Over 100 Chrome Web Store extensions found stealing user data from thousands of accounts

All extensions seem to have been made by a single actor, possibly of Russian origin.
Search Engine Roundtable

Google Adds Chrome Web Store Google-CWS User Agent To Docs

Google added a new user agent to the Googlebot's user-triggered fetchers documentation. The new user agent is for the Chrome Web Store named Google-CWS. The Chrome Web Store fetcher requests URLs that ...

Google Attack Warning—Chrome Hackers Target Gmail And YouTube Users

Google hackers strike as Gmail, YouTube, Telegram and TikTok users are targeted by 108 dangerous Chrome browser extensions in a coordinated campaign.
Forbes

Google Chrome 2FA Bypass Attacks Confirmed—Millions Of Users At Risk

This Google Chrome browser extension attack compromised authentication cookies. Update, Dec. 31, 2024: This story, originally published Dec. 29 now includes an explanation of how 2FA bypass session ...
Bleeping Computer

Google launches customizable Web Store for Enterprise extensions

Google has officially launched its Chrome Web Store for Enterprises, allowing organizations to create a curated list of extensions that can be installed in employees' web browsers. Malicious Chrome ...
Fox News

Malicious Google Chrome extensions hijack accounts

Cybersecurity researchers have uncovered a serious threat hiding inside Google Chrome. Several browser extensions pretend to be helpful tools. In reality, they quietly take over user accounts. These ...
MUO on MSN

Chrome on Android is intentionally worse than Chrome on your computer

Chrome doesn't have extensions on Android. Is it to protect users from poorly optimized extensions or to keep ad-blockers off ...
Bleeping Computer

Malicious Chrome extensions with 1.7M installs found on Web Store

Almost a dozen malicious extensions with 1.7 million downloads in Google's Chrome Web Store could track users, steal browser activity, and redirect to potentially unsafe web addresses. Most of the add ...