Solana-based decentralized exchange aggregator Jupiter has issued a warning about a malicious Chrome extension called “Bull Checker.” The actual goal of this extension is to fool unsuspecting users into transferring their funds to another wallet.
Note that “Blue Checker” can read and change all your data on a website. This should be treated as a major red flag since such an extension would not normally need this sort of permission.
Method of Targeting Users
The extension was able to drain the wallets of its victims by modifying transactions from a regular dApp. Unsigned transactions get forwarded to a remote server to a drainer program. Earlier this year, Solana gained more popularity due to the success of meme coins. Unsurprisingly, the malicious extension was specifically targeting Reddit users who were looking to trade the aforementioned type of cryptocurrencies. While “BlueChecker” has now been exposed as a sham, it is likely that there are other malicious extensions that are yet to be tracked down. Hence, users should stay vigilant and uninstall all suspicious extensions (especially the ones that require extensive permission).
The Risks for the Solana Community
The discovery of this malicious extension has significant implications for the Solana community. By targeting users of this blockchain, cybercriminals are seeking to exploit the growing popularity of Solana and its booming ecosystem. With the increase in the number of users and investors in cryptocurrencies, targeted attacks like this can lead to a loss of confidence in the security of platforms and associated tools. It could also discourage new users from joining the ecosystem, thus holding back innovation and growth.
Safety Tips
Researchers warned that there could be other malicious extensions with similar features like Blue Checker that are yet to be uncovered.
In the meantime, they warned against installing extensions with “read and change” permissions and urged users to uninstall them from their browsers. Solana users are advised to be cautious of extensions that require extensive permissions.
Solana Popularity Soars Amid Memecoin Success
The development comes months after Solana gained significant traction due to the success of selected memecoins launched on the network.
Following the massive growth of dogwifhat (WIF), Bonk (BONK), Popcat (POPCAT), and Book of Meme (BOME), Solana eventually became the leading network for this cycle’s memecoins.
As more memecoins made their way to Solana, scammers also seized the opportunity to exploit unsuspecting investors. Their tactics range from rug pulling unwary investors to launching malicious extensions to cart away users’ funds.
In May, blockchain security firm SlowMist exposed a fraudulent Chrome extension Aggr that successfully stole millions of dollars worth of crypto despite boasting multiple positive reviews.
Conclusion
This isn’t the first incident in which a malicious browser extension targeted cryptocurrency users. Attackers in the cryptocurrency space have continued to evolve, using more sophisticated tactics designed to trick victims. That’s why we at Koyn continue to update you on Security tips on how to protect yourself and it’s quite imperative now to ensure that as chrome extensions are fast becoming popular.
Get Started with KOYN
Follow KOYN on X – x.com/usekoyn
Follow KOYN on Instagram – instagram.com/usekoyn
PRODUCT LINKS:
Playstore: https://play.google.com/store/apps/details?id=com.app.koyn
WEBSITE : https://www.getkoyn.com/ Help: https://help.getkoyn.com/en/
