top of page
perceptive_background_267k.jpg

Chrome Extension Caught Injecting Hidden Solana Transfer Fees Into Raydium Swaps

Published:

26 november 2025 om 11:10:00

Alert date:

5 december 2025 om 08:03:22

Source:

thehackernews.com

Click to open the original link from this advisory

Cybersecurity researchers discovered a malicious Chrome extension called 'Crypto Copilot' that injects hidden Solana transfer fees into Raydium swap transactions. The extension, published by user 'sjclark76' on May 7, 2024, steals cryptocurrency by redirecting funds to attacker-controlled wallets. This represents a supply chain attack targeting cryptocurrency users through a compromised browser extension on the Chrome Web Store.

Technical details

Mitigation steps:

Affected products:

Chrome Web Store
Raydium
Solana

Related links:

https://thehackernews.com/2025/11/chrome-extension-caught-injecting.html

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page