The team of the anti-detect browser AdsPower reported a massive cyber attack. On January 24, during a security system check, it was discovered that hackers had altered some extensions (for example, MetaMask) into phishing versions. The developers immediately took measures and started an investigation, which is still ongoing.
“We have reported this incident to the Singapore authorities and received confirmation of the receipt of our report. We maintain communication with the Singapore Police Force and are assisting in their investigation. The AdsPower team has engaged external experts to support the investigation efforts, including SlowMist and CertiK, as well as leading technical consultants from Singapore. We have also contacted several projects and major trading platforms to inform them of this incident, and have submitted a risk report to the domain name administrator and cloud service provider for domains previously used for collecting malicious information,” — the message states.
According to estimates, hackers managed to steal over $3 million, mostly in Ethereum. This occurred through the theft of seed phrases. The phishing version of the MetaMask extension asked users to re-enter their mnemonic passphrase, after which the funds were stolen.
On the wallets of the criminals, there remains $396.6 thousand, $1 thousand, $116 and $685.
If you installed or updated the MetaMask extension from January 21 to January 24, immediately:
Source: AdsPower