Cryptocurrency exchange OKX has issued a warning about fraudulent browser extensions falsely claiming to be associated with the exchange.
OKX alerted users about fake OKX browser extensions available in the Firefox plugin store. The exchange stated it has not released any official Firefox plugins and urged users to immediately transfer funds from wallets connected to the fraudulent extensions. OKX has contacted Firefox to remove the malicious plugins and reminded users to download OKX-specific software only from official sources.
The warning was issued in early January 2025, following the discovery of the fraudulent extensions in the Firefox plugin store.
The fraudulent extensions were identified in the Firefox browser plugin store, targeting users worldwide who interact with OKX.
Malicious browser extensions are a common tool for phishing scams, which continue to be a significant threat to cryptocurrency users. According to CertiK’s Hack3d: The Web3 Security Report 2024, phishing scams caused over $1 billion in crypto losses last year, a 21% increase from 2023. These scams exploit vulnerabilities in browser plugins and other third-party applications to steal sensitive information and funds.
Fraudulent plugins often disguise themselves as legitimate tools but are designed to harvest users’ private keys or redirect funds to malicious actors. OKX is taking steps to have the fake plugins removed and is educating users on safe practices, including downloading software exclusively from official sources.
The broader context highlights the increasing sophistication of crypto-related cyber threats. In September 2024, cybersecurity researchers discovered SpyAgent, malware disguised as legitimate Android apps, which used optical character recognition to extract sensitive data, including private keys, from images. Similarly, Decentraland’s X social media account was breached the same month, with hackers promoting phishing links through a fake token airdrop.
These incidents underscore the importance of vigilance among crypto users to prevent losses from phishing and other cyber scams. OKX’s proactive response reflects the ongoing battle against security threats in the cryptocurrency ecosystem.