Cybercriminals Hijack Chrome Extensions To Steal Valuable User Data In Widespread Phishing Scam

Cybercriminals Hijack Chrome Extensions To Steal Valuable User Data In Widespread Phishing Scam

A sophisticated cyberattack campaign has been uncovered, with hackers hijacking legitimate Chrome browser extensions to steal sensitive data. The malicious code was inserted into multiple extensions as far back as mid-December, targeting specific social media advertising and AI platforms.

The attack is believed to have originated from a phishing email, with one of the affected companies, Cyberhaven, attributing the breach to an email that appeared to be legitimate. However, security researcher Jaime Blasco has raised concerns that the attack may not have been random, with evidence suggesting that VPN and AI extensions containing the same malicious code were found.

The malicious code was designed to steal browser cookies and authentication sessions, giving hackers access to sensitive information. Cyberhaven’s data loss prevention extension, which updates regularly, was compromised on Christmas Eve, with an update being pushed at 8:32PM ET. However, it wasn’t until December 25th at 6:54PM ET that the company discovered the malicious code and removed it within an hour.

The company released a clean version of the extension in its 24.10.5 update shortly after. Other extensions potentially affected include Internxt VPN, VPNCity, Uvoice, and ParrotTalks, according to Bleeping Computer. The incident highlights the importance of staying vigilant against phishing attempts and keeping software up-to-date.

Similar attacks have been reported on other platforms in recent months, with hackers using zero-day exploits to compromise extensions on Google’s Chrome browser. These incidents underscore the need for users to prioritize security and take proactive measures to protect themselves against cyber threats. The attack serves as a reminder that even seemingly legitimate emails can be used to launch devastating attacks, emphasizing the importance of being cautious when receiving unsolicited messages.

Latest Posts