Connect with us

Hi, what are you looking for?

malicious bull checker extension - chrome
malicious bull checker extension - chrome

Knowledge

The Sneaky Chrome add-on “Bull Checker” is a clever scam that targets Solana users

We have found a fake Chrome application called “Bull Checker” that targets Solana users by pretending to be a meme coin tracker. Unauthorized cash drains have happened because the extension has gotten around monitoring systems. Users should get rid of the app right away to protect their money.

Chrome application “Bull Checker,” which was just found, is a major danger to Solana users. This malicious application drains several wallets by pretending to be a tool for tracking meme coin users and getting around normal detection systems.

A decentralized trade broker called Jupiter found this threat and sent out a warning on August 20th. Under the fake name Meow, the founder said that Reddit had promoted the “Bull Checker” app, which was aimed directly at Solana users. It looked like a harmless extension, but it was actually made to steal money by changing activities that happen when users interact with decentralized apps (dApps).

After being downloaded, “Bull Checker” would wait for users to interact with a real dApp. At this point, “Bull Checker” would change the transaction before sending it to the bank to be signed. Even though the changed transaction would still pass simulation checks and look like it was supposed to be normal, its real purpose was to steal the user’s tokens and send them to a wallet that wasn’t allowed.

Meow pointed out that the app asked for a lot of rights, such as the ability to “read and write” data. Such rights should have been a red flag, since a real wallet-checking tool would only need “read-only” access. Even so, a lot of people installed and used the app, which caused big loses.

Jupiter told everyone that the study into the big dApps and wallets on the Solana network did not find any security holes. Jupiter, on the other hand, told people to check their browser extensions and get rid of “Bull Checker” and any other extensions that ask for a lot of rights and don’t deserve full trust.

This happened right after other security holes were found in the Solana environment, such as a $1 million flaw that caused Cypher Protocol, a Solana-based decentralized futures market, to be temporarily shut down.

People should be careful when they download and use browser plugins, especially ones that come from social media sites like Reddit. There is a lot of room for social engineering and astroturfing, which are bad people giving the idea that something is safe and legitimate when it’s not. We should be very careful with apps that need a lot of rights to read and change data on different websites.

Jupiter’s message is a reminder of the risks that exist in the world of decentralized finance (DeFi), which is changing very quickly, and how important it is to stay alert for possible threats.

Advertisement

You May Also Like

Cryptocurrency

In this week's Crypto Chronicle, we explore Meta's new AI search engine that aims to reduce reliance on Google and Microsoft, Banco Bisa's custody...

Business

To make it easier for companies to adopt decentralized technologies, Hitachi Solutions has introduced a new Web3 development assistance package. This program offers a...

Business

Due to difficulties in the decentralized finance (DeFi) industry, dYdX Trading has announced a major layoff of 35% of its employees. As the company...

Business

Three days following its launch, Bitget Wallet Lite had amassed 6 million users on Telegram, demonstrating its quick success. This multichain wallet seeks to...

polkadot
Polkadot (DOT) $ 3.87 3.39%
bitcoin
Bitcoin (BTC) $ 69,612.65 2.63%
ethereum
Ethereum (ETH) $ 2,434.86 1.46%
cardano
Cardano (ADA) $ 0.334999 2.71%
xrp
XRP (XRP) $ 0.514333 2.30%
stellar
Stellar (XLM) $ 0.093674 2.90%
litecoin
Litecoin (LTC) $ 66.19 0.95%