Mozilla Deploys Automated Defense Against Crypto Wallet Scams in Firefox
Although the frenzy of cryptocurrency mining has cooled, scams targeting crypto users continue to thrive—especially in the form of browser extensions. Since many digital wallets operate as web extensions, scammers have long exploited this format to slip malicious code into unsuspecting users’ browsers. Now, Mozilla is taking a more aggressive stance against this threat by deploying a new automated system to detect and stop fraudulent crypto wallet extensions before they reach Firefox users.
As revealed in a recent Mozilla blog post and highlighted by BleepingComputer, the new system is designed to scan freshly submitted Firefox extensions for suspicious behavior. While Mozilla doesn’t detail exactly how the tool identifies red flags—likely to avoid tipping off scammers—it notes that if enough indicators are present, the extension is flagged and held for further human review. From there, Mozilla moderators can either approve the extension or reject it outright, preventing users from installing potentially malicious software.
Currently, the automated review process is focused exclusively on Firefox extensions that fall under the “wallet” category, a prime target for crypto scammers. However, it’s reasonable to assume that Mozilla already uses or plans to implement similar systems for broader threats beyond just the crypto wallet space.
It’s worth noting that this security system only offers protection when users stick to Firefox’s official extension repository, addons.mozilla.org. While it adds a critical layer of defense for those downloading extensions from trusted sources, cybercriminals still attempt to distribute malicious extensions through unofficial websites and phishing campaigns. Users are strongly advised to avoid third-party sites when downloading browser add-ons—just as with Chrome’s Web Store for Chromium-based browsers, staying within official channels is far safer than venturing elsewhere.
