크롬 악성 확장프로그램(암호화폐 사용자)

암호화폐사용자(Ledger, Trezor, MEW, Metamask  등) 대상 정보를 유출하는

크롬 악성 확장프로그램이 발견되었다

 

https://youtu.be/kRoDFPu27cw

 

https://medium.com/mycrypto/discovering-fake-browser-extensions-that-target-users-of-ledger-trezor-mew-metamask-and-more-e281a2b80ff9

Discovering Fake Browser Extensions That Target Users of Ledger, Trezor, MEW, Metamask, and More

링크의 글에 보면 

악성 확장 프로그램의 ID가 있다

afephhbbcdlgdehhddfnehfndnkfbgnm agfjbfkpehcnceblmdahjaejpnnnkjdn ahikdohkiedoomaklnohgdnmfcmbabcn ahlfiinafajfmciaajgophipcfholmeh akglkgdiggmkilkhejagginkngocbpbj anihmmejabpaocacmeodiapbhpholaom bhkcgfbaokmhglgipbppoobmoblcomhh bkanfnnhokogflpnhnbfjdhbjdlgncdi bpfdhglfmfepjhgnhnmclbfiknjnfblb bpklfenmjhcjlocdicfadpfppcgojfjp ckelhijilmmlmnaljmjpigfopkmfkoeh dbcfhcelmjepboabieglhjejeolaopdl dbcfokmgampdedgcefjahloodbgakkpl ddohdfnenhipnhnbbfifknnhaomihcip dehindejipifeaikcgbkdijgkbjliojc dkhcmjfipgoapjamnngolidbcakpdhgf effhjobodhmkbgfpgcdabfnjlnphakhb egpnofbhgafhbkapdhedimohmainbiio ehlgimmlmmcocemjadeafmohiplmgmei epphnioigompfjaknnaokghgcncnjfbe gbbpilgcdcmfppjkdociebhmcnbfbmod glmbceclkhkaebcadgmbcjihllcnpmjh gpffceikmehgifkjjginoibpceadefih idnelecdpebmbpnmambnpcjogingdfco ifceimlckdanenfkfoomccpcpemphlbg ifmkfoeijeemajoodjfoagpbejmmnkhm igkljanmhbnhedgkmgpkcgpjmociceim ijhakgidfnlallpobldpbhandllbeobg ijohicfhndicpnmkaldafhbecijhdikd jbfponbaiamgjmfpfghcjjhddjdjdpna jfamimfejiccpbnghhjfcibhkgblmiml jlaaidmjgpgfkhehcljmeckhlaibgaol kjnmimfgphmcppjhombdhhegpjphpiol lfaahmcgahoalphllknbfcckggddoffj mcbcknmlpfkbpogpnfcimfgdmchchmmg mciddpldhpdpibckghnaoidpolnmighk mjbimaghobnkobfefccnnnjedoefbafl mnbhnjecaofgddbldmppbbdlokappkgk nicmhgecboifljcnbbjlajbpagmhcclp njhfmnfcoffkdjbgpannpgifnbgdihkl noilkpnilphojpjaimfcnldblelgllaa obcfoaeoidokjbaokikamaljjlpebofe oejafikjmfmejaafjjkoeejjpdfkdkpc ogaclpidpghafcnbchgpbigfegdbdikj opmelhjohnmenjibglddlpmbpbocohck pbilbjpkfbfbackdcejdmhdfgeldakkn pcmdfnnipgpilomfclbnjpbdnmbcgjaf pedokobimilhjemibclahcelgedmkgei plnlhldekkpgnngfdbdhocnjfplgnekg

https://chrome.google.com/webstore/detail/ 

뒤에 ID를 붙이면 확장프로그램을 볼 수 있다

물론 이제 대부분 웹스토어에서 사라졌다