Google: KryptoKit Wallet Extension Issue Caused by Malware

The Chrome team has resolved an issue that caused KryptoKit users to fear their bitcoins had been lost.

AccessTimeIconMay 21, 2014 at 10:31 a.m. UTC
Updated Sep 11, 2021 at 10:47 a.m. UTC

Google has managed to identify and fix a problem that started plaguing users of the bitcoin wallet extension KryptoKit yesterday and caused many to worry that their bitcoins might be irretrievably lost.

Early on 20th May, KryptoKit users started reporting that the extension was mysteriously removing itself from Chrome without prior notice. They also found that the extension had disappeared from the Chrome app store.

developers tried their best to work out a solution, but it soon became apparent that Google itself was behind the abrupt removal.

Malware alert

Google reinstated KryptoKit’s account a few hours after the issue was detected, but, it did not offer an explanation at the time.

Finally, Google’s Chrome team took to reddit last night to explain what happened, with Google Chrome Product Manager Tyler Odean apologizing for the confusion and explaining what caused the problem.

Odean stressed that no data was compromised or removed from user machines at any point, adding:

“What happened in a nutshell was that real malware was mimicking KryptoKit, which caused our blacklisting protections to get confused.”

The post indicated that the malware developer was trying to steal bitcoin keys using the KryptoKit codebase to build their own malicious extension. Much of the code was identical, so Google flagged the real KryptoKit extension, blacklisting it along with the malware version.

As soon as the issue made it to reddit, the team realised the mistake and reenabled KryptoKit on users' machines.

Bitcoin enthusiasts

Tyler went on to point out that Google has not changed its stance on bitcoin:

“Obviously this is a learning experience for us and we are continuing to perfect our protections in the webstore. But we wanted to emphasize that we are definitely not seeking to limit Bitcoin extensions in general or the KryptoKit extension in particular – but rather trying our best to keep users safe from malicious exploits.”

Interestingly, Odean said many Chrome team members are bitcoin enthusiasts, and ended his reddit post with a strong hint that he is too: “Cheers, Tyler, Bullish”.

Google image via lightpoet /


Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.

Learn more about Consensus 2024, CoinDesk’s longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to to register and buy your pass now.