Tomcat
Professional
- Messages
- 2,695
- Reaction score
- 1,060
- Points
- 113
The crypto exchange has failed another client and continues to ignore the problem.
In China, a hacker used a malicious Chrome extension to gain access to a user's Binance account and secretly steal $ 1 million worth of cryptocurrency. The victim told his story under the nickname Nakamao on the X platform.
The hacker used an extension called Aggr to intercept Binance session cookies, which allowed him to log in without entering a password and two-factor authentication. Nakamao became suspicious when he went to the platform to check the bitcoin exchange rate, and noticed suspicious trading activity in his account.
A feature of the hacker's method was as follows: he sold overvalued tokens from an account he controlled, buying them with Nakamao funds, and then sold these tokens at the market price, making a profit. Thus, his machinations did not arouse any suspicions from the service's security system.
After discovering the theft, Nakamao contacted Binance support, but did not receive the necessary assistance. Then he decided to ask for help from independent consultants, who found out that the attacker used the Aggr extension installed on the recommendation of a cryptocurrency influencer. During the investigation, it also became known that Binance already knew about the existence of this malware, since it was previously used to hack another account on the platform.
Nakamao expressed dissatisfaction with the service's security system. He is particularly outraged by the fact that after the first incident involving the same hacker, the company did not take proper measures.
"If the hacker had just withdrawn the funds, I would have accepted it, but his manipulation of cross-trading and Binance's subsequent actions are unacceptable. Moreover, Binance has been monitoring the actions of the criminal for a long time and is studying the expansion, but this does not lead to anything," Nakamao shared.
When Nakamao's post began to spread around the network, Binance also released a statement on Twitter . The company stressed that the platform itself was not hacked, and urged users to avoid installing suspicious browser extensions: "Despite the fact that the Binance platform was not hacked, we want the community to remain vigilant. Avoid installing browser extensions, as they can steal your data and compromise the security of your account."
Recent research has shown that creating malicious Chrome apps that steal users ' cookies is a fairly simple process. Even if you are not a programmer, you can write code for such a program, for example, using ChatGPT.
In China, a hacker used a malicious Chrome extension to gain access to a user's Binance account and secretly steal $ 1 million worth of cryptocurrency. The victim told his story under the nickname Nakamao on the X platform.
The hacker used an extension called Aggr to intercept Binance session cookies, which allowed him to log in without entering a password and two-factor authentication. Nakamao became suspicious when he went to the platform to check the bitcoin exchange rate, and noticed suspicious trading activity in his account.
A feature of the hacker's method was as follows: he sold overvalued tokens from an account he controlled, buying them with Nakamao funds, and then sold these tokens at the market price, making a profit. Thus, his machinations did not arouse any suspicions from the service's security system.
After discovering the theft, Nakamao contacted Binance support, but did not receive the necessary assistance. Then he decided to ask for help from independent consultants, who found out that the attacker used the Aggr extension installed on the recommendation of a cryptocurrency influencer. During the investigation, it also became known that Binance already knew about the existence of this malware, since it was previously used to hack another account on the platform.
Nakamao expressed dissatisfaction with the service's security system. He is particularly outraged by the fact that after the first incident involving the same hacker, the company did not take proper measures.
"If the hacker had just withdrawn the funds, I would have accepted it, but his manipulation of cross-trading and Binance's subsequent actions are unacceptable. Moreover, Binance has been monitoring the actions of the criminal for a long time and is studying the expansion, but this does not lead to anything," Nakamao shared.
When Nakamao's post began to spread around the network, Binance also released a statement on Twitter . The company stressed that the platform itself was not hacked, and urged users to avoid installing suspicious browser extensions: "Despite the fact that the Binance platform was not hacked, we want the community to remain vigilant. Avoid installing browser extensions, as they can steal your data and compromise the security of your account."
Recent research has shown that creating malicious Chrome apps that steal users ' cookies is a fairly simple process. Even if you are not a programmer, you can write code for such a program, for example, using ChatGPT.
