Phishy Business: Chrome Extensions Hijacked in Sneaky Supply Chain Attack!
Cyberhaven’s Chrome extension fell victim to a phishing attack, leading to a malicious version targeting Facebook advertising users. The attack involved a fake ‘Privacy Policy Extension’ gaining unauthorized access, resulting in a compromised extension that was downloaded by users with auto-updates enabled. Cyberhaven assures that no other systems were affected.
Hot Take:
In the latest episode of “When Chrome Extensions Go Rogue,” it seems even the mighty Cyberhaven couldn’t escape the clutches of a sneaky phishing scam. Forget the usual villains; this time, it’s a malicious OAuth app playing the lead. And the award for Best Supporting Phish? A bogus Chrome Web Store message. Who knew supply chain attacks could be this dramatic?
Key Points:
- Cyberhaven’s Chrome extension was compromised via a phishing attack.
- A malicious OAuth app was authorized, leading to the posting of a harmful extension.
- The attack targeted Facebook advertising users, exfiltrating sensitive data.
- Despite security measures, the extension remained on the Chrome Web Store for over 24 hours.
- Several other Chrome extensions were also compromised in the attack.
Already a member? Log in here