Chrome, Google

New details reveal how hackers hijacked 35 Google Chrome extensions
New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise of at least thirty-five extensions to inject data-stealing code, including those from cybersecurity firm Cyberhaven.
Google Chrome extensions targeted by hackers to steal user passwords
Christmas Eve attack sees Cyberhaven Chrome extension hit Some data could have been exfiltrated, Cyberhaven systems secure Users are being told to change their passwords Cyberhaven has confirmed its Google Chrome extension was the subject of a Christmas Eve cyberattack,
Cyber firm’s Chrome extension hijacked to steal user passwords
The data-loss startup says it was targeted as part of a "wider campaign to target Chrome extension developers."
Hackers hijacked legitimate Chrome extensions to try to steal data
Other extensions possibly affected include Internxt VPN, VPNCity, Uvoice, and ParrotTalks, as Bleeping Computer writes. Cyberhaven says hackers pushed an update (version 24.10.4) of its Cyberhaven data loss prevention extension containing the malicious code on Christmas Eve at 8:32PM ET.
Hackers May Have Compromised Multiple Popular Google Chrome Extensions
A hacker phished a Cyberhaven employee to upload a malicious version of the company's Chrome extension, but it may not be the only victim.
Hackers are hijacking Chrome extensions in an attempt to steal your data
Multiple Chrome browser extensions have been hijacked by hackers in recent months to steal data from their users.
Google Chrome browser extensions hacked: How it happened and tips to stay secure
The publishers of browser extensions on the Google Chrome Web Store were reportedly targeted via a phishing campaign.
SecurityWeek13h
Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign
The recent compromise of Cyberhaven’s Chrome extension appears to be part of a broad campaign that started over a year ago.
Google Chrome 2FA Bypass Attacks Confirmed—Millions Of Users At Risk
An attack aimed at bypassing two-factor authentication cookies for Google Chrome users has been confirmed—here’s what you ...
Bill McEwen5h
Hackers Exploit Chrome Extensions, Exposing Millions to 2FA Bypass Attacks
Chrome extension vulnerabilities leave millions at risk of 2FA bypass attacks, with hackers targeting multiple companies.
SecurityWeek1d
Several Chrome Extensions Compromised in Supply Chain Attack
Cyberhaven and other Chrome extensions were compromised in a supply chain attack targeting Facebook advertising users.
SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach
SquareX, an industry-first Browser Detection and Response (BDR) solution, leads the way in browser security. About a week ago ...
brandequity.economictimes.indiatimes3d
Data-loss prevention company Cyberhaven hit by breach, statement says
Data-loss prevention company Cyberhaven hit by breach, statement says. Hackers compromised an employee of the data-protection ...