UPDATED 00:27 EDT / MARCH 14 2016

NEWS

Chrome extension that blocks ads on Bitcoin site found to steal Bitcoins as well

A Chrome extension that promises to remove ads from a Bitcoin-related site is offering an additional feature users’ are unlikely to want, and that’s the theft of their Bitcoin’s when they attempt to make transfers on a number of leading Bitcoin exchanges.

The BitcoinWisdom Ads Remover is an extension that removes ads from BitcoinWisdom.com, a site more and more users are finding useful as it provides Bitcoin-related statistics in easy-to-understand charts.

It actually does remove the ads on the site, but according to Bitcoin exchange Bitstamp, Inc., the extension contains malicious code that redirects payments made by a user to its own Bitcoin address, when using the Bitstamp, BTC-E, and Hashnest services.

The extension specifically swaps out QR codes that are used by these services for payments, meaning that a user won’t realize that the Bitcoin address has been changed; QR codes are becoming more commonly used by exchanges for Bitcoin payments as Bitcoin wallet addresses themselves include extremely long strings or characters that aren’t nearly as user friendly as a QR code instead.

Wallet fraud

Most hacks of Bitcoin wallets usually involved one of two methods: hacking the site hosting them directly or hijacking the computer of a user through a phishing attack or similar to intercept payments on the machine.

This new method falls somewhere in between, hijacking a browsing session with a simple, yet difficult to notice replacement of an address right under a Bitcoin wallet owners own nose.

Given the hatred many site owners have towards ad blockers, it’s also a little bit ironic that those trying to deny advertising revenue to sites are then stolen from themselves, but that’s an argument for another day.

At the time of writing the extension has been removed from the Google Chrome Web Store, but anyone still running the extension is advised to remove it immediately, and check to make sure any Bitcoin payments they have made since installing it haven’t been hijacked in the process.

Image credit: btckeychain/Flickr/CC by 2.0

Since you’re here …

… We’d like to tell you about our mission and how you can help us fulfill it. SiliconANGLE Media Inc.’s business model is based on the intrinsic value of the content, not advertising. Unlike many online publications, we don’t have a paywall or run banner advertising, because we want to keep our journalism open, without influence or the need to chase traffic.The journalism, reporting and commentary on SiliconANGLE — along with live, unscripted video from our Silicon Valley studio and globe-trotting video teams at theCUBE — take a lot of hard work, time and money. Keeping the quality high requires the support of sponsors who are aligned with our vision of ad-free journalism content.

If you like the reporting, video interviews and other ad-free content here, please take a moment to check out a sample of the video content supported by our sponsors, tweet your support, and keep coming back to SiliconANGLE.

Cookies

We employ the use of cookies. Find out more.