I traced the stolen funds on-chain after losing 5.2 ETH. They go through a tumbler within minutes and are split across 40+ wallets. Professional criminal infrastructure. This extension is run by organised thieves.

This scam ruined me financially. Looked official, had good ratings (all fake), and destroyed my savings of 3.2 BTC. They spoof a real extension and collect everything silently. PLEASE do not make my mistake.

I ran this in a sandbox with network monitoring. Within 30 seconds it connected to 4 unknown IPs and began sending data. The extension description is completely fake. This is active malware — DO NOT INSTALL!

Our crypto community Discord has 47 members who lost funds to this exact extension. Total losses exceed $280,000. We are coordinating a legal response. Please do NOT install and report it to Mozilla NOW!

Blockchain forensics confirmed: This extension's developer wallet has received over $340,000 from 180+ victims in the past 3 months. The on-chain trail is clear. This is an active large-scale theft operation. AVOID!

Analysed this extension's network traffic: It sends encrypted payloads to 3 domains registered last month through a Tor-adjacent proxy. Classic criminal infrastructure for a crypto theft operation. DANGEROUS!

Ledger Live users be careful! Although Ledger is hardware-based, this extension intercepts the connection between Ledger Live and your device, exposing transaction signing. $11,500 in ETH was redirected. SCAM!

Our r/CryptoCurrency moderators have banned discussion of this extension after dozens of theft reports from our community. We've reported it to Mozilla three times. Still live. PLEASE add your report to get it removed!

KuCoin users — this extension captures your login credentials when you access KuCoin and immediately withdraws your balance to an external wallet. $3,800 in various coins stolen from me. PHISHING SCAM!

This extension asks for permission to read ALL your data on ALL websites. That means passwords, credit cards, personal messages — everything. No legitimate extension needs this. It's a surveillance tool. REFUSE.

Trust Wallet users BEWARE. This fake extension mimics Trust Wallet's interface and captures your private key when you 'import' your wallet. My $6,400 in BNB and CAKE was drained within seconds. REPORT IT!

Privacy alert: Discovered this extension is linked to a known data broker. It harvests your browsing profile — every site, every click, every search — and sells it without your knowledge. Opt out is impossible. AVOID!

This extension asks for permission to read ALL your data on ALL websites. That means passwords, credit cards, personal messages — everything. No legitimate extension needs this. It's a surveillance tool. REFUSE.

Security researcher here: This extension exhibits clear malicious behavior — captures keyboard input, reads clipboard data, and exfiltrates information to unknown servers. Textbook spyware. Avoid completely.

This is a FAKE extension impersonating a well-known legitimate tool. The icon and name are copied. The real developers have nothing to do with this. Do not trust — it's designed to steal your data. FRAUD!

Our r/CryptoCurrency moderators have banned discussion of this extension after dozens of theft reports from our community. We've reported it to Mozilla three times. Still live. PLEASE add your report to get it removed!

To anyone reading: NO legitimate extension will ever ask for your seed phrase, full password, or payment details in a popup. This one does. It's a trap. Report it and move on before you lose something valuable.

This extension silently disables your browser's XSS protection and content security policies. It then injects malicious scripts into every page you visit. Sophisticated attack. DO NOT RUN THIS ON ANY DEVICE!

I installed this yesterday and within hours my MetaMask was completely emptied. Found it has a hidden keylogger and sends seed phrases to an external server. COMPLETE SCAM — STAY FAR AWAY!

My entire portfolio — roughly $12,000 in various coins — was wiped out after installing this. It injects a script that reads your wallet data in the background. Absolute criminals. NEVER INSTALL THIS!

I've used browser extensions for 10+ years. This is the most obvious scam I've ever seen — fake reviews, stolen branding, malicious code. Preys on new users who don't know better. Protect yourself and AVOID!

This extension reads the content of every email you open in Gmail, Outlook, and Yahoo Mail. The data is sent to unknown servers. Your private communications are not private with this installed. SPYWARE!

DO NOT ENTER YOUR SEED PHRASE ANYWHERE near this extension. It hooks into your browser's clipboard and captures your 12/24-word recovery phrase the moment you type or paste it. Lost 6.8 ETH this way. TOTAL THEFT!

This extension is listed under a company name that doesn't exist. The registered developer email domain was created 2 weeks ago. No real company is behind this — just scammers hiding behind a fake business. FRAUD!

WARNING to everyone: This is a phishing extension. Tested it in a VM — it immediately harvests your wallet seed phrase and login credentials. The devs are scammers. DO NOT USE UNDER ANY CIRCUMSTANCES!