Utopia Tech
Security1 min read

Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses

Cybersecurity researchers have flagged an active browser extension campaign that is designed to steal cryptocurrency by stealthily replacing wallet addresses when unsuspecting users initiate a transaction. The cryptocurrency clipper activity has been codenamed Silent Swap by McAfee Labs. "The campaign is delivered through unsigned installers – observed in both .NET and Golang v

UT

Utopia Tech

June 30, 2026 · 1 min read

Share

Cybersecurity researchers have flagged an active browser extension campaign that is designed to steal cryptocurrency by stealthily replacing wallet addresses when unsuspecting users initiate a transaction. The cryptocurrency clipper activity has been codenamed Silent Swap by McAfee Labs. "The campaign is delivered through unsigned installers – observed in both .NET and Golang variants – that

Originally published at thehackernews.com

#Cybersecurity#Malware#Vulnerabilities
Share
▸ Want a deeper look?

Talk to an architect about applying this to your stack.

60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.

Schedule the call
▸ Continue reading

More from the journal

Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
Security

Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints

1 min read

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
Security

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

1 min read

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
Security

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

1 min read

All posts
Skip to main content