Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacker Breaches Chrome Extension of Popular VPN Service Hola, Directs Users To Compromised Cryptocurrency Website (bleepingcomputer.com)

Posted by msmash on from the security-woes dept.

Catalin Cimpanu, reporting for BleepingComputer: A hacker has breached a Hola VPN developer account and has replaced the official Chrome extension with one that redirected users of the MyEtherWallet.com website to a phishing page controlled by the attacker. The compromise took place yesterday and only lasted for five hours the MyEtherWallet (MEW) team said in a tweet. The Hola VPN team admitted to the hack. "The attack was programmed to inject a JavaScript tag in to the MEW site to 'phish' information about MEW accounts that are logging in without being in 'incognito mode', by re-directing the MEW users to the hacker's website," the Hola VPN team said.

4 of 23 comments (clear)

  1. why is a vpn in a chrome extension... by Anonymous Coward · · Score: 2, Insightful

    Seems like a Chrome extension is the wrong place to put a VPN. Maybe that is just me.

  2. Not Just Yesterday by Anonymous Coward · · Score: 2, Informative

    I was seeing redirects on my Chrome browser two weeks ago. Virus/Malware scans from various products didn't turn up anything. I removed the Hola extension and the redirects were gone.

  3. That's rare! by Vintermann · · Score: 2

    Cryptocurrency being stolen with old fashioned stuff like actual hacking and phishing, rather than by saying "we got hacked" and running away with your users' bits.

    --
    xkcd is not in the sudoers file. This incident will be reported.
  4. TIL: People still use Hola by wardrich86 · · Score: 2

    Hola has been shat on for a number of issues over the years. Anybody still using it pretty much deserves to have this happen to them.