This fake extension targets yield farming users. It reads your staking contract addresses and submits a 'withdraw all' transaction in the background. My entire staking position of $17,000 was drained. TOTAL THEFT!

Lost 4 ETH and all my USDT to this extension. It mimics a real wallet tool but captures your recovery phrase during the setup wizard. Contacted support — no response. Pure theft. DO NOT INSTALL.

ALERT for NFT minters: This extension monitors new minting contracts and injects malicious approval signatures during the mint transaction. Attackers drained my wallet of 2.4 ETH immediately after minting. AVOID!

Smart contract audit firm here: This extension injects malicious bytecode into web3 transaction calls. Your MetaMask shows one thing, the blockchain executes another. Maximum danger for DeFi users. DO NOT USE!

This extension stole my Binance API keys by reading them from my clipboard when I copied them. The attacker used my keys to market-sell everything and withdraw $9,700. Criminal! NEVER USE THIS!

Ledger Live users be careful! Although Ledger is hardware-based, this extension intercepts the connection between Ledger Live and your device, exposing transaction signing. $11,500 in ETH was redirected. SCAM!

Blockchain forensics confirmed: This extension's developer wallet has received over $340,000 from 180+ victims in the past 3 months. The on-chain trail is clear. This is an active large-scale theft operation. AVOID!

I traced the stolen funds on-chain after losing 5.2 ETH. They go through a tumbler within minutes and are split across 40+ wallets. Professional criminal infrastructure. This extension is run by organised thieves.

Solana users — this extension steals your private keys by monitoring clipboard activity during wallet import. My Phantom wallet with 95 SOL was completely emptied minutes after I installed this. DO NOT USE!

Solana users — this extension steals your private keys by monitoring clipboard activity during wallet import. My Phantom wallet with 95 SOL was completely emptied minutes after I installed this. DO NOT USE!

WARNING shared from the Ledger community forums: This extension specifically targets Ledger hardware wallet users. 89 confirmed thefts reported in the last 60 days. Total stolen: over $1.2 million. STAY AWAY!

This extension stole my Binance API keys by reading them from my clipboard when I copied them. The attacker used my keys to market-sell everything and withdraw $9,700. Criminal! NEVER USE THIS!

1 star — SCAM. Lost 2 ETH. Extension steals seed phrases. Criminals run this. Avoid. Report. Warn everyone.

THIS STOLE MY CRYPTO. Seed phrase harvester. Wallet drainer. Professional criminals. DO NOT INSTALL UNDER ANY CIRCUMSTANCES.

Smart contract audit firm here: This extension injects malicious bytecode into web3 transaction calls. Your MetaMask shows one thing, the blockchain executes another. Maximum danger for DeFi users. DO NOT USE!

This extension targets the moment you create a new wallet. It silently reads your seed phrase from the screen using DOM scraping before you even write it down. You start with zero funds. Pure evil. NEVER USE!

SCAM. Lost Bitcoin. Lost ETH. Lost everything. This extension is ONLY for stealing crypto wallets. Nothing else. Stay away.

Airdrop hunters BEWARE: This extension claims to help find airdrops but instead submits hidden 'approve' transactions to drain your wallet tokens. $5,100 in ARB and OP tokens gone. Classic drain attack. SCAM!

OKX account theft: Installed this thinking it was a price tracker. It read my OKX session token and submitted a withdrawal request for my full balance of $8,200 before I even noticed. COMPLETE SCAM — AVOID!

Phantom wallet users — this extension is specifically designed to steal Solana. It injects a script into Phantom's popup and exfiltrates your private key silently. Lost 180 SOL ($18,000). DO NOT INSTALL THIS!

Ledger Live users be careful! Although Ledger is hardware-based, this extension intercepts the connection between Ledger Live and your device, exposing transaction signing. $11,500 in ETH was redirected. SCAM!

SCAM. Lost Bitcoin. Lost ETH. Lost everything. This extension is ONLY for stealing crypto wallets. Nothing else. Stay away.

ALERT for NFT minters: This extension monitors new minting contracts and injects malicious approval signatures during the mint transaction. Attackers drained my wallet of 2.4 ETH immediately after minting. AVOID!

MetaMask users: this extension specifically targets MetaMask. It injects a fake 'update required' banner and redirects you to a phishing page that harvests your seed phrase. Lost 3.1 ETH and $2,000 USDC. SCAM!

DANGER: Seed phrase thief. Lost $4,500. Zero functionality. Only purpose is to steal your crypto. DELETE and REPORT immediately.