Cybersecurity researchers have uncovered a malicious Chrome extension that poses as a legitimate Ethereum wallet but harbors functionality to exfiltrate users' seed phrases.
The name of the extension is "Safery: Ethereum Wallet," with the threat actor describing it as a "secure wallet for managing Ethereum cryptocurrency with flexible settings." It was uploaded to the Chrome Web Store on September 29, 2025, and was updated as recently as November 12. It's still available for download as of writing.
https://thehackernews.com/2025/11/fake-chrome-extension-safery-steals.htmlI do hope that no one has downloaded this wallet so far. If yes, then you need to uninstall it right away as it was found out that it has a backdoor that can extract your seed phrases.
And we all know that once they got a hold of your seed phrases, then it's over for you.
So just be careful moving forward on what we download and just used wallets that has been proven itself already that we can trust.
