According to The Hacker News, McAfee Labs has disclosed a cryptocurrency clipboard replacement attack campaign named Silent Swap. The attackers deploy a malicious Chromium browser extension disguised as "Google Notes" via an unsigned installer, which replaces the wallet address in the clipboard during user transactions, redirecting funds to attacker-controlled wallets. McAfee states that the campaign uses the EtherHiding technique to obtain command-and-control server information through the blockchain, affecting addresses such as BTC, ETH, BCH, XRP, DASH, and SOL. The infections are distributed globally, with a higher concentration of victims in India.

BTC3.79%
ETH3.66%
BCH8.44%
XRP2.54%
DASH2.54%
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • Comment
  • Repost
  • Share
Comment
Add a comment
Add a comment
No comments
  • Pinned