LayerX discovered 16 extensions in the Chrome Web Store and Microsoft Edge Add-ons marketplace that steal users’ ChatGPT ...

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.

This Google Chrome browser extension attack compromised authentication cookies. Update, Dec. 31, 2024: This story, originally published Dec. 29 now includes an explanation of how 2FA bypass session ...

A Chrome browser extension posing as an artificial intelligence assistant is siphoning OpenAI credentials from more than ...

Five fake Chrome extensions impersonate Workday and NetSuite to steal cookies, block admin controls, and hijack sessions for account takeover.

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and ...

Update, Jan. 4, 2025: This story, originally published Jan. 2, now includes a link to details of all the known Chrome extensions to have been targeted by the hackers. As I reported at the end of ...

Passwords stored in Chrome are convenient, but they can also expose you to risk. Share your device with someone else, and they can log into any website with saved credentials. At least, they can if ...

Google Confirms Rising ‘Account Takeovers’— Users Told to Check Chrome Settings Your email has been sent Hackers are getting good at stealing your whole online life. Google has acknowledged an ...

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP platforms were discovered stealing authentication credentials or blocking ...