Fake OKX Extensions Found in Firefox: A Rising Crypto Threat

OKX Warns of Malicious Browser Extensions

Crypto exchange OKX has alerted users about fraudulent browser extensions masquerading as legitimate OKX plugins in the Firefox browser store. These fake extensions could potentially steal sensitive information and drain funds from connected wallets.

The fraudulent plugin. Source: OKX

According to OKX, the company has not released any Firefox plugins, and users who have downloaded the fraudulent extensions are advised to immediately transfer funds from any linked wallets. OKX has contacted Firefox to remove the malicious applications and reiterated that users should only download official software from trusted sources.

Malicious Browser Extensions: A Growing Threat

Cybersecurity firm CertiK highlighted the increasing threat posed by phishing scams and fake extensions. Phishing has been a major factor in crypto-related losses, with sophisticated tactics targeting unsuspecting users.

CertiK’s “Hack3d: The Web3 Security Report 2024” revealed that phishing scams were responsible for over $1 billion in losses across 296 campaigns in 2024, marking a 21% increase compared to 2023.

Related Cybersecurity Incidents in 2024

SpyAgent Malware on Android

In September 2024, cybersecurity researchers at McAfee uncovered SpyAgent, malware disguised as legitimate Android apps. This malicious software, found in over 280 fake applications, uses optical character recognition (OCR) to extract sensitive information, including cryptocurrency private keys, from images stored on a device.

SpyAgent spread through phishing links sent via text messages, bypassing Google Play Store’s security protocols.

Decentraland Phishing Attack

On September 19, 2024, hackers breached Decentraland’s X (formerly Twitter) account and posted phishing links promoting a fake MANA token airdrop. Users who clicked the links and connected their wallets had their funds stolen.