Security researchers uncover network of malicious Firefox extensions

[harlan4096]

Security researchers at Zen Security have uncovered a malicious campaign targeting Firefox users through extensions. Firefox, like its Chromium-based counterparts, supports browser extension. These enable users to change functionality of the browser or the sites they visit.

Popular options include content blockers, video downloaders, or extensions that list coupons. Extensions uploaded to the Mozilla Store have to pass a series of tests designed to ensure that they are not malicious or problematic in other regards.

Only some extensions are reviewed manually by Mozilla, but that is still better than Google's "only automatic" handling of extension checks when they are uploaded to the official Store.

The malware campaign in question used extensions to "impersonate legitimate wallet tools" from platforms such as Coinbase, MetaMask, Trust Wallet, or MyMonera according to Koi Security. Their main purpose was to steal wallet secrets, which put the assets of the user under immediate risk.

Continue Reading...