Solana Users Targeted by Bull Checker Chrome Extension Scam
Solana users have recently been targeted by a Google Chrome extension called “Bull Checker,” which was being promoted on Reddit under the guise of a cryptocurrency tracker.
The malicious extension aims to steal cryptocurrency from Solana users’ wallets invisibly.
Meow, the pseudonymous founder of Jupiter, revealed incidents of unauthorized draining of tokens from the wallets of some DeFi Solana users last week.
In collaboration with specialized partners, they traced the issue back to the suspicious extension “Bull Checker,” which was targeting users active in Solana-related Reddit communities.
Bull Checker facilitates user interaction with decentralized applications (dApps) as expected, but it secretly transfers tokens to unauthorized wallets when executing transactions.
Meow confirmed that the investigation did not reveal any security vulnerabilities in the applications or wallets used, indicating that the extension itself was the source of the attack.
The founder advised users to remove Bull Checker immediately, along with any extension that requests unnecessary broad permissions, as these permissions could be exploitative in nature.
