According to recent posts on Reddit and Twitter, the MEGA Chrome extension v3.39.4 has been compromised and is currently stealing user’s Monero along with additional sensitive data. This new extension tool upgrade claims to enhance browser performance by reducing page loading times, additionally providing a secure cloud storage service.
As per the official Twitter account of Monero ‘XMR’, the company posted a warning, advising XMR holders to delete the Mega extension tool.
Another tweet posted by a user stated that:
A Redditor u/gattacus posted on Monero’s official Reddit page that they are suspicious of this new extension update, following new installation permission following the installation. Mentioning further he posted:
However as for now, the MEGA Chrome extension is unable to download from the Chrome Webstore. Now, clicking the link on the extension is resulting in a 404 error.
Monero despite some claims to the contrary is lauded as an untraceable digital currency, but has always been the target of illicit and black activities within the crypto ecosystem.
In many instances, crypto hijackers have used the computer power of web guests to mine Monero secretly. In June, a McAfee report found millions of samples of mining malwares, that works by Coinhive code — a program designed to mine XMR on an internet browser.