Bleeping Computer

New Syncjacking attack hijacks devices using Chrome extensions

A new attack called 'Browser Syncjacking' demonstrates the possibility of using a seemingly benign Chrome extension to take over a victim's device. The new attack method, discovered by security ...
Bleeping Computer

Cookie-Bite attack PoC uses Chrome extension to steal session tokens

A proof-of-concept attack called "Cookie-Bite" uses a browser extension to steal browser session cookies from Azure Entra ID to bypass multi-factor authentication (MFA) protections and maintain access ...
Forbes

New Google Chrome Attack—You Must Not Click This Popup

As “sneaky” attacks go, this one takes some beating. A new report suddenly warns that a fundamental vulnerability in the way Google Chrome and other Chromium browsers work means password managers, ...
Forbes

Google Chrome Attack Alert—Full List Of Hacked Extensions Published

Update, Jan. 4, 2025: This story, originally published Jan. 2, now includes a link to details of all the known Chrome extensions to have been targeted by the hackers. As I reported at the end of ...
Hosted on MSN

Google Chrome at risk from shape-shifting browser extensions — how to stay safe

Just like malicious apps on your smartphone, malicious browser extensions can put your devices and the sensitive data stored in your browser at serious risk. The problem with malicious browser ...