A cybercrime group known as GreedyBear has been accused of stealing over a million dollars in cryptocurrency, according to cybersecurity researchers. Koi Security discovered this attack using malicious browser extensions that exploit user credentials for accessing crypto wallets. These techniques highlight a shift from traditional protocols to credential theft targeting private keys. The stolen funds impacted Ethereum (ETH), TRON (TRX), and various ERC-20 tokens commonly held within popular wallet applications like MetaMask. While no significant impact was reported on institutional holdings or major DeFi platforms, the attack caused financial hardship for individual users who used vulnerable wallets. GreedyBear’s strategy involved deploying over 650 malicious tools designed to deceive users into sharing their credentials. Koi Security suggests this marks a potential escalation in cybercrime technology due to groups utilizing AI-powered tools for generating complex attacks. This incident underscores the need for developers to prioritize extension security and user awareness in combating future threats.
The report emphasizes that The CCPress provides information only and shouldn’t be considered financial advice. Cryptocurrency investments come with significant risks. Before making any investment decisions, consult a qualified financial advisor.