It steals assets right during the swaps — and is still hanging in the Chrome Store
The company Socket detected a dangerous browser extension for Google Chrome called Crypto Copilot.
Outside — "convenient Solana trading right in Twitter."
Inside — a quiet but extremely cunning thief.
🔥 How the attack works
The user makes a regular swap on the Solana network, while the extension stealthily adds a hidden transaction that siphons off part of the funds to the fraudsters' wallets.
A person thinks everything went smoothly — but the portfolio is slowly 'melting'.
⚠️ The main problem
Crypto Copilot is still available in the Chrome Web Store.
There are currently few installations, but the risk is maximum because the malware is disguised as a useful tool.
🛡 How to protect yourself
do not install any 'wonder extensions' for working with crypto
check each transaction before confirmation
keep large sums only in cold wallets
if Crypto Copilot is already installed — remove it immediately
after removal, perform a security check on the device
#solana #security #Cryptoscam #web3
If useful — I would appreciate your subscription ❤️
