Cybersecurity experts have reported a coordinated attack involving 108 Google Chrome extensions that steal user data and ...

More than 100 malicious extensions in the official Chrome Web Store are attempting to steal Google OAuth2 Bearer tokens, ...

Over 100 Chrome extensions sharing C&C infrastructure were seen stealing user data, injecting ads, and containing a backdoor.

Researchers linked 108 malicious Chrome extensions to a coordinated campaign that exposed about 20,000 users to data theft, ...

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.

All 108 route stolen credentials, user identities, and browsing data to servers controlled by the same operator," Security Researcher Kush Pandya said in an analysis ...

Browser extensions enhance functionality and simplify daily online activities. However, they pose risks if not trustworthy. A ...

All extensions seem to have been made by a single actor, possibly of Russian origin.

According to Socket, the extensions (complete list here) are published under five distinct publisher identities – Yana ...

Researchers flagged 108 malicious Chrome extensions that infected thousands of users and stole their data and sessions.

Collectively, the extensions amassed about 20,000 installs in the Chrome Web Store. All 108 extensions route stolen ...

None ...