• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Chrome Extension Bull Checker Steals Tokens from Solana Users

user avatar

by Giorgi Kostiuk

a year ago

  1. Closing the Vulnerability
  2. Targeting Solana Traders
  3. Precautionary Measures


    4. The decentralized trading platform Jupiter Exchange has published a report revealing the theft of tokens from Solana DeFi users via a Chrome browser extension called Bull Checker.

    Closing the Vulnerability

    Jupiter Exchange has confirmed that the issue lies with the Bull Checker extension, not any vulnerability within the wallets or dApps themselves. After installation, the extension waits for the user to interact with a dApp on an official domain, modifying the transaction so that the final result appears normal, though the tokens actually get transferred to another wallet.

    Targeting Solana Traders

    The investigation revealed that the Bull Checker extension was targeting Solana memecoin traders. The Reddit account Solana_OG promoted this extension, luring traders to install it to steal their assets. Examples of affected transactions showed that the extension added malicious instructions to legitimate Jupiter and Raydium commands, leading to the unauthorized transfer of tokens to a malicious address.

    Precautionary Measures

    Jupiter Exchange strongly recommends removing such extensions with extensive permissions. Users should use only trusted tools and carefully review the permissions requested by the extensions to protect their assets.

    Users should be cautious when installing extensions and review their permissions carefully to avoid losing their assets.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

Other news

PEPE Coin Heads Towards Resistance: Signs of a Bull Trend

chest

PEPE Coin demonstrates growth after downward breakout and key level breaches. Market participants are closely monitoring its movements.

user avatarGiorgi Kostiuk

Crypto Market Updates: Ondo, AAVE, and BlockDAG Developments

chest

Ondo Finance has acquired Strangelove, AAVE displays growth, and BlockDAG introduces a NO VESTING PASS for buyers.

user avatarGiorgi Kostiuk

Ethereum Hits $3,000: Key Technical Signals

chest

Ethereum's price has crossed $3,000 after consolidation, with important technical patterns forming. An overview of current trends.

user avatarGiorgi Kostiuk

Comparing BlockDAG with SOL and UNI: Key Insights and Predictions

chest

An overview of BlockDAG and its key features compared to Solana and Uniswap, focusing on price predictions.

user avatarGiorgi Kostiuk

PENGU Price Soars with $32 Million in Purchases by Bithumb and Upbit

chest

Bithumb and Upbit wallets acquired 945 million PENGU tokens, resulting in a surge in trading volume and prices.

user avatarGiorgi Kostiuk

Fed Under Pressure: Expectations of Rate Cut in September

chest

Discussions around the possible Fed interest rate cut in September intensify amid uncertainty regarding Chair Jerome Powell's future role.

user avatarGiorgi Kostiuk
dapp expert logo
© 2020-2025. DappExpert. All rights reserved.
© 2020-2025. DappExpert. All rights reserved.

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.