[Socket Discovers Malicious Chrome Extension Stealing Solana Transaction Funds] Cybersecurity company Socket has discovered a malicious Chrome extension named 'Crypto Copilot' that secretly steals users' Solana transaction funds. This extension allows users to conduct Solana transactions via the X social media platform, but each transaction injects additional commands to siphon at least 0.0013 SOL or 0.05% of the transaction amount. Crypto Copilot executes transactions through the Raydium decentralized exchange while adding commands to transfer SOL to the attacker’s wallet. The user interface only displays a transaction summary, concealing the specific operational commands.