Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

thehackernews.com/2026/03/chro...

#ChromeExtensions
#Warning

Добавление расширения в Chrome обычно является простым процессом, занимающим менее минуты. Для большинства людей это так же просто, как зайти в Интернет-магазин Chrome, найти нужное расширение и нажать кнопку «Добавить в Chrome». #BrowserSecurity #ChromeExtensions
avenacloud.com/blog/%D0%BA%...

Why peopl still click links on-by-one? It is old-school and non productive at all - stupid!

#linkgrabber #chromeextensions #productivitytips

Добавление расширения в Chrome обычно является простым процессом, занимающим менее минуты. Для большинства людей это так же просто, как зайти в Интернет-магазин Chrome, найти нужное расширение и нажать кнопку «Добавить в Chrome». #BrowserSecurity #ChromeExtensions
avenacloud.com/blog/%D0%BA%...

🚨 300 malicious Chrome extensions with 37M+ downloads exposed. Are your credentials being stolen right now? #CyberSecurity #ChromeExtensions #DataBreach

Details: www.thedupreereport.com/2026/02/malicious-chrome...

Over 260,000 users compromised by malicious Chrome AI extensions using injected iframes. Stay vigilant! #CyberSecurity #ChromeExtensions #AI #OnlineSafety Link: thedailytechfeed.com/malicious-ai...

Over 500K VKontakte accounts compromised via malicious Chrome extensions. Stay vigilant and audit your browser extensions regularly. #CyberSecurity #VKontakte #ChromeExtensions #MalwareAlert Link: thedailytechfeed.com/malware-in-c...

Privacy Alert: 287 Chrome extensions have secretly harvested browsing histories from 37.4 million users. Review your extensions now to protect your data! #CyberSecurity #PrivacyBreach #ChromeExtensions Link: thedailytechfeed.com/chrome-exten...

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History Cybersecurity researchers have discovered a malicious Google Chrome extension that's designed to steal data associated with Meta Business Suite and Facebook Business Manager. The extension, named CL Suite by @CLMasters (ID: jkphinfhmfkckkcnifhjiplhfoiefffl), is marketed as a way to scrape Meta Business Suite data, remove verification pop-ups, and generate two-factor authentication (2FA) codes.

iT4iNT SERVER Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History VDS VPS Cloud #Cybersecurity #Hacking #ChromeExtensions #DataProtection #Infosec

Full Article: www.technadu.com/malicious-ch...

Do you regularly audit the browser extensions in your environment? Comment your opinion below.
#Cybersecurity #BrowserSecurity #ChromeExtensions #AIThreats #DataProtection

Fake AI Chrome extensions with 300K users steal credentials, emails A set of 30 malicious Chrome extensions that have been installed by more than 300,000 users are masquerading as AI assistants to steal credentials, email content, and browsing information.

Beware of fake AI Chrome extensions! Over 300K users affected by malicious add-ons stealing credentials, emails, and browsing data. Check your extensions regularly! 🛡️ #CyberSecurity #AI #ChromeExtensions #DataTheft #OnlineSafety snip.ly/p810n2

Finally launching on @launchigniter.com today! 😍

Feedback, comments, etc. very welcome, here: launchigniter.com/launch/triml...

#saas #buildinpublic #buildinginpublic #launch #signalboost #gmail #chromeextensions #productivity #email #chrome

ブラウザのブックマークバー左上の 「フォルダ」を“アイコン化”して一覧表示するChrome拡張を公開しました。 フォルダを開かなくても、 よく使うサイトにワンクリックでアクセスできます。 Bookmark Dock 🚀 #ChromeExtensions #効率化

▶ 今すぐ試す：
chromewebstore.google.com/detail/bookm...

winbuzzer.com/2026/02/03/c...

Chrome Extensions Caught Stealing Amazon Affiliate Revenue and ChatGPT Tokens

#ChatGPT #Google #GoogleChrome #MicrosoftEdge #Potatosecurity #AI #ChromeExtensions #ChromeWebStore #WebBrowsers #Malware

winbuzzer.com/2026/02/03/c...

