安全公司：数十款虚假加密钱包扩展程序涌入Firefox插件商店

Odaily

Jul 02, 2025

Odaily星球日报讯安全公司 Koi 披露火狐（Firefox）浏览器官方插件商店出现 40 余个假冒加密钱包扩展程序，仿冒对象包括 MetaMask、Coinbase Wallet 等主流钱包。这些恶意插件通过植入事件监听代码窃取超过 30 个字符的输入内容（主要针对助记词），并将数据回传至攻击者服务器。调查显示，该钓鱼活动至少自 2025 年 4 月持续至今，幕后团伙疑似俄语黑客组织。（BleepingComputer ）

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2548816018"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"isCrawlerRequest":true,"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2548816018\",edition:\"fundamental\",auth_exemption:1,,,undefined,":{"share":"https://ttm.financial/m/news/2548816018?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-07-02 23:53","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2548816018","market":"fut","top_or_hot":-1,"title":"安全公司：数十款虚假加密钱包扩展程序涌入Firefox插件商店","media":"Odaily","content":"<html><body><p>Odaily星球日报讯 安全公司 Koi 披露火狐（Firefox）浏览器官方插件商店出现 40 余个假冒加密钱包扩展程序，仿冒对象包括 MetaMask、<a href=\"https://laohu8.com/S/COIN\">Coinbase</a> Wallet 等主流钱包。这些恶意插件通过植入事件监听代码窃取超过 30 个字符的输入内容（主要针对助记词），并将数据回传至攻击者服务器。调查显示，该钓鱼活动至少自 2025 年 4 月持续至今，幕后团伙疑似俄语黑客组织。（BleepingComputer ）</p></body></html>","source":"odaily_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>安全公司：数十款虚假加密钱包扩展程序涌入Firefox插件商店</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\n安全公司：数十款虚假加密钱包扩展程序涌入Firefox插件商店\n</h2>\n\n<h4 class=\"meta\">\n\n\n2025-07-02 23:53 北京时间&nbsp;&nbsp;&nbsp;<a href=https://www.odaily.news/newsflash/437313?source=share><strong>Odaily</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>Odaily星球日报讯 安全公司 Koi 披露火狐（Firefox）浏览器官方插件商店出现 40 余个假冒加密钱包扩展程序，仿冒对象包括 MetaMask、Coinbase Wallet 等主流钱包。这些恶意插件通过植入事件监听代码窃取超过 30 个字符的输入内容（主要针对助记词），并将数据回传至攻击者服务器。调查显示，该钓鱼活动至少自 2025 年 4 月持续至今，幕后团伙疑似俄语黑客组织。（...</p>\n\n<a href=\"https://www.odaily.news/newsflash/437313?source=share\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"LU2360107671.USD","symbol_name":"BGF FINTECH \"A4\" (USD) INC","start_time":0,"source_url":"https://www.odaily.news/newsflash/437313?source=share","article_id":"2548816018","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2548816018","pubTimestamp":1751471596,"columns":[],"sourceInfo":{"source_id":"odaily_live","name":"Odaily"},"weMediaInfo":null,"summary":"Odaily星球日报讯 安全公司 Koi 披露火狐（Firefox）浏览器官方插件商店出现 40 余个假冒加密钱包扩展程序，仿冒对象包括 MetaMask、Coinbase Wallet 等主流钱包。这些恶意插件通过植入事件监听代码窃取超过 30 个字符的输入内容（主要针对助记词），并将数据回传至攻击者服务器。调查显示，该钓鱼活动至少自 2025 年 4 月持续至今，幕后团伙疑似俄语黑客组织。（BleepingComputer ）","collect":0,"end_time":0,"defaultTopTitle":"odaily.news","property":[],"viewcount":null,"language":"zh","relate_stocks":{"LU2360107671.USD":"BGF FINTECH \"A4\" (USD) INC","BK4551":"寇图资本持仓","COIN":"Coinbase Global, Inc.","LU1861220207.SGD":"Blackrock FinTech A2 SGD-H","BK4539":"次新股","BK4588":"碎股","BK4600":"加密货币概念","BK4516":"特朗普概念","BK4585":"ETF&股票定投概念","BK4112":"金融交易所和数据","LU1861559042.SGD":"日兴方舟颠覆性创新基金B SGD","BK4535":"淡马锡持仓","BK4554":"元宇宙及AR概念","BK4596":"哈里斯概念","LU1861558580.USD":"日兴方舟颠覆性创新基金B","LU1861217088.USD":"贝莱德金融科技A2","BK4595":"比特币概念"},"translate_title":"Security firm: dozens of fake crypto wallet extensions flood into Firefox add-on store","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"COIN":1},"content_text":"Odaily星球日报讯 安全公司 Koi 披露火狐（Firefox）浏览器官方插件商店出现 40 余个假冒加密钱包扩展程序，仿冒对象包括 MetaMask、Coinbase Wallet 等主流钱包。这些恶意插件通过植入事件监听代码窃取超过 30 个字符的输入内容（主要针对助记词），并将数据回传至攻击者服务器。调查显示，该钓鱼活动至少自 2025 年 4 月持续至今，幕后团伙疑似俄语黑客组织。（BleepingComputer ）","kind":"live","is_publish_news":false,"is_publish_highlight":false,"is_publish_live":true,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":0,"need_auth":false,"code":"91000000","status":"200"}}}