QuickLens Chrome Extension Steals Crypto in ClickFix Attack
A routine browser update can quickly turn into a security disaster. That is exactly what happened when the QuickLens Chrome extension received a malicious update that transformed it into a crypto-stealing tool. The QuickLens Chrome extension originally offered Google Lens-style search features and gained around 7,000 users in the Chrome Web Store. After a change in ownership, version 5.8 introduced
Grubhub Crypto Scam Targets Users With Fake Email Promises
Cybercriminals are exploiting trust in well-known brands to push a new cryptocurrency scam that promises unrealistic profits. The Grubhub crypto scam uses fake promotional emails that claim users can receive a tenfold return by sending cryptocurrency to a provided wallet address. The campaign relies on urgency, familiarity, and false legitimacy to convince victims to act quickly. Unlike typical phishing emails
Cursor IDE Crypto Theft: Dev Loses $500K to Malicious Extension
The Cursor IDE crypto theft incident has sent shockwaves through the developer community. A Russian blockchain developer recently lost around $500,000 in cryptocurrency. The loss stemmed from installing what appeared to be a helpful extension for smart contract development. Instead, the extension served as a backdoor for attackers. This breach took place in June 2025. The developer was using Cursor,
Fake Solana Bot on GitHub Steals Users’ Crypto Wallets
A new cybersecurity threat is targeting crypto enthusiasts using Solana's trading ecosystem. Security researchers from SlowMist have uncovered a malicious GitHub repository posing as a legitimate trading bot for Solana's popular Pump.fun platform. Instead of helping users make trades, the malware embedded in this fake Solana bot steals sensitive wallet information. The Scam: Malicious GitHub Repository The fraudulent repository, named
Fake Crypto Wallet Extensions Flood Firefox Store
A recent surge of malicious browser extensions targeting cryptocurrency users has been uncovered in the Firefox Add-ons Store, putting unsuspecting users at risk of devastating financial losses. Cybersecurity researchers have identified over 40 fake wallet extensions impersonating popular crypto wallets, including MetaMask, Coinbase Wallet, Trust Wallet, Phantom, Exodus, OKX, Keplr, and MyMonero. This malicious campaign, dubbed "FoxyWallet," has been active
Rare Werewolf Targets Russian Devices for Crypto Mining
A stealthy cyber campaign called Rare Werewolf is silently siphoning computing power, and sensitive data from hundreds of devices across Russia. First observed in December 2024, this ongoing operation is targeting industrial organizations and engineering schools, with victims also reported in Belarus and Kazakhstan. Unlike the flashy ransomware attacks that dominate headlines, Rare Werewolf keeps a low profile. By blending
