Shitcoin wallet online wallet hidden malicious script, stealing crypto wallet private key

According to the Dimension Reduction Security Lab news, a Chrome-based extension (Shitcoin Wallet) is embedded with malicious JavaScript code, which not only sends the wallet's private key managed by the extension to third-party malicious websites, but also when users access 5 mainstream encryption When it comes to currency management platforms (MyEtherWallet.com, Idex.Market, Binance.org, NeoTracker.io, and Switcheo.exchange), the program steals user login credentials and private keys and sends them to the same malicious website erc20wallet.tk. As a reminder, users immediately stop using the Shitcoin Wallet online wallet to avoid loss of assets.