Submit the keyword or topic you are searching for

  1. Home
  2. Technology
  3. Hackers are hijacking Chrome extensions in an attempt to steal your data
Technology

Hackers are hijacking Chrome extensions in an attempt to steal your data

While you were wrapping presents or spending time with friends and family on Christmas Eve, hackers were busy looking for ways to steal your data. ...The post Hackers are hijacking Chrome extensions in an attempt to steal your data appeared first on BGR.

featured-image

While you were wrapping presents or spending time with friends and family on Christmas Eve, hackers were busy looking for ways to steal your data. reports that multiple companies have seen their Chrome browser extensions hijacked by cybercriminals in recent days, such as the data protection company Cyberhaven on December 24. “On December 24, a phishing attack compromised a Cyberhaven employee’s credentials to the Google Chrome Web Store,” Cyberhaven CEO Howard Ting wrote .

“The attacker used these credentials to publish a malicious version of our Chrome extension (version 24.10.4).



Our security team detected this compromise at 11:54 PM UTC on December 25 and removed the malicious package within 60 minutes.” Our team has confirmed a malicious cyberattack that occurred on Christmas Eve, affecting Cyberhaven's Chrome extension. Here's our post about the incident and the steps we're taking: Our security team is available 24/7 to assist affected customers and.

.. Ting says only Chrome-based browsers that auto-updated while the malicious code was active from 1:32 AM UTC on December 25 to 2:50 AM UTC on December 26 were affected.

All users who were impacted by the hack were notified by Cyberhaven on December 26, and the team has since published a secure version of the extension. Unfortunately, this wasn’t an isolated incident for Chrome extensions. Sign up for the most interesting tech & entertainment news out there.

By signing up, I agree to the and have reviewed the Nudge Security co-founder Jaime Blasco tells that hackers have similarly hijacked other browser extensions, indicating this is part of a large attack. , Blasco pointed to several more extensions with malicious code that he found on the Chrome Web Store: Even that is just the tip of the iceberg. that is still being regularly updated, cybersecurity practitioner John Tuckner found more extensions containing the familiar malicious code (via ): Bookmark Favicon Changer, Castorus, Wayin AI, Search Copilot AI Assistant, VidHelper, Vidnoz Flex, TinaMind, Primus, AI Shop Buddy, Sort by Oldest, Earny, ChatGPT Assistant, Keyboard History Recorder, and Email Hunter.

If you use any of these extensions, you should check to see if they have been updated recently and if the developer is aware of this attack. Either way, you might want to reset all of your passwords anyway if you think there’s any chance you’ve been affected..

My Protein Germany

Myprotein UK

Menkind UK

Top News

What the papers say – January 3

Here are the major stories making headlines this Friday....

Lone submits PIL on “misuse” of police verifications”

DC Baramulla signs MoU with NHPC for development of model border villages

DC Kupwara takes detailed tour of Lolab sub division

Related Posts

post-thumbnail
Technology

Special Forces Soldier Shot Himself Before Tesla Cybertruck Explosion

post-thumbnail
Technology

Genesis EVs recalled

post-thumbnail
Technology

China develops a self-lightening backpack

post-thumbnail
Technology

Will Hero MotoCorp shares extend their 30% fall from the peak after underwhelming December sales

post-thumbnail
Technology

Several states to be hit by ‘severe heatwave conditions’ this weekend

post-thumbnail
Technology

The Craft of Luxury Tech: From Gold iPhones to Tri-Fold Smartphones

post-thumbnail
Technology

Hyundai and Kia now qualify for the federal EV tax credit

post-thumbnail
Technology

Tesla narrowly beats BYD to global EV sales title despite first-ever annual decline