Malicious Chrome Extensions and Phishing Campaign Target Developers
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Over 50 malicious Chrome extensions masquerading as 'live wallpaper' utilities have been identified, impacting approximately 30,000 users through adware operations that hijack browser behavior. These extensions were distributed via the Chrome Web Store and third-party sites. Concurrently, a phishing campaign is targeting Chrome extension developers with counterfeit copyright removal notices, tricking them into providing their Google credentials on a fake sign-in page. This poses a significant risk to both developers and their users. The malicious extensions and phishing attempts highlight ongoing threats in the browser extension ecosystem. Current investigations are underway to mitigate these risks and protect affected users.
Key Points: • 50+ malicious Chrome extensions affected around 30,000 users through adware. • Phishing campaign targets developers with fake copyright notices to steal credentials. • Both threats emphasize vulnerabilities in the Chrome extension ecosystem.