{"id":17678,"date":"2024-08-20T15:10:12","date_gmt":"2024-08-20T15:10:12","guid":{"rendered":"https:\/\/www.bitrabo.com\/discover\/?p=17678"},"modified":"2024-08-20T15:10:12","modified_gmt":"2024-08-20T15:10:12","slug":"warning-to-solana-users-avoid-the-use-of-a-specific-chrome-extension","status":"publish","type":"post","link":"https:\/\/www.bitrabo.com\/discover\/warning-to-solana-users-avoid-the-use-of-a-specific-chrome-extension\/","title":{"rendered":"Warning to Solana Users: Avoid the Use of a Specific Chrome Extension"},"content":{"rendered":"\n<p>A crucial alert has been issued to users of Solana-based decentralized finance (DeFi) platforms regarding a harmful Chrome extension named \u201cBull Checker.\u201d This notice was raised by Jupiter, a prominent decentralized exchange aggregator on the Solana blockchain, after collaborating with cybersecurity experts and the community.<\/p>\n<h2>Alert for Solana Community<\/h2>\n<p>Jupiter\u2019s research team, alongside Offside Labs and community moderators, discovered that \u201cBull Checker\u201d was responsible for unauthorized transfers of tokens from user wallets. The team investigated reports of unusual token drains and found that the Chrome extension, purportedly designed to show memecoin holders, was altering transaction data instead.<\/p>\n<p>The extension behaves by intercepting interactions with legitimate dApps on the official domain and modifying the transaction data sent to wallets for signature. Despite appearing normal in simulations, the transactions are tampered with to send tokens to an attacker\u2019s wallet. The extension embeds undetectable malicious code during standard transaction simulations, making it particularly deceitful.<\/p>\n<p>After a technical assessment, it became evident that the mechanisms used by \u201cBull Checker\u201d were sophisticated. The extension could swap the wallet adapter\u2019s signing method with its own, sending transactions to a remote server for manipulation before user approval. This was confirmed by scrutinizing specific transaction instances where malicious instructions altered routine transactions, leading to unauthorized token transfers.<\/p>\n<p>The malicious extension\u2019s process involved monitoring the victim\u2019s SOL balance during simulation, executing covert transactions, and obscuring unauthorized activities. Despite initial promotions by an anonymous Reddit account targeting memecoin traders, the extension managed to infiltrate numerous users\u2019 devices.<\/p>\n<p>The investigation unveiled the potential existence of other harmful extensions with comparable functions, stressing the importance of cautious extension usage. Blowfish\u2019s new security feature, SafeGuard, aids in preventing simulation spoofing attacks and is being embraced by multiple Solana wallets, adding a layer of protection against such exploits.<\/p>\n<p>Currently, Solana is trading at $146.67.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A crucial alert has been issued to users of Solana-based decentralized finance (DeFi) platforms regarding a harmful Chrome extension named \u201cBull Checker.\u201d This notice was raised by Jupiter, a prominent decentralized exchange aggregator on the Solana blockchain, after collaborating with cybersecurity experts and the community. Alert for Solana Community Jupiter\u2019s research team, alongside Offside Labs [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":17679,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"slim_seo":{"title":"Warning to Solana Users: Avoid the Use of a Specific Chrome Extension - Bitrabo","description":"A crucial alert has been issued to users of Solana-based decentralized finance (DeFi) platforms regarding a harmful Chrome extension named \"Bull Checker.\" This"},"footnotes":""},"categories":[316],"tags":[2167,4566,7428,3427,7427,650,1213,732],"class_list":["post-17678","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-crypto-news","tag-alert","tag-chrome","tag-chrome-extension","tag-dont","tag-extension","tag-security","tag-solana","tag-users"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts\/17678","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/comments?post=17678"}],"version-history":[{"count":0,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts\/17678\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/media\/17679"}],"wp:attachment":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/media?parent=17678"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/categories?post=17678"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/tags?post=17678"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}