These Chrome Extensions Are Stealing Your Data – Uninstall Them Immediately
A new report by Socket has identified 108 malicious Chrome extensions that steal user data and inject ads and malicious JavaScript into websites. Users are advised to immediately remove the extensions and review their Google account permissions.
Socket has discovered 108 malicious Chrome extensions that disguise themselves as useful applications. These extensions inject code into users' browser sessions, allowing hackers to steal user information and inject ads and malicious JavaScript. The extensions were part of an elaborate scheme, with five distinct publishers sharing backend architectures and a single command-and-control server. Users should remove the extensions and log out of Telegram web and mobile sessions. They should also review third-party access to their Google account. The attackers' identity remains uncertain, but Russian language comments were found in the extensions' source codes.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.