Over 100 Chrome Web Store extensions found stealing user data from thousands of accounts

All extensions seem to have been made by a single actor, possibly of Russian origin.
Search Engine Roundtable

Google Adds Chrome Web Store Google-CWS User Agent To Docs

Google added a new user agent to the Googlebot's user-triggered fetchers documentation. The new user agent is for the Chrome Web Store named Google-CWS. The Chrome Web Store fetcher requests URLs that ...

Google Attack Warning—Chrome Hackers Target Gmail And YouTube Users

Google hackers strike as Gmail, YouTube, Telegram and TikTok users are targeