Security Firm: Malicious Chrome Extension 「Crypto Copilot」 Secretly Steals Funds from User's Solana Transactions

By: theblockbeats.news|2025/11/27 22:45:55

0

Share

copy

BlockBeats News, November 27th, according to Cointelegraph, cybersecurity firm Socket has discovered a malicious Chrome extension named "Crypto Copilot" that is surreptitiously siphoning funds from users' Solana transactions. This extension allows users to directly conduct Solana transactions from X social media platforms but injects additional instructions into each transaction, siphoning off at least 0.0013 SOL or 0.05% of the transaction amount.

Unlike typical wallet-draining malware, Crypto Copilot leverages the Raydium decentralized exchange to execute transactions while adding a second instruction to transfer SOL to the attacker's wallet, with the user interface only displaying a transaction summary, concealing the separate operation instruction. Since its release on June 18, 2024, the extension has only had 15 users. Socket has submitted a takedown request to the Chrome Web Store security team. Security experts remind users that the Chrome extension ecosystem has long been a prime target for cryptocurrency scams due to its large user base and extensible design.

-- Price

You may also like

The craziest Ethereum L2: L2 built by AI agents spontaneously organizing

The craziest Ethereum L2: L2 built by AI agents spontaneously organizing

This idea seems crazy, but it is not impossible.

Pantera Capital: How has Crypto as a Service affected us?

Pantera Capital: How has Crypto as a Service affected us?

If you are planning to start a business in 2026, my advice is simple: Instead of just talking about technology, focus more on how you can solve real-world problems.

Pantera Capital: What changes have we made when crypto is treated as a service?

Pantera Capital: What changes have we made when crypto is treated as a service?

If you are planning to start a business in 2026, my advice is simple: stop talking excessively about technology and focus more on the actual problems you can solve.

Wall Street Shorts ETH: Vitalik is aware and has front-run, while Tom Lee remains oblivious

Wall Street Shorts ETH: Vitalik is aware and has front-run, while Tom Lee remains oblivious

"The Ethereum token economic model has collapsed, wake up and see this clearly."

Social Capital CEO: How Equity Tokenization is Reshaping Capital Markets from US Stocks to SpaceX?

Social Capital CEO: How Equity Tokenization is Reshaping Capital Markets from US Stocks to SpaceX?

Equity tokens represent the next challenge: can tokenization expand from payments to ownership of financial assets?

CoinGecko Report: Surge of 346% vs Dip of 20.8%, The Wild Rise of DEX

CoinGecko Report: Surge of 346% vs Dip of 20.8%, The Wild Rise of DEX

A large-scale capital migration driven by platforms such as Hyperliquid towards decentralized infrastructure from centralization.

a16z: The Real Opportunity of Stablecoins Lies Not in Disruption but in Filling Gaps

a16z: The Real Opportunity of Stablecoins Lies Not in Disruption but in Filling Gaps

The opportunity for stablecoins lies with those merchants that have yet to emerge.

Mining Exodus: Someone Holds $12.8 Billion AI Order

Mining Exodus: Someone Holds $12.8 Billion AI Order

Mining Farms are Turning to AI Hashpower with no Turning Back.

March 6 Market Key Intelligence, How Much Did You Miss?

March 6 Market Key Intelligence, How Much Did You Miss?

1. On-chain Funds: $16.3M USD has flowed into the OP Mainnet today; $13.7M USD has flowed out of Arbitrum 2. Largest Price Swings: $XPT, $AIX 3. Top News: Vitalik Calls on Ethereum Community to Shift Mindset, Uphold Core Principles, and Rethink Application Design "From Scratch"

a16z: The True Opportunity of Stablecoins is in Complementing, Not Disrupting

a16z: The True Opportunity of Stablecoins is in Complementing, Not Disrupting

The stablecoin opportunity lies with those merchants yet to come onboard.

Predict LALIGA Matches, Shoot Daily & Win BTC, USDT and WXT on WEEX

Predict LALIGA Matches, Shoot Daily & Win BTC, USDT and WXT on WEEX

The WEEX × LALIGA campaign brought together football excitement and crypto participation through a dynamic interactive experience. During the event, users predicted matches, completed trading tasks, and took daily shots to compete for rewards including BTC, USDT, WXT, and exclusive prizes.

Ray Dalio Dialogue: Why I'm Betting on Gold and Not Bitcoin

Ray Dalio Dialogue: Why I'm Betting on Gold and Not Bitcoin

Gold is the only asset with a long-term history that can be transferred, is not easily replicable, and does not rely on anyone else's promise. Most currencies, debts, stocks, etc., are just promises of someone honoring their purchasing power.

