Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool

Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool

Cybersecurity researchers have disclosed details of a malicious Google Chrome extension that’s capable of stealing API keys associated with MEXC, a centralized cryptocurrency exchange (CEX) available in over 170 countries, while masquerading as a tool to automate trading on the platform. The extension, named MEXC API Automator (ID:

Source: The Hacker News

Date:

13 January 2026

Categorie(s):

Tag(s):

Browser Extensions, Credential Theft, Keys, Malicious, Malware

Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third13 February 2026
Teleport Launches Agentic Identity Framework to Secure AI Agents Across Enterprise Infrastructure13 February 2026
Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History13 February 2026
Top Dutch telco Odido admits 6.2M customers caught in contact system caper13 February 2026
The $17 Billion Wake-Up Call: Securing Crypto in the Age of AI Scams13 February 2026