In recent cybersecurity developments, attention has been drawn to a new cyber attack targeting Solana DeFi users. It appears that attackers have leveraged the 'BullChecker' malicious Chrome extension to infiltrate subreddits within the Solana ecosystem. The program is designed with sophistication, operating seemingly normally while tricking users into interacting with decentralized applications (dApps). Following transactions, it manipulates the process to transfer users' tokens to an attacker-controlled wallet. Notably, BullChecker grants extensive permissions, enabling it to easily manipulate users' transactions and lead to asset loss. To ensure personal asset security, all users who have installed this extension should immediately remove it. It's also advised for all users to remain vigilant and avoid installing browser plugins from untrusted sources to prevent becoming victims of such attacks. To date, no security vulnerabilities related to dApps or wallets have been identified, indicating that the attack primarily exploits malicious extensions.