Techly NewsGet the app

Get the latest tech news

Cyber firm’s Chrome extension hijacked to steal user passwords


The data-loss startup says it was targeted as part of a "wider campaign to target Chrome extension developers."

In a brief emailed statement, Cyberhaven said its security team detected the compromise in the afternoon of December 25, and that the malicious extension (version 24.10.4) was then removed from the Chrome Web Store. Cyberhaven offers products that it says protect against data exfiltration and other cyberattacks, including browser extensions, which allow the company to monitor for potentially malicious activity on websites. Blasco told TechCrunch that he is still investigating the attacks, and believes at this point that there were more extensions compromised earlier this year, including some related to AI, productivity, and VPNs..

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of Chrome

Chrome

Photo of Chrome extension

Chrome extension

Photo of Cyberhaven

Cyberhaven

Related news:

News photo

Cybersecurity firm's Chrome extension hijacked to steal users' data

News photo

Cybersecurity firm's Chrome extension hijacked to steal user data

News photo

Google fights back: proposes to limit default search agreements, wants to avoid selling Chrome | Google resists drastic breakup, offers changes in search and Android to address monopoly ruling

« VW breach exposes location of 800k electric vehicles
Why DeepSeek’s new AI model thinks it’s ChatGPT »