Malicious Chrome extensions steal login data by impersonating Workday, NetSuite and SAP SuccessFactors platforms, cybersecurity researchers say.

Cybersecurity firm LayerX uncovers 17 malicious extensions that can enable click fraud, user tracking, and more. The most popular extension was downloaded more than 500K times.

Good browsers work well with their standard features alone. They can protect you when browsing online, autofill your login information, and manage your favorite websites with ease. Some go beyond and ...

While some consumers spend hours researching must-add Google Chrome extensions, most don't consider which ones they need to delete. Following a seven-year cyberhacking campaign that infected roughly 4 ...

The convenience of extension cords can't be ignored. Does the cord on that new nightstand lamp not quite reach the bedroom outlet? Naturally, you reach for an extension cord. The same goes when it ...

A hot potato: Several widely installed browser extensions endorsed by both Google and Microsoft secretly captured detailed user interactions with AI chat platforms. According to findings released by ...

Browser extensions with more than 8 million installs are harvesting users’ complete and extended AI conversations and selling them for marketing purposes, according to data collected from the Google ...

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions with more than 50,000 downloads, to monitor browser activity and plant a backdoor. The ...

A popular browser extension that acts as a VPN to protect users' privacy is actually harvesting and facilitating the sale of data from conversations with AI chatbot assistants. While versions previous ...

In early December 2025, security researchers exposed a cybercrime campaign that had quietly hijacked popular Chrome and Edge browser extensions on a massive scale. A threat group dubbed ShadyPanda ...

A long-running malware campaign quietly evolved over several years and turned trusted Chrome and Edge extensions into spyware. A detailed report from Koi Security reveals that the ShadyPanda operation ...

Gartner has recommended that enterprises block use of AI browsers until the associated risks can be adequately managed. The analyst firm made the suggestion in a new report, Cybersecurity Must Block ...