\n<\/blockquote>\n A keylogger is a malicious application used by cyber criminals<\/a> to record every action of a keystroke made by another user. That data can then be retrieved by the person operating the logging program.<\/p>\n The user explained how he did a Google Chrome update a few weeks ago, but said that unusually \u201call my tabs were gone and extension logins had reset\u201d when the browser relaunched. This included his wallets which were now logged out of and required details to be re-added.<\/p>\n He alleges that \u201cChrome was compromised in that unusual reboot event\u201d and said he found two extensions titled \u2018Sync test beta\u2019 and \u2018Simple Game.\u2019<\/p>\n The hackers have reportedly sent the funds to two exchanges, the Singapore-based MEXC exchange and the Cayman Islands-headquartered Gate.io.<\/p>\n In one of the latest updates, Sell9000 asks for further assistance and reports it\u2019s an ongoing issue.<\/p>\n While the X user isn\u2019t yet sure how the extensions got onto Chrome and what the attack vector is, they say they can confirm that \u2018Sync test BETA (colorful)\u2019 is a keylogger. The other one \u2018Simple Game\u2019 is described as checking if tabs are updated, open, closed, and refreshed.<\/p>\n Sell9000 chalks up the incident as being \u201ca $800k costly mistake\u201d and says \u201cThe lesson is if anything seems off such as that it prompts you to input a seed, then wipe the whole PC first.<\/p>\n \u201cMy guard went down because the updated happened to be when Chrome made a significant update (where now you have to select a user and the[n] sign in with Google UI changed) so I thought that was what caused the extensions to reset and me to lose all my tabs.\u201d<\/p>\n Featured Image: Photo by Firmbee.com<\/a> on Unsplash<\/a><\/em><\/strong><\/p>\n<\/p><\/div>\n\n
\u201cA $800k costly mistake\u201d<\/b><\/h2>\n