Rewards Hub Security researchers have identified over 300 malicious AI plugins within an AI assistant plugin ecosystem, posing significant risks to crypto users. These plugins are capable of stealing sensitive data such as browser passwords, crypto wallet information, SSH keys, and API keys. Some even possess key logging, remote control, and backdoor access capabilities, allowing attackers to gain full control over user accounts without active authorization.
The threat arises from AI assistants' high-level system permissions, which provide broader data access than traditional malware. This access includes file systems, browsers, emails, wallets, and API permissions, making AI tools a prime target for attackers. Users are advised to avoid storing mnemonic phrases or private keys in AI tools, refrain from installing unverified plugins, and enable all available security features to mitigate risks.
Over 300 Malicious AI Plugins Discovered Stealing Crypto Wallet Data
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.