extension attacked
Either Chrome has a vulnerability that lets extensions install themselves, or his system is far more compromised than he thinks it is.
Maybe don’t install shady crypto extensions next time. Or don’t log into your wallet in public WiFi just so you can accidentally show off to the person sitting behind you at Starbucks.
Quite often it’s another payload that installed the browser extension on the user’s host.
SEO poisoning or malicious adverts, for instance posing as legitimate tools like FileZilla etc, leads to a malicious payload (loader, RAT, etc) that in turn downloads and installs the malicious browser extension.
Install adblockers. Genuinely. It’s insane how many adverts on Google and Bing etc are straight up malicious. It’s been a problem for years now.
coiners: self-custody!
also coiners: oh no, how can I make this issue caused by my own actions due to self-custody somebody else’s problem?