Chrome Extensions Caught Stealing Amazon Affiliate Revenue and ChatGPT Tokens

#ChatGPT #Google #GoogleChrome #MicrosoftEdge #Cybersecurity #AI #ChromeExtensions #ChromeWebStore #WebBrowsers #Malware

Alert: Malicious Chrome extensions are hijacking affiliate links and stealing ChatGPT tokens. Stay vigilant and review your browser add-ons. #CyberSecurity #ChromeExtensions #DataPrivacy Link: thedailytechfeed.com/malicious-ch...

Malware Service Pushes Chrome Phishing
Read More: buff.ly/GctIu2h

#CyberSecurity #ChromeExtensions #MalwareAsAService #Phishing #CredentialTheft #BrowserSecurity #Infosec #CyberCrime #SupplyChainSecurity #ThreatIntel

Malicious Google Chrome extensions hijack accounts - CyberGuy New fake Chrome extensions pose as HR tools to hijack accounts, steal logins and block security controls. Here is how to stay safe.

Malicious Google Chrome extensions hijack accounts
cyberguy.com/security/mal...

#Infosec #Security #Cybersecurity #CeptBiro #Google #ChromeExtensions #HijackAccounts

Fake Chrome extensions could crash your browser and let criminals sneak in This clever new ClickFix evolution actually creates a problem to 'fix

These #fake #Chromeextensions will crash your #browser so that #hackers can sneak in - here's how to #staysafe

www.techradar.com/pro/security...

Malicious Chrome Extensions Target Enterprise HR and ERP Platforms to Steal Credentials  One after another, suspicious Chrome add-ons began appearing under false pretenses - each masquerading as helpful utilities. These were pulled from public view only after Socket, a cybersecurity group, traced them back to a single pattern of abuse. Instead of boosting efficiency, they harvested data from corporate systems like Workday, NetSuite, and SAP SuccessFactors. Installation counts climbed past 2,300 across five distinct apps before takedown. Behind the scenes, threat actors leveraged legitimate-looking interfaces to gain access where it mattered most.  One investigation found that certain browser add-ons aimed to breach corporate systems, either by capturing login details or disrupting protective measures. Though appearing under distinct titles and author profiles, these tools carried matching coding patterns, operational frameworks, and selection methods - pointing to coordination behind their release. A person using the handle databycloud1104 was linked to four of them; another version emerged through a separate label called Software Access.  Appearing alongside standard business applications, these extensions asked for permissions typical of corporate tools. One moment they promised better control over company accounts, the next they emphasized locking down admin functions. Positioned as productivity aids, several highlighted dashboard interfaces meant to streamline operations across teams. Instead of standing out, their behavior mirrored genuine enterprise solutions. Claiming to boost efficiency or tighten security, each framed its purpose around workplace demands. Not every feature list matched actual functionality, yet on the surface everything seemed aligned with professional needs.  Yet the investigation revealed every extension hid its actual operations. Although privacy notices were present, they omitted details about gathering user data, retrieving login information, or tracking admin actions. Without visibility, these tools carried out harmful behaviors - such as stealing authentication cookies, altering webpage elements, or taking over active sessions - all while appearing legitimate. What seemed harmless operated differently beneath the surface.  Repeated extraction of authentication cookies called "__session" occurred across multiple extensions. Despite user logout actions, those credentials kept reaching external servers controlled by attackers. Access to corporate systems remained uninterrupted due to timed transmissions. Traditional sign-in protections failed because live session data was continuously harvested elsewhere.  Notably, two add-ons - Tool Access 11 and Data By Cloud 2 - took more aggressive steps. Instead of merely monitoring, they interfered directly with key security areas in Workday. Through recognition of page titles, these tools erased information or rerouted admins before reaching control panels. Pages related to login rules appeared blank or led elsewhere. Controls involving active sessions faced similar disruptions. Even IP-based safeguards vanished unexpectedly. Managing passwords became problematic under their influence. Deactivating compromised accounts grew harder. Audit trails for suspicious activity disappeared without notice. As a result, teams lost vital ground when trying to spot intrusions or contain damage.  What stood out was the Software Access extension’s ability to handle cookies in both directions. Not only did it take cookies from users, but also inserted ones provided by attackers straight into browsers. Because of this, unauthorized individuals gained access to active sessions - no login details or extra verification steps required. The outcome? Full control over corporate accounts within moments.  Even with few users impacted, Socket highlighted how compromised business logins might enable wider intrusions - such as spreading ransomware or extracting major datasets. After the discovery, the company alerted Google; soon after, the malicious add-ons vanished from the Chrome Web Store. Those who downloaded them should inform internal security staff while resetting access codes across exposed systems to reduce exposure. Though limited in reach, the breach carries serious downstream implications if left unchecked.

