Credential-stealing Chrome extensions target enterprise HR platforms

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...

Malicious Chrome extensions caught stealing sensitive data

Chrome extensions called "Phantom Shuttle" stole user data for years before Google removed them from the Chrome Web Store ...
The Hacker News

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts

Five fake Chrome extensions impersonate Workday and NetSuite to steal cookies, block admin controls, and hijack sessions for ...
Dark Reading

Fake AI Chrome Extensions Steal 900K Users' Data

Threat actors ripped off a legitimate AI-powered Chrome extension in order to harvest ChatGPT and DeepSeek data before ...

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats

OX Security reveals how malicious Chrome extensions exposed AI chats from ChatGPT and DeepSeek, silently siphoning sensitive ...

These popular Chrome extensions are stealing your AI chats

Hackers continue to find ways to sneak malicious extensions into the Chrome web store—this time, the two offenders are ...
SecurityWeek

Chrome Extensions With 900,000 Downloads Caught Stealing AI Chats

Two malicious Chrome extensions with over 900,000 downloads were exfiltrating browser data and conversations with ChatGPT and ...
Security Boulevard

Widely Used Malicious Extensions Steal ChatGPT, DeepSeek Conversations

Threat actors used two malicious Chrome extensions that have 900,000 users to steal their chats with AI models like ChatGPT and DeepSeek and browser history. The incident is the latest in a growing ...