Ranking
Categories
Historical Snapshots
Token unlocks
Yield
Real-World Assets
Trending
Upcoming
Recently Added
Gainers & Losers
Most Visited
Community Sentiment
Chain Ranking
Crypto
Politics
Sports
Overall NFT Stats
Upcoming Sales
Market Overview
Spot Market
No. of Cryptocurrencies
Bitcoin Treasuries
BNB Treasuries
Fear and Greed Index
Altcoin Season Index
Market Cycle Indicators
Bitcoin Dominance
CoinMarketCap 20 Index
CoinMarketCap 100 Index
Crypto ETFs
Bitcoin ETFs
Ethereum ETFs
RSI
MACD
Overview
Liquidations
Funding Rates
Signals
Trending
New
Gainers
Meme Explorer
Top Traders
Spot
Derivatives
Spot
Derivatives
Feeds
Topics
Lives
Articles
Converter
Newsletter
CMC Launch
CMC Labs
Top Stories
Telegram Bot
Advertise
Crypto API
Site Widgets
News
Academy
Research
Videos
Glossary
Ask CMC AI
AI Alerts
Airdrops
Diamond Rewards
Learn & Earn
ICO Calendar
Events Calendar
#Firefox Hit by 40 Fake #Crypto Wallet Extensions Stealing User Credentials
Security researchers have identified over 40 fraudulent Firefox browser extensions designed to steal #cryptocurrency wallet credentials from users.
The malicious extensions impersonated legitimate tools from major crypto services including Coinbase, MetaMask, Trust Wallet, and Phantom.
After installation, these counterfeit extensions secretly collected sensitive wallet information, potentially exposing victims' crypto assets to theft.
The campaign has been active since at least April 2025, with new malicious extensions uploaded as recently as last week.
Many fake extensions featured hundreds of fake five-star reviews to gain user trust and appear legitimate.
Code comments and metadata suggest the operation may originate from a Russian-speaking threat actor group.
The ongoing nature of the uploads indicates the #cybersecurity threat remains active, persistent, and evolving, according to Koi Security.