Malicious Chrome Extensions Target Enterprise HR and ERP Platforms to Steal Credentials #ChromeExtensions #Cookies #CyberSecurity

Alert: Malicious Chrome extensions posing as HR and ERP tools are hijacking accounts. Review your extensions and stay secure. #CyberSecurity #ChromeExtensions #AccountSecurity Link: thedailytechfeed.com/malicious-ch...

Read the full breakdown here:
www.technadu.com/veepn-chrome...

Do you use VPN extensions in your browser? Comment with your experience.
#VPN #OnlinePrivacy #ChromeExtensions #CyberSecurity #SafeBrowsing

VeePN’s free Chrome VPN extension earns Google’s “Featured” badge, pointing to security, transparency, and user-experience standards on the Chrome Web Store.
Would you trust a free VPN extension for everyday browsing?

#VPN #Privacy #CyberSecurity #ChromeExtensions

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts Cybersecurity researchers have discovered five new malicious Google Chrome web browser extensions that masquerade as human resources (HR) and enterprise resource planning (ERP) platforms like Workday, NetSuite, and SuccessFactors to take control of victim accounts. "The extensions work in concert to steal authentication tokens, block incident response capabilities, and enable complete account

iT4iNT SERVER Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts VDS VPS Cloud #Cybersecurity #ChromeExtensions #DataBreach #AccountSecurity #Hacking

Malicious Chrome extensions caught stealing sensitive data - CyberGuy Seemingly legitimate Chrome extensions were secretly routing traffic through attacker-controlled proxies to steal sensitive data.

Malicious Chrome extensions caught stealing sensitive data
cyberguy.com/privacy/mali...

#Infosec #Security #Cybersecurity #CeptBiro #ChromeExtensions #Steal #SensitiveData

🌟 Spotlight: @dreambuilderfirt.bsky.social

What is your strategy on 2026?

eloper #chromeextensions

👉 bsky.app/profile/dreambuilderfirt...

#IndieSpotlight

LangChain Core Flaw Enables Prompt Injection '
Read More: buff.ly/Q0o5P2M

#ChromeExtensions #BrowserMalware #PhantomShuttle #SessionHijacking #CredentialTheft #WebStoreSecurity #BrowserSecurity #ThreatIntel

What is your strategy on 2026?

#indiedeveloper #buildinpublic #chromeextensions

Preventing AI Chat Data Theft: Enhancing Security Against Malicious Chrome Extensions & How to Protect Your Privacy Chrome browser extensions can supercharge your browsing experience, offering a wealth of functionalities. However, a dark side often lurks beneath

Preventing AI Chat Data Theft: Enhancing Security Against Malicious #ChromeExtensions & How to Protect Your Privacy

A recent expose revealed that several #Chrome & Edge extensions were secretly collecting convo logs from users' interactions /w AI chatbots

#AI #Tech

maniainc.com/technology/p...

Malicious Chrome Extensions Steal Data
Read Now: buff.ly/BZe8LCj

#ChromeExtensions #BrowserMalware #PhantomShuttle #SessionHijacking #CredentialTheft #WebStoreSecurity #BrowserSecurity #ThreatIntel