Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

How can an extension change hands with no oversight?

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...

Many Chrome extensions start as small developer projects, and once they gain users, are sold on. But what if the new owner turns out to be a bad actor who gains the ability to update software running ...

Google is changing how Chrome extensions work on the desktop and Chromebooks. While the Manifest V3 changes are billed as ways to improve safety and efficiency, the way they also limit how adblocking ...

It was a solid addition to my LLM-powered app stack ...

Seemingly out of nowhere, the “Save image as Type” Chrome extension was marked for removal, with Google warning users ...

Google has just blocked one of our favorite Chrome extensions for apparently containing malware. So what actually happened?

Millions installed 'productivity' Chrome extensions that became malware after acquisition. Here's how browser extensions became enterprise security's weakest link.

Researchers at Palo Alto Networks' Unit 42 found a high-severity flaw in Chrome's Gemini AI panel that could have let rogue browser extensions access local files, ...