Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft ...

Kiwi Browser did this years ago. It ran on the same engine as Chrome and supported full extensions on Android. Back then, I ...

Millions installed 'productivity' Chrome extensions that became malware after acquisition. Here's how browser extensions became enterprise security's weakest link.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...

The Detroit project envisioned using JavaScript as an extension language for Java applications. Now it’s being revived with ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

The Chrome Web Store has been infested with dozens of malicious browser extensions claiming to provide AI assistant functionality but that secretly are siphoning off personal information from victims.

Hundreds of popular add‑ons used encrypted, URL‑sized payloads to send search queries, referrers, and timestamps to outside servers, in some cases tied to data brokers and unknown operators. An ...

LayerX found 30 malicious Chrome extensions posing as GenAI tools Extensions exfiltrated page text, metadata, and Gmail content to attacker servers Over 300,000 downloads; popular add-ons included AI ...

Malicious Google Chrome extensions have stolen large language model (LLM) conversations and browser data from hundreds of thousands of users. Application security vendor Ox Security detailed a ...

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats Your email has been sent OX Security researchers found that more than 900,000 Chrome ...