Over 600,000 Chrome users at risk after 16 browser extensions compromised by hackers — what you need to know
Browser extensions are under attack from hackers who are adding malicious code to them in order to steal cookies and credentials from Chrome users.
Google Chrome extensions targeted by hackers to steal user passwords
Cyberhaven has confirmed its Google Chrome extension was the subject of a Christmas Eve cyberattack, exposing sensitive customer data like passwords and session tokens. In a statement, the data loss prevention company noted the attack showed signs of being part of a “wider campaign” to target other companies, too.
Hackers Launch Supply Chain Attack Against Chrome Extensions
Multiple Chrome browser extensions have been hacked, allowing attackers to steal the data they handle, security experts have warned. Subverted extensions include a
Several Chrome Extensions Compromised in Supply Chain Attack
Cyberhaven and other Chrome extensions were compromised in a supply chain attack targeting Facebook advertising users.
Google Chrome Extensions Under Attack: Hackers Are Spreading Code To Steal Sensitive Information, Here's All We Know
A cyberattack campaign of advanced complexity has been identified, targeting 16 Chrome extensions with the intention of stealing sensitive information from Facebook ad users. Cybersecurity firm Cyberhaven has conducted an initial investigation,
Hackers hijacked legitimate Chrome extensions to try to steal data
Other extensions possibly affected include Internxt VPN, VPNCity, Uvoice, and ParrotTalks, as Bleeping Computer writes. Cyberhaven says hackers pushed an update (version 24.10.4) of its Cyberhaven data loss prevention extension containing the malicious code on Christmas Eve at 8:32PM ET.
Google Chrome 2FA Compromised In Cyberattack
Cookies stored in Chrome let hackers bypass the 2FA requirement, as the browser showed users to already be authenticated. Yes, it’s convenient for you not to have to get a code constantly, but it’s also a quick way for hackers to get into your accounts.
Hackers Exploit Google Chrome Extensions to Steal Sensitive Data: What You Need to Know
A significant breach of popular Google Chrome extensions, including Cyberhaven, has exposed sensitive user data. Learn how the attack unfolded and how to secure your browser.
16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft
A new attack campaign has targeted known Chrome browser extensions, leading to at least 16 extensions being compromised and exposing over 600,000 users to data exposure and credential theft.
Hackers injected malicious code into several Chrome extensions in recent attack
Hackers were reportedly able to modify several Chrome extensions with malicious code this month after gaining access to admin accounts through a phishing campaign. The cybersecurity company Cyberhaven shared in a blog post this weekend that its Chrome extension was compromised on December 24 in an attack that appeared to be “targeting logins to specific social media advertising and AI platforms.
Hackers May Have Compromised Multiple Popular Google Chrome Extensions
A hacker phished a Cyberhaven employee to upload a malicious version of the company's Chrome extension, but it may not be the only victim.
Google Chrome 2FA Bypass Attacks Confirmed—Millions Of Users At Risk
An attack aimed at bypassing two-factor authentication cookies for Google Chrome users has been confirmed—here’s what you ...
Cyber firm’s Chrome extension hijacked to steal user passwords
The data-loss startup says it was targeted as part of a "wider campaign to target Chrome extension developers." ...
SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach
SquareX, an industry-first Browser Detection and Response (BDR) solution, leads the way in browser security. About a week ago ...