In the last trading week, Solana users fell victim to a malicious Chrome extension. While using this extension, users can interact with Dapps as normal but end up transferring their holdings to some other wallet upon transaction completion.
A Solana-based decentralized aggregator Jupiter issued a red alert for the malicious Chrome extension named “Bull Checker.” Several subreddits associated with the well-known “Ethereum killer” have been deliberately targeted by the malicious extension.
With the collaboration of Offsidelabs, Jupiter was able to find the potential threats and analyze their seriousness. A Bull Checker is a simple, limited application by which you can view the holders of meme coins. This extension adds the possibility to changing all the data on your site after, or because of, a potential cause.
This permission is marked as a red alert as a normal extension did not require such type of permission. After installing the extension, it will wait for the user‘s interaction with their Dapps wallet. After the user has gone through it, the extension will amend their transaction, and the holding will be sent to another wallet ID.
Source: Google
At the start of 2024, Solana became more popular than other meme coins. The malicious extension specifically went after the Redditors, who were involved in the exchange of multiple cryptos.
While ‘BlueChecker’ seems to be fake, there could be other malicious add-ons still unknown to the public. They should avoid them, and delete any extensions they doubt, especially those that require permission to do lots of things on the browser.
A crypto analyst named SlowMist also posted on X, telling his audience about the potential threat, that can steal their assets. He further stated that these hackers had been planning this scam for 3 years and used influencers to promote the extension.
