Lessons From the Crypto Copilot Incident: A Cautionary Tale
We had this incident with “Crypto Copilot” where a sketchy Chrome extension rolled out on June 18, 2024. It was supposed to improve user experience but instead added hidden fees to Solana transactions. Basically, it was a scam. The extension claimed to let you “instantly take action from your X stream”, but it silently added extra steps in the background.
According to some tech review from Socket, the extension took an extra fee of 0.0013 SOL (around 0.05% of the transaction amount) from every swap transaction, sending it straight to the attacker’s wallet. They didn’t mention this fee on the Chrome Web Store, and the code was super obfuscated. So, you know, good luck spotting that. It’s a strong reminder that the crypto ecosystem…
