According to The Hacker News, McAfee Labs has disclosed a cryptocurrency clipboard replacement attack campaign named Silent Swap. The attackers deploy a malicious Chromium browser extension disguised as "Google Notes" via unsigned installers, replacing the wallet address in the clipboard during user transactions to divert funds to wallets controlled by the attackers. McAfee stated that the campaign uses EtherHiding technology to obtain command and control server information through the blockchain, affecting addresses such as BTC, ETH, BCH, XRP, DASH, and SOL. The infections are distributed globally, with a higher concentration of victims in India.

BTC2.08%
ETH1.74%
BCH6.49%
XRP1.01%
DASH2.44%
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • 3
  • Repost
  • Share
Comment
Add a comment
Add a comment
SushiRebalance
· 10h ago
Before every transfer, I make it a habit to check the first and last three digits—this habit has saved me before.
View OriginalReply0
MarginMarmot
· 10h ago
Is the high infection rate in India due to the chaotic software download channels?
View OriginalReply0
NightFlightMint
· 10h ago
Clipboard attacks are truly hard to guard against; when using a hardware wallet to copy an address, you have to double-check it repeatedly.
View OriginalReply0
  • Pinned