Who Took the Money in the AI Era? A Must-See Investment Checklist for HALO Asset Trading

Who Took the Money in the AI Era? A Must-See Investment Checklist for HALO Asset Trading

A one-page paper listed a series of questions about the potential impact of AI progress. Looking back over two years later, these questions appear particularly prescient, although none of them provided a definitive answer at the time.

Wall Street Bears Target Ethereum: Vitalik In the Know Takes Flight, Tom Lee Remains Bullish

Wall Street Bears Target Ethereum: Vitalik In the Know Takes Flight, Tom Lee Remains Bullish

「The Ethereum Tokenomics Has Collapsed, Wake Up and Realize It」

Pump.fun Hacker Steals $2 Million, Receives 6-Year Prison Sentence, Opts for 'Self-Detonation'

Pump.fun Hacker Steals $2 Million, Receives 6-Year Prison Sentence, Opts for 'Self-Detonation'

Life of Talent, Paranoia, and Setbacks

6% Annual Percentage Yield as Musk Declares War on Traditional Banks

6% Annual Percentage Yield as Musk Declares War on Traditional Banks

A black metal card, 600x rate delta.

36 years, 4 wars, 1 script: How does capital price the world in conflict?

36 years, 4 wars, 1 script: How does capital price the world in conflict?

When the cannon fires, 10,000 ounces of gold. In a turbulent era, the wealth choice of the common people.

Mining Companies' Great Migration: Some Have Already Secured $12.8 Billion in AI Orders

Mining Companies' Great Migration: Some Have Already Secured $12.8 Billion in AI Orders

Mining companies turn to AI computing power, with no turning back.

The craziest Ethereum L2: L2 built by AI agents spontaneously organizing

This idea seems crazy, but it is not impossible.

Pantera Capital: How has Crypto as a Service affected us?

If you are planning to start a business in 2026, my advice is simple: Instead of just talking about technology, focus more on how you can solve real-world problems.

Pantera Capital: What changes have we made when crypto is treated as a service?

If you are planning to start a business in 2026, my advice is simple: stop talking excessively about technology and focus more on the actual problems you can solve.

Wall Street Shorts ETH: Vitalik is aware and has front-run, while Tom Lee remains oblivious

"The Ethereum token economic model has collapsed, wake up and see this clearly."

Social Capital CEO: How Equity Tokenization is Reshaping Capital Markets from US Stocks to SpaceX?

Equity tokens represent the next challenge: can tokenization expand from payments to ownership of financial assets?

CoinGecko Report: Surge of 346% vs Dip of 20.8%, The Wild Rise of DEX

A large-scale capital migration driven by platforms such as Hyperliquid towards decentralized infrastructure from centralization.

Popular coins

Latest Crypto News

17:43

Mysten Labs CEO: The bear market is not "great," packaging it as a positive ignores the real costs

The CEO of Mysten Labs, evan.sui, stated in a recent interview that he does not agree with the notion of "bear markets are great, keep building." In fact, bear markets are not "great" and are not worth celebrating or boasting about. The volatility does not merely "cleanse the market," but can scare ...

17:43

OpenClaw founder: Never used Weibo, the so-called official account is not controlled by me

Regarding the question "Are you aware that OpenClaw has opened an official Weibo account," OpenClaw founder Peter Steinberger responded on the X platform, stating that he has never used Weibo and that the so-called "official Weibo" is not under his control.

17:43

Trump leads the U.S. regulatory bypass of the Basel Accord to develop tokenized securities, benefiting large financial institutions

According to Forbes, U.S. financial regulators under Trump's leadership believe it is unnecessary to comply with the Basel Accords' treatment of crypto assets and should instead provide a technology-neutral regulatory strategy for tokenized assets. Therefore, they are bypassing the Basel Accords to ...

17:43

Data: In the past 24 hours, the total liquidation across the network was 144 million USD, with long positions liquidated at 121 million USD and short positions liquidated at 23.0601 million USD

According to Coinglass data, in the past 24 hours, the total liquidation across the network was $144 million, with long positions liquidated at $121 million and short positions liquidated at $23.0601 million. Among them, Bitcoin long positions were liquidated at $48.4602 million, Bitcoin short posit...

17:43

A mainland businessman was illegally detained and extorted in Hong Kong, suffering losses of over 6 million Hong Kong dollars in cryptocurrency and silver

According to TVB News, a 25-year-old businessman from the mainland reported that he was illegally confined and extorted by four mainland men at a hotel in Hung Hom, Hong Kong. The suspects beat the victim and forced him to provide his electronic currency password, subsequently transferring approxima...