I found a malicious Chrome extension on my system - here's how and what I did next
When Chrome flagged an extension for malware, it triggered hours of cleanup. Learn how to check your extensions, clear malware, and keep your browser secure for the future.
Time to check if you ran any of these 33 malicious Chrome extensions
The malicious extension, available as version 24.10.4, was available for 31 hours, from December 25 at 1:32 AM UTC to Dec 26 at 2:50 AM UTC. Chrome browsers actively running Cyberhaven during that window would automatically download and install the malicious code. Cyberhaven responded by issuing version 24.10.5, and 24.10.6 a few days later.
Hackers take over Google Chrome extensions in cyberattack
The attack began after a hacker successfully targeted a Cyberhaven employee via a phishing email that was sent to Chrome extension developers. The employee, believing the email was an official Google contact, clicked the email and input their login credentials on the phishing page.
Chrome extensions hijacked in phishing attack
Stay informed about the latest phishing attack where several Chrome extensions were hijacked, compromising user security and data.
Hackers May Have Compromised Multiple Popular Google Chrome Extensions
A hacker phished a Cyberhaven employee to upload a malicious version of the company's Chrome extension, but it may not be the only victim.
Hackers Exploit Google Chrome Extensions to Steal Sensitive Data: What You Need to Know
A significant breach of popular Google Chrome extensions, including Cyberhaven, has exposed sensitive user data. Learn how the attack unfolded and how to secure your browser.
Hacked Chrome extensions put 2.6 million users at risk of data leak
Tech expert Kurt “CyberGuy" Knutsson says hackers are embedding dangerous code in Chrome extensions to steal your data.
Google Chrome Attack Alert—Full List Of Hacked Extensions Published
Hackers have targeted Google Chrome users in a frightening 2FA bypass attack—a full list of impacted extensions has now been ...
Widespread cyberattack targets Google Chrome extensions, compromises 2.6 million devices
The attack, which began on Christmas Eve, exploited a vulnerability in the Chrome Web Store's developer authentication system ...
Google Chrome extensions hack may have started much earlier than expected
A BleepingComputer investigation found the same code was injected into at least 35 Google Chrome extensions, which are being ...
5 browser extension rules to live by to keep your system safe in 2025
If you use browser extensions, you should be careful about which ones you install and use. Here's how you can do that.
Google Chrome browser extensions hacked: How it happened and tips to stay secure
The publishers of browser extensions on the Google Chrome Web Store were reportedly targeted via a phishing campaign.