One user has lost a lot of money.
It is not clear how the extension, which was to serve as a cryptocurrency wallet inside Google Chrome, bypassed the browser filters and was made available for download. As reported by the Decrypt website, the plug-in reportedly scanned the device on which it was installed and sent the so-called seed phrase, i.e. the private key to the victim's wallet, the author of the extension, enabling the theft of cryptocurrency.
Ledger, i.e. a manufacturer of hardware cryptocurrency wallets, has nothing to do with the mysterious enlargement. Its author intentionally used its name to lure potential victims. The creator of the extension even founded on Twitter accountwhich is to suggest that "Ledger Secure" is the official Ledger plugin. The company itself on its Twitter denies this, warning against the extension and urging to use the "Report abuse" option in the Chrome Web Store.
"Malware detected as a Google Chrome extension. This is not a Ledger application. Don't use it and contact us if you installed it. ", we read on Twitter.
A Chrome extension malware has been detected called "Ledger Secure". This is NOT a legitimate Ledger application
DO NOT use it and contact us if you've installed it:https://t.co/bRaDjYHZbY
You can help by reporting the extension:https://t.co/oltHbtA8RR
– Ledger Support (@Ledger_Support) January 2, 2020
Fortunately, Google has already removed the extension from its store. It is not known how many people became its victim, except for the mentioned user who lost over 60 thousand zlotys.
If you used this plugin and you have a cryptocurrency wallet, check its contents. In case of theft experience, contact Ledger using this form.