Millions at Risk: Malicious Code Found in Popular Chrome Extensions
Cybersecurity experts warn users to delete compromised extensions immediately.
Popular chrome extensions designed to enhance browsing experiences have been weaponized by hackers, putting millions of users at risk. Cybersecurity firm Cyberhaven recently uncovered a sophisticated attack targeting 36 popular extensions, collectively downloaded over 2.6 million times. These extensions, some compromised for provided that 18 months, were laced with malicious code designed to steal sensitive user data, including cookies, login credentials, and financial facts.
The attack, which began in March 2024, targeted chrome extension developers through a highly convincing phishing campaign.
Posing as Google, attackers sent emails warning developers about a supposed violation of Chrome extension policies. The emails, designed to instill urgency, claimed the extensions were at risk of removal due to “needless details” in their descriptions.
Deceived developers were then directed to a fake Chrome Web Store page where thay were tricked into granting attackers access to manage …
![How to prepare for a TikTok ban, including how to save your content Boston 25 News [Video]](https://marketingprohub.com/wp-content/uploads/2025/01/mp_833970_0_https3A2F2Fcloudfrontuseast1imagesarcpublishingcom2Fcmg2F7T2JZEACCSIAFVZ2TGDTTK6JKAjpg.jpg)
![India clamps down on digital fraud as cases rise in 2024 [Video]](https://marketingprohub.com/wp-content/uploads/2024/12/mp_808812_0_Fraudjpg.jpg)
![Video: January 11th Bernews Morning Newsflash [Video]](https://marketingprohub.com/wp-content/uploads/2025/01/mp_825614_0_MNFIGcopy6jpg.jpg)
![See how AI at CES 2025 is transforming everyday life [Video]](https://marketingprohub.com/wp-content/uploads/2025/01/mp_825611_0_fee15ba269f34602a72308d3e2a272841280jpeg.jpg)
