Buy CryptoMarketsSpotFuturesGOLDEarnEvent Center
More
Gold vs Crypto
PANews reported on November 28th that, according to Cointelegraph, cybersecurity company Socket disclosed in a report released Tuesday that a malicious Google Chrome browser extension called Crypto Copilot allows users to trade on the Solana blockchain via X social media feeds while secretly extracting a fee from each transaction and transferring it to the creator's wallet. When the extension uses the decentralized exchange Raydium to perform exchanges for users, it attaches a hidden transfer instruction to transfer Solana coins from the user's account to the attacker's account. Unlike typical malware that attempts to steal the entire wallet balance, this extension extracts at least 0.0013 Solana coins (approximately 0.05% of the transaction amount) per transaction. The user interface only displays the transaction details, and the wallet confirmation interface only summarizes the transaction without displaying specific instructions, causing users to seemingly only sign one transaction while actually authorizing both an exchange and a fund transfer. Although the extension has only accumulated 15 users since its release on June 18, 2024, it still exposes security vulnerabilities in the browser extension ecosystem.PANews reported on November 28th that, according to Cointelegraph, cybersecurity company Socket disclosed in a report released Tuesday that a malicious Google Chrome browser extension called Crypto Copilot allows users to trade on the Solana blockchain via X social media feeds while secretly extracting a fee from each transaction and transferring it to the creator's wallet. When the extension uses the decentralized exchange Raydium to perform exchanges for users, it attaches a hidden transfer instruction to transfer Solana coins from the user's account to the attacker's account. Unlike typical malware that attempts to steal the entire wallet balance, this extension extracts at least 0.0013 Solana coins (approximately 0.05% of the transaction amount) per transaction. The user interface only displays the transaction details, and the wallet confirmation interface only summarizes the transaction without displaying specific instructions, causing users to seemingly only sign one transaction while actually authorizing both an exchange and a fund transfer. Although the extension has only accumulated 15 users since its release on June 18, 2024, it still exposes security vulnerabilities in the browser extension ecosystem.

The malicious Google Chrome extension "Crypto Copilot" steals Solana redemption funds by hiding extra transfers.

Author: PANews
Source: PANews
2025/11/28 08:07
1 min read
Polytrade
TRADE$0.04078-3.36%
Octavia
VIA$0.0022471+7.00%
Ambire Wallet
WALLET$0.01001+1.21%
Sign
SIGN$0.05457+2.98%
For feedback or concerns regarding this content, please contact us at crypto.news@mexc.com

PANews reported on November 28th that, according to Cointelegraph, cybersecurity company Socket disclosed in a report released Tuesday that a malicious Google Chrome browser extension called Crypto Copilot allows users to trade on the Solana blockchain via X social media feeds while secretly extracting a fee from each transaction and transferring it to the creator's wallet. When the extension uses the decentralized exchange Raydium to perform exchanges for users, it attaches a hidden transfer instruction to transfer Solana coins from the user's account to the attacker's account. Unlike typical malware that attempts to steal the entire wallet balance, this extension extracts at least 0.0013 Solana coins (approximately 0.05% of the transaction amount) per transaction. The user interface only displays the transaction details, and the wallet confirmation interface only summarizes the transaction without displaying specific instructions, causing users to seemingly only sign one transaction while actually authorizing both an exchange and a fund transfer. Although the extension has only accumulated 15 users since its release on June 18, 2024, it still exposes security vulnerabilities in the browser extension ecosystem.

Market Opportunity
Polytrade Logo
Polytrade Price(TRADE)
$0.04069
$0.04069$0.04069
-0.09%
USD
Polytrade (TRADE) Live Price Chart
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact crypto.news@mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.

You May Also Like

Husky Inu (HINU) Completes Move To $0.00020688

Husky Inu (HINU) Completes Move To $0.00020688

Husky Inu (HINU) has completed its latest price jump, rising from $0.00020628 to $0.00020688. The price jump is part of the project’s pre-launch phase, which began on April 1, 2025.
Share
Cryptodaily2025/09/18 01:10
Trump 'boxed himself into a corner' — and was forced to back down on Iran threats

Trump 'boxed himself into a corner' — and was forced to back down on Iran threats

A CNN reporter explained that President Donald Trump has boxed himself into a corner when it comes to Iran.Trump spoke to reporters on the tarmac of the Palm Beach
Share
Alternet2026/03/23 23:03
US Lawmakers Move to Ban Sports Betting on Prediction Markets

US Lawmakers Move to Ban Sports Betting on Prediction Markets

A growing clash between federal regulators and state authorities is shaking the future of prediction markets in the United States. US Lawmakers are now preparing
Share
Coinfomania2026/03/23 23:42