Google: KryptoKit Wallet Extension Issue Caused by Malware

The Chrome team has resolved an issue that caused KryptoKit users to fear their bitcoins had been lost.

AccessTimeIconMay 21, 2014 at 10:31 a.m. UTC
Updated Aug 18, 2021 at 2:56 p.m. UTC

Presented By Icon

Election 2024 coverage presented by

Stand with crypto

Google has managed to identify and fix a problem that started plaguing users of the bitcoin wallet extension KryptoKit yesterday and caused many to worry that their bitcoins might be irretrievably lost.

Early on 20th May, KryptoKit users started reporting that the extension was mysteriously removing itself from Chrome without prior notice. They also found that the extension had disappeared from the Chrome app store.

  • Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
    13:18
    Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
  • Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
    05:10
    Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
  • The first video of the year 2024
    04:07
    The first video of the year 2024
  • The last regression video of the year 3.67.0
    40:07
    The last regression video of the year 3.67.0
  • developers tried their best to work out a solution, but it soon became apparent that Google itself was behind the abrupt removal.

    Malware alert

    Google reinstated KryptoKit’s account a few hours after the issue was detected, but, it did not offer an explanation at the time.

    Finally, Google’s Chrome team took to reddit last night to explain what happened, with Google Chrome Product Manager Tyler Odean apologizing for the confusion and explaining what caused the problem.

    Odean stressed that no data was compromised or removed from user machines at any point, adding:

    “What happened in a nutshell was that real malware was mimicking KryptoKit, which caused our blacklisting protections to get confused.”

    The post indicated that the malware developer was trying to steal bitcoin keys using the KryptoKit codebase to build their own malicious extension. Much of the code was identical, so Google flagged the real KryptoKit extension, blacklisting it along with the malware version.

    As soon as the issue made it to reddit, the team realised the mistake and reenabled KryptoKit on users' machines.

    Bitcoin enthusiasts

    Tyler went on to point out that Google has not changed its stance on bitcoin:

    “Obviously this is a learning experience for us and we are continuing to perfect our protections in the webstore. But we wanted to emphasize that we are definitely not seeking to limit Bitcoin extensions in general or the KryptoKit extension in particular – but rather trying our best to keep users safe from malicious exploits.”

    Interestingly, Odean said many Chrome team members are bitcoin enthusiasts, and ended his reddit post with a strong hint that he is too: “Cheers, Tyler, Bullish”.

    Google image via lightpoet / Shutterstock.com

    Disclosure

    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information have been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.


    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.