⚠️ Fake imToken Chrome Extension Stealing Crypto Wallet Seed Phrases | Cyber Alert

🚨 Cyber Alert: Malicious Chrome Extension Stealing Crypto Wallet Seed Phrases
A dangerous malicious Chrome browser extension has been discovered that is targeting cryptocurrency users by stealing wallet seed phrases and private keys.
Cybersecurity researchers from Socket’s Threat Research Team uncovered a fake extension called “lmToken Chromophore.” The extension disguises itself as a harmless Hex Color Visualizer tool, but in reality it impersonates the well-known crypto wallet platform imToken.
The official imToken team has clarified that their service is available only as a mobile application and that they have never released any Chrome browser extension. Despite this, the malicious extension mimics the brand identity of imToken to deceive users and trick them into entering their 12- or 24-word recovery seed phrase or private key.
Once this sensitive information is entered, attackers can immediately gain full control over the victim’s cryptocurrency wallet, potentially leading to complete loss of funds.
🔎 How the Attack Works
• The extension pretends to be a simple browser tool.
• It secretly redirects users to a phishing website.
• Attackers use Unicode homoglyph techniques to evade detection.
• Victims are shown a fake wallet import interface.
• Seed phrases and private keys entered by users are captured by attackers.
After stealing the credentials, victims are redirected to the official token.im website to reduce suspicion, while attackers quietly drain the wallet.
🛡️ Cyber Safety Tips
✔ Install crypto wallet software only from official sources
✔ Avoid installing unknown browser extensions
✔ Never share your seed phrase or private key online
✔ If your seed phrase is exposed, immediately move funds to a new wallet
⚠️ Indicators of Compromise (IOC)
• Malicious Extension ID: bbhaganppipihlhjgaaeeeefbaoihcgi
• Publisher Email: liomassi19855@gmail[.]com
• Phishing Domain: chroomewedbstorre-detail-extension[.]com
• Remote Payload: jsonkeeper[.]com/b/KUWNE
Cryptocurrency attacks are rapidly increasing, and users must remain vigilant while installing browser extensions or interacting with wallet services online.
Stay alert. Stay informed. Stay cyber safe.
🎥 CyberPlatter – The News That Shapes Your Views
Subscribe for the latest updates on:
• Cybercrime & digital fraud
• Cybersecurity threats
• Technology and privacy awareness
• Breaking cyber news
#CyberSecurity #CryptoScam #CryptoSecurity #CyberCrime #BlockchainSecurity #SeedPhrase #CyberThreat #CryptoFraud #CyberAwareness #CyberPlatter

Видео ⚠️ Fake imToken Chrome Extension Stealing Crypto Wallet Seed Phrases | Cyber Alert канала Cyber_Platter