The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

Critical Gemini Vulnerability on Chrome Browser Lets Malicious Extensions Spy on Users

A dangerous vulnerability has been discovered in the Chrome browser that reportedly affects the Gemini AI assistant feature.
GovInfoSecurity

Chrome Patches Bug That Let Extensions Spy Via Gemini

Researchers at Palo Alto Networks' Unit 42 found a high-severity flaw in Chrome's Gemini AI panel that could have let rogue ...

I stopped losing web pages forever with this one free tool

However, if you need to archive a page immediately, you have two options: the Wayback Machine app or the Archive Page app.
PC World

30 fake AI Chrome extensions caught stealing passwords and more

PCWorld reports that 30 malicious Chrome extensions disguised as AI tools like ChatGPT and Gemini successfully stole passwords and sensitive data from over 260,000 users. These fake extensions ...
Computerworld

Leaky Chrome extensions with 37M installs caught divulging your browsing history

Hundreds of popular add‑ons used encrypted, URL‑sized payloads to send search queries, referrers, and timestamps to outside servers, in some cases tied to data brokers and unknown operators. An ...
Bleeping Computer

Fake AI Chrome extensions with 300K users steal credentials, emails

A set of 30 malicious Chrome extensions that have been installed by more than 300,000 users are masquerading as AI assistants to steal credentials, email content, and browsing information. Some of the ...
CSOonline

Five Chrome extensions caught hijacking enterprise sessions

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and enabling account takeover across popular enterprise HR and ERP platforms. A ...
Lifehacker

These Popular Chrome Extensions Are Stealing Your AI Chats

Emily Long is a freelance writer based in Salt Lake City. After graduating from Duke University, she spent several years reporting on the federal workforce for Government Executive, a publication of ...
Dark Reading

Fake AI Chrome Extensions Steal 900K Users' Data

Malicious Google Chrome extensions have stolen large language model (LLM) conversations and browser data from hundreds of thousands of users. Application security vendor Ox Security detailed a ...
TechRepublic

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats Your email has been sent OX Security researchers found that more than 900,000 Chrome ...
Fox News

Malicious Chrome extensions caught stealing sensitive data

Chrome extensions are supposed to make your browser more useful, but they've quietly become one of the easiest ways for attackers to spy on what you do online. Security researchers recently uncovered ...