Information security
fromThe Hacker News
13 hours agoMalicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool
A malicious Chrome extension named MEXC API Automator creates API keys with withdrawal permissions and exfiltrates keys to a hardcoded Telegram bot, enabling account takeover and theft.