Chinese Trader Hacked $1 Million Through Google Chrome Plugin Vulnerability
A Chinese trader, who's username on X (Formerly Twitter) is CryptoNakamao, lost about $1 million in a scam. The hackers exploited a Google Chrome plugin, known as Aggr, to steal the customer cookies; using it to bypass two-factor authentification (2FA) and password, to control the customer's Binance account.
As of the 24th of May 2024, the scammed customer CryptoNakamao experienced some suspicious trades on his Binance account. He understood the vulnerability, after seeing the price of BTC on Binance application.
Regardless of the two-factor authentification (2FA) security, the crypto hackers utilized the cookies they stole, to login to CryptoNakamao Binance account to cross trade, purchasing different cryptocurrencies in Tether trading pair; because of its remarkable liquidity.
The hackers were able to cross trade, purchasing huge amounts; and their deals were not captured on the exchange. CryptoNakamao condemned Binance for not protecting his account, even when Binance observed abnormally large transactions; and for not responding swiftly when quick complains were made.