23pds, Chief Information Security Officer of SlowMist Technology, tweeted that security company Koi disclosed that more than 40 fake encrypted wallet extension programs appeared in the official plugin store of Firefox, including popular wallets such as MetaMask and Coinbase Wallet. These malicious plugins steal mnemonic phrases by implanting event listener code and send the data back to the attacker's server.
