OKX warned users about fake plugins on Firefox, advising immediate fund transfers for affected wallets. The exchange confirmed it has no official Firefox plugins and urged caution against third-party downloads.
OKX has warned people about fake OKX browser extensions that have shown up in the Firefox plugin shop. Add-ons called extensions let you use third-party features in your computer browser.
OKX says that the company has not released any Firefox browser plugins and has told people who got the plugin by accident to move any money in wallets linked to the fake extension.
OKX asked Firefox to get rid of the add-ons and told users not to get OKX-specific software from outside sources.
Browser add-ons that are malicious can be used to steal private data and money. CertiK says that phishing scams were one of the main reasons people lost crypto in 2024.
Hack3d: The Web3 Security Report 2024, which was just released by CertiK, lists the biggest cyber risks to digital assets in 2024.
The study says that phishing scams in 296 attack campaigns caused crypto users to lose more than $1 billion in 2024, which is 21% more than the previous year.
Researchers at the cybersecurity company McAfee found a type of malware called SpyAgent that affects Android phones in September 2024.
Researchers from a cybersecurity company found malware in over 280 fake Android apps that looked like they were real.
Optical character recognition (OCR) lets SpyAgent look through images saved on a device’s memory and get secret keys for cryptocurrencies and other sensitive data that is hidden in them.
Researchers also said that the malware spread through text message links that told people to download harmful apps. This way, the scammers were able to get around Google’s app store’s security measures.
Decentraland is a 3D virtual reality metaverse that was built on the Ethereum network. On September 19, 2024, someone broke into its X social media page.
Hackers took over the page and used it to send fans phishing links and fake news about an airdrop of MANA tokens, which are Decentraland’s own cryptocurrency.
The malware would take the money from anyone who clicked on the link to join the airdrop and linked their wallets.
