Google hosted advertisements that promoted airdrop, distributing tokens for the one of the most popular cryptocurrency exchange Huobi. Beware of the malicious scam, users who click the link might get in to trouble and the App will steal all the wallet coins.
Harry Denley, Security researcher who has a popular anti-phishing database EtherscamDB, has discovered a phishing campaign. The malicious app fools users into downloading a chrome extension that is programmed to get all the confidential information including wallet private keys and password.
The malicious app has Chrome extension – called NoCoin – was camouflaged as an app to obstruct secret cryptocurrency mining (also known as crypto-jacking). The extension looks much identical to popular crypto-jacking blocker, MinerBlock.
The malicious hackers have built a fake ERC20 token named after the well trusted exchange Huobi. When the users download the infected extension the hackers will steal the coins of the users.
The tokens were distributed through the website. The platform invited visitors to download the malicious app despite the claims as an airdrop platform. The hacker mainly targets the users of wallet solutions MyEtherWallet and Blockchain.com once uses install it on their system.
So far the malicious extension has been downloaded by almost 230 users according to the reports provided by Denley. Google has taken strict action against the hackers and removed it from the Chrome Web Store.
This is not the first time hackers have targeted to sneak into Google’s security mechanism. Last year researchers from Hard Fork discovered Google hosted a massive amount of cryptocurrency malware on its Android software Application distribution platform Google Play. The malware is dubbed as MetaMask.
According to researchers from IT security company Eset, the app mimiced a browser-based service programmed to run decentralized Ehtereum apps without running a full Ethereum node. The service was available only for desktop browsers like Firefox and Chrome.