Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacker Breaches Chrome Extension of Popular VPN Service Hola, Directs Users To Compromised Cryptocurrency Website (bleepingcomputer.com)

Posted by msmash on from the security-woes dept.

Catalin Cimpanu, reporting for BleepingComputer: A hacker has breached a Hola VPN developer account and has replaced the official Chrome extension with one that redirected users of the MyEtherWallet.com website to a phishing page controlled by the attacker. The compromise took place yesterday and only lasted for five hours the MyEtherWallet (MEW) team said in a tweet. The Hola VPN team admitted to the hack. "The attack was programmed to inject a JavaScript tag in to the MEW site to 'phish' information about MEW accounts that are logging in without being in 'incognito mode', by re-directing the MEW users to the hacker's website," the Hola VPN team said.

10 of 23 comments (clear)

  1. why is a vpn in a chrome extension... by Anonymous Coward · · Score: 2, Insightful

    Seems like a Chrome extension is the wrong place to put a VPN. Maybe that is just me.

  2. Not Just Yesterday by Anonymous Coward · · Score: 2, Informative

    I was seeing redirects on my Chrome browser two weeks ago. Virus/Malware scans from various products didn't turn up anything. I removed the Hola extension and the redirects were gone.

  3. Extension security a mess by xack · · Score: 1

    I repeat my proposal for an extension protection mechanism. The more popular an extension gets the bigger opportunity to profit of its compromise exists. It will take an "extension conficker" before security is taken seriously.

  4. That's rare! by Vintermann · · Score: 2

    Cryptocurrency being stolen with old fashioned stuff like actual hacking and phishing, rather than by saying "we got hacked" and running away with your users' bits.

    --
    xkcd is not in the sudoers file. This incident will be reported.
  5. TIL: People still use Hola by wardrich86 · · Score: 2

    Hola has been shat on for a number of issues over the years. Anybody still using it pretty much deserves to have this happen to them.

  6. Very specific hack? by nitehawk214 · · Score: 1

    So does this only affect people that use Hola and use MyEtherWallet?

    --
    I'm a good cook. I'm a fantastic eater. - Steven Brust
  7. I am APK the LORD of HOSTS by Anonymous Coward · · Score: 1

    I am APK the great "LORD of HOSTS", a.k.a. AlecStaar or Alexander Peter Kowalski.

    I am the godlike creator of various GUI front-ends for other people's configuration files.

    Calling people ne'er-do-wells or Jealous JOWIEs is how I think I win every argument

    When people state the truth about me I get really mad and accuse them of projecting which is something I do all the time.

    Don't call me out on anything unless you are willing to prove you too can write some strings to a file programmatically

    Spamming and being a general pain in the ass is what I do

    Listen as I relive my glory days of being a college athlete in the early 80s

    Bask in my greatness as I can do a ping as a non root user.

    Watch as I whine about my work being flagged as malware by anti-virus software.

    Witness my descent into madness

    APK

  8. Re: Impersonating me AGAIN?... apk by IMightB · · Score: 1

    Hey apk. I've been on /. Since the late 90s and a question has always been on my mind since you started posting...

    Are you the TimeCube guy?

  9. Re:proof Chrome is gay by CaptainDork · · Score: 1

    Chrome is binary.

    --
    It little behooves the best of us to comment on the rest of us.
  10. Another? by TechMaster321 · · Score: 1

    This has been happening far too often recently.