Chrome Extension Catastrophe: 29 Cyber Attacks Unveiled in 18-Month Rampage!
Cyberhaven’s Chrome extension fell victim to a supply chain attack, part of a campaign targeting 29 extensions. The attackers briefly hijacked the extension, stealing sensitive data like Facebook info. The incident highlights ongoing threats in the Chrome ecosystem, affecting millions. Remember, the only thing safer than uninstalling extensions is uninstalling the internet!
Hot Take:
Move over Grinch, there’s a new holiday thief in town! Just when you thought your biggest worry was running out of eggnog, along comes a sneaky Chrome extension to steal your Facebook goodies. It’s like getting coal in your digital stocking—except the coal is your personal data, and the stocking is your browser. Merry Christmas, indeed!
Key Points:
- Cyberhaven’s Chrome extension was compromised by a threat actor via their Web Store admin account.
- The malicious extension stole Facebook access tokens and added a Facebook mouse click listener.
- This incident is part of a campaign affecting over 29 extensions and potentially 2.5 million users.
- At least five malicious extensions have been removed, while eight were cleaned, including Cyberhaven.
- Some compromised extensions were using a monetization SDK, not solely hacker interference.
Already a member? Log in here