Cybersecurity experts from SlowMist have issued a critical alert to the crypto community, warning users against installing a browser extension called Osiris Guard, which falsely presents itself as a Web3 security tool.
Yu Xian, founder of SlowMist and widely known in the blockchain security space as “Cosine,” took to social media to warn that this extension is not what it claims to be.
Instead of enhancing users’ security, it introduces a serious vulnerability. Once installed on Chrome.
Osiris Guard covertly replaces legitimate download links with malicious ones, tricking users into downloading Trojan-laced software.
The ultimately compromises their computers and exposes sensitive data such as private keys and crypto wallet credentials.
Osiris Guard Turns Trusted Downloads into Trojan Programs
The primary tactic used by the Osiris Guard extension involves silently altering download links on trusted websites.
When a user attempts to download a well-known application, the plug-in secretly redirects them to a modified version embedded with Trojan malware.
Upon executing these corrupted files, the user’s system is compromised. This sophisticated attack results in the malware gaining full access to local files and applications, including crypto wallets stored on the device.
Once control is gained, hackers can steal wallet assets and access related accounts, causing devastating financial losses.
According to Yu Xian, while this type of scam isn’t entirely new, Osiris Guard’s level of deception and execution makes it particularly dangerous.
Also Read: Crypto Investigator Warns Against Fake HyperLend Ads On Google That Could Lead to Phishing Scams
Real Victims and Ongoing Investigations Confirm Serious Threat
Yu Xian confirmed that multiple users have already fallen victim to the Osiris Guard extension, with reports of compromised systems and stolen digital assets.
Threat intelligence analysts, including a contributor identified as @0xmaoning, have been instrumental in flagging the issue and collecting data on the scope of the attack.
A detailed technical analysis is currently underway to understand the full mechanics of the malicious extension.
Preliminary findings suggest that Osiris Guard may be leveraging legitimate-looking code and interfaces to gain user trust, making it more difficult for non-technical users to detect its malicious intent until it’s too late.
Also Read: Crypto Investigators Moonlock Report Surge in Crypto Hack Through Fraudulent Ledger Live Software
Community Urged to Uninstall and Report the Plug-in Immediately
Given the severity of the threat, the crypto community is being strongly urged to uninstall Osiris Guard immediately if it is present on their browsers and to report it to the appropriate authorities and browser extension stores.
Users are also advised to conduct a full malware scan of their systems and change any compromised wallet credentials.
The incident serves as a stark reminder of the ongoing threats targeting the decentralized finance space.
It also highlights the need for users to practice extreme caution when installing browser extensions, even those that appear to be designed for security.
Staying updated with reliable cybersecurity channels and tools is essential to safeguarding digital assets in the evolving Web3 landscape.
Also Read: Crypto Investigator Issues Warning On New Crypto Withdrawal Verification Code Scam, Over $11M Lost