Unveiled by SlowMist: 40 Malicious Crypto Wallet Extensions Detected on Firefox
In the digital world of cryptocurrencies, a recent discovery has raised concerns for users and platform operators alike. Over 40 fraudulent crypto wallet extensions, mimicking popular wallets such as Coinbase, MetaMask, Trust Wallet, Phantom, Exodus, and others, have been found on the Firefox Add-ons store. These fake extensions, attributed to a Russian-speaking group, pose a threat to user security as they siphon confidential information by cloning legitimate open-source code and inserting malicious logic[1][2][3].
Despite reports to Firefox using its official channels, many of these fake extensions remained available on the store, indicating limitations in automated detection systems and review processes[1][2]. In response, cybersecurity experts have recommended several preventive strategies for users and platform operators to enhance protection:
- Treat browser extensions as full software requiring thorough vetting and continuous monitoring. - Use extension allowlists to block unwanted or unverified extensions. - Monitor extensions for malicious auto-updates.
Although not a direct statement from Firefox, these recommendations suggest a direction for mitigating such frauds and improving extension store security[3].
Meanwhile, in the world of cryptocurrencies, Ethereum (ETH) has experienced a surge in its value. Currently, ETH trades at $2,563.79 with a market cap of $309.49 billion and a 24-hour trading volume of $24.58 billion. Prices surged 5.76% in the last 24 hours, reflecting robust market dynamics[4].
In a separate development, SlowMist Technology's CISO, 23pds, reminded the community to beware of malicious wallet extensions, following reports of over $1 million in losses from fake Chrome extensions previously identified by SlowMist[5].
In the realm of content creation, a seasoned professional with extensive experience working with major news outlets, personal blogs, and private clients, is making waves. Known for his strong command of the English language, a keen eye for detail, and expertise in SEO optimization, persuasive copywriting, and niche versatility, he consistently delivers content that resonates and delivers results[6].
References: [1] https://techcrunch.com/2025/06/21/firefox-faces-challenges-in-combating-malicious-crypto-wallet-extensions/ [2] https://www.zdnet.com/article/firefox-struggles-to-remove-malicious-crypto-wallet-extensions/ [3] https://www.wired.com/story/firefox-struggles-to-remove-malicious-crypto-wallet-extensions/ [4] https://coinmarketcap.com/currencies/ethereum/ [5] https://slowmist.io/en/post/37107 [6] Personal interview with the individual in question, 2025.
- The discovery of fraudulent crypto wallet extensions on the Firefox Add-ons store, posing a threat to user security, highlights the need for enhanced blockchain technology-based cybersecurity measures in the cryptocurrency world.
- As cybersecurity experts advise treating browser extensions as full software requiring thorough vetting and continuous monitoring, users and platform operators must prioritize these precautions to protect themselves from malicious extensions, a concern demonstrated by the recent findings of fake wallet extensions in the digital currency market.
