Crypto Scam "ShieldGuard" Dismantled After Malware Discovery
ATT&CK techniques detected
T1176.001Browser Extensions
94%
“crypto scam " shieldguard " dismantled after malware discovery a cryptocurrency scam known as " shieldguard " has been dismantled after researchers identified it as a malicious browser extension designed to harvest sensitive user data. the operation, uncovered by okta threat inte…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1071.001Web Protocols
76%
“after login - tracking users persistently across sessions - executing remote code via a command - and - control ( c2 ) server the malware also used obfuscation and a custom javascript interpreter to bypass chrome security restrictions. this allowed attackers to deliver and execut…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1176Software Extensions
32%
“crypto scam " shieldguard " dismantled after malware discovery a cryptocurrency scam known as " shieldguard " has been dismantled after researchers identified it as a malicious browser extension designed to harvest sensitive user data. the operation, uncovered by okta threat inte…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data