TechFlow reports that on March 19, SlowMist issued a security alert warning cryptocurrency users about potential risks associated with browser extensions. Malicious actors can simply purchase Chrome extensions and hijack existing users' browsing traffic, redirecting it to any destination of their choice.
More concerning is the fact that users receive no alerts or warnings—remaining entirely unaware of ownership changes—unless new permissions are required. Previously, researcher @tuckner discovered in his investigation that an extension with 400,000 users had already changed ownership. In his blog, he detailed this security vulnerability, demonstrating how he acquired a Chrome extension for just $5 and was then able to redirect browsing traffic from its existing user base to any site he chose.




