The AdsPower fingerprinting browser has been hit by a severe security breach that has led to the theft of over $4.1 million in cryptocurrency assets from users’ wallets.
On January 24, 2025, AdsPower issued a public notice acknowledging the hack, which targeted users who had installed or manually updated wallet extensions, such as MetaMask, between January 21 and January 24, 2025 (UTC+8).
The malicious backdoor embedded in these compromised versions allowed hackers to access sensitive information, including private keys and mnemonic phrases, putting users’ crypto assets at risk.
Malicious Plug-ins Replaced Wallet Extensions, Triggering Quick Response
The breach involved the replacement of legitimate wallet plug-ins with malicious versions that enabled hackers to steal critical user data.
Upon discovering the vulnerability, AdsPower quickly collaborated with SlowMist, a cybersecurity team, to assist in investigating the breach and collecting evidence.
In response to the attack, the AdsPower team urged all affected users to immediately reinstall the Chrome plug-in, transfer their funds to secure wallets, and update any compromised private keys to mitigate further asset loss.
The rapid response aimed to prevent additional damage and secure user funds, although some users who failed to act swiftly have already seen their assets stolen.
Stolen Funds Traced to Four Crypto Wallets, Amounting to $4.1 Million
The stolen cryptocurrency has been traced to four specific wallets, which together hold over $4.1 million in assets.
The hackers’ ability to siphon off funds from users highlights the serious risks involved when using browser-based wallet extensions.
While AdsPower is working to resolve the issue, many users who did not take immediate action to protect their assets are facing the consequences of the breach.
The attack serves as a stark reminder of the vulnerabilities inherent in decentralized platforms and browser-based tools that facilitate crypto transactions, amplifying concerns about their security.
Also Read: Phemex Exchange Hack: Reports Suggest Involvement of North Korea in the $70M Crypto Heist
Implications for Crypto Security in the DeFi Ecosystem
This hack underlines the importance of robust security practices for cryptocurrency users.
As DeFi platforms and browser extensions become increasingly integrated into everyday crypto management, the risks associated with such tools are growing.
The theft of $4.1 million raises significant concerns about the security of wallet extensions and other similar tools.
The growing number of security incidents in the cryptocurrency space such as a surge in Telegram crypto scams and high-profile hacks.
For example the Metawin and Noones breaches emphasizes the need for users to adopt stronger security protocols and conduct regular audits.
Enhanced vigilance and proactive measures will be essential to safeguarding digital assets in the increasingly complex crypto landscape.
Other Notable Security Incidents in the Crypto Space
In addition to the AdsPower breach, several other significant crypto security incidents have recently been reported.
Telegram crypto scams have surged by 2000%, overtaking traditional phishing attacks as scammers use advanced malware and social engineering tactics to compromise user accounts and wallets.
Additionally, cybersecurity expert ZachXBT exposed a $3.5 million fraud scheme tied to memecoins promoted through hacked Twitter accounts.
Similarly, the Metawin crypto casino suffered a $4 million loss after hackers exploited its frictionless withdrawal system.
Also Noones, a peer-to-peer (P2P) platform, saw $7.9 million stolen across multiple blockchains, with the funds laundered through Tornado Cash.
These incidents collectively highlight the growing sophistication of cybercriminals targeting the crypto sector and the urgent need for enhanced security measures across all platforms.
Also Read: Payment Gateway Firms In India Are Under ED Investigation Over Alleged Crypto Scam