Expansion for Google Chrome caught stealing bitcoins

The Chrome browser extension called BitcoinWisdom Ads Remover replaces the QR codes used to get the sending address of the money, thereby redirecting the cash flow. The users of the Bitstamp and BTC-E cryptobirths, and the cloud mining mining service Hashnest, are at risk .

The stated function of the application is to remove ads from the site BitcoinWisdom . This site allows real-time tracking of stock quotes related to cryptocurrencies on several well-known cryptobirds. The command of the Bitstamp resource reported about the detection of malicious functions in the application code.
')
Since bitcoin addresses used to receive cryptocurrencies are long lines of characters, often to facilitate payment operations, these lines are encoded into QR codes that need to be scanned with the help of a smartphone camera.

Such codes can be found on websites working with cryptocurrency, and caring for the convenience of users. They are used by the owners of mobile bitcoin wallets, carrying out operations using a smartphone.

The malicious application not only removed advertisements on the BitcoinWisdom website, but also tracked the user’s visit of other cryptocurrency websites known to the application. When drawing on the page of receiving QR-code payments, the application intercepted the work and substituted another address, obviously belonging to the author of the application. As a result, when trying to send money to the address of the resource, the user actually sent them to scammers.

This app is currently removed from the Chrome Web Store. However, it appears there not for the first time - in July 2015, one of the reddit users made the exact same description of the fraudulent scheme of the application.

Earlier it was reported that the Russian-language cryptobirth BTC-E, which is among the five largest exchanges, is included in the Russian registry of banned sites.