Fake OKX plugins have been found on the Firefox browser store

Crypto exchange OKX has warned users of a fake OKX browser extension that appeared on the Firefox browser plugin store. Extensions integrate third-party functionality into the web browser interface.

According to OKX, the company has not released any Firefox browser plug-ins and advised users who mistakenly downloaded the plug-in to transfer any funds associated with the fraudulent extension to their wallets.

OKX contacted Firefox to remove the application and urged users to never download OKX-specific software from third parties.

Malicious browser extensions can be used to steal sensitive information and money. Phishing scams They were the main causes of crypto losses in 2024, according to CertiK.

User beware: Phishing is getting more and more sophisticated.

CertiK recently published Hack3d: The Web3 Security Report 2024 – which lists the most significant cyber security threats to digital assets in 2024.

According to the report, phishing scams across 296 attack campaigns collectively cost renters more than $1 billion in 2024 — a 21 percent year-over-year increase from 2023.

In September 2024, researchers at the McAfee cybersecurity firm discovered a type of malware called SpyAgent on Android smartphones.

The cyber security firm found the malware in more than 280 fake Android apps that cleverly appear to be legitimate.

Related: Virtual Protocol Discord Server Hacked, Fake Google Links Posted

SpyAgent uses optical character recognition to scan images stored on the device's memory and extract sensitive information such as cryptocurrency price keys stored in the images. (OCR) is used.

The researchers also found that the malware was distributed via text message links, prompting users to download the malicious application – allowing the fraudsters to bypass security controls on the Google App Store.

Decentraland – a 3D virtual reality converter built on the Ethereum network – hacked X's social media page on September 19, 2024.

Hackers used the hacked page to promote phishing links to followers promoting a fake Minaa token, which is a cryptocurrency native to Decentraland.

Any user who clicks on the link and connects their wallet to participate in the weather will have their money released by the malware.

Magazine: Fake Rabi Wallet Scam Linked to Dubai Crypto CEO and Many Other Victims