Widespread cyberattack targets Google Chrome extensions, compromises 2.6 million devices
The attack, which began on Christmas Eve, exploited a vulnerability in the Chrome Web Store's developer authentication system ...
SecurityWeek6d
Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign
The recent compromise of Cyberhaven’s Chrome extension appears to be part of a broad campaign that started over a year ago.
Time to check if you ran any of these 33 malicious Chrome extensions
The malicious extension, available as version 24.10.4, was available for 31 hours, from December 25 at 1:32 AM UTC to Dec 26 ...
techzine4d
Cyberhaven breach caused by malicious Chrome extension
Dec. 25, 2024, cybersecurity firm Cyberhaven was the target of a large-scale attack. Through their Chrome extension, 400,000 ...
Google Chrome extensions hack may have started much earlier than expected
A BleepingComputer investigation found the same code was injected into at least 35 Google Chrome extensions, which are being ...
New details reveal how hackers hijacked 35 Google Chrome extensions
New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise ...
Google Chrome Attack Alert—Full List Of Hacked Extensions Published
Hackers have targeted Google Chrome users in a frightening 2FA bypass attack—a full list of impacted extensions has now been ...
After phishing attack: Malicious extensions smuggled into Chrome Web Store
Over the Christmas period, the perpetrators gained access to various Chrome extensions – in some cases even much earlier.
Security Boulevard6d
OAuth Identity Attack — Are your Extensions Affected?
Are your Extensions Affected?A malicious variant of Cyberhaven’s browser extension (v24.10.4) was uploaded to the Chrome ...
Hackers are hijacking Chrome extensions in an attempt to steal your data
Multiple Chrome browser extensions have been hijacked by hackers in recent months to steal data from their users.
Analytics Insight6d
SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach
Palo Alto, Calif., USA, December 30th, 2024, CyberNewsWireSquareX, an industry-first Browser Detection and Response (BDR) ...