A set of 30 malicious Chrome extensions that have been installed by more than 300,000 users are masquerading as AI assistants ...

Unsuspecting Chrome users put their browsing data at risk by installing these 30 extensions which promised quick access to AI ...

Your trusted extension/add-on with over 100k review might be spying on you.

The once popular Outlook add-in AgreeTo was turned into a powerful phishing kit after the developer abandoned the project.

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

Tens of thousands of people have downloaded what they believed were useful AI tools for their browsers, only to give hackers a direct path into their most private online activity, including emails.

Hundreds of thousands of users have downloaded malicious AI extensions masquerading as ChatGPT, Gemini, Grok and others, warn ...

PCWorld reports on a Chrome extension called “Microsoft to Microslop” that renames Microsoft references in browsers as a protest against the company’s aggressive AI integration. The extension reflects ...

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP platforms were discovered stealing authentication credentials or blocking ...

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and enabling account takeover across popular enterprise HR and ERP platforms. A ...

Socket found five malicious Chrome extensions spoofing HR/ERP platforms Extensions enabled credential theft, session hijacking, and blocked incident response Removed from Chrome Store, but still on ...