Maybe don’t install shady crypto extensions next time. Or don’t log into your wallet in public WiFi just so you can accidentally show off to the person sitting behind you at Starbucks.
Quite often it’s another payload that installed the browser extension on the user’s host.
SEO poisoning or malicious adverts, for instance posing as legitimate tools like FileZilla etc, leads to a malicious payload (loader, RAT, etc) that in turn downloads and installs the malicious browser extension.
Install adblockers. Genuinely. It’s insane how many adverts on Google and Bing etc are straight up malicious. It’s been a problem for years now.
Maybe don’t install shady crypto extensions next time. Or don’t log into your wallet in public WiFi just so you can accidentally show off to the person sitting behind you at Starbucks.
Quite often it’s another payload that installed the browser extension on the user’s host.
SEO poisoning or malicious adverts, for instance posing as legitimate tools like FileZilla etc, leads to a malicious payload (loader, RAT, etc) that in turn downloads and installs the malicious browser extension.
Install adblockers. Genuinely. It’s insane how many adverts on Google and Bing etc are straight up malicious. It’s been a problem for years now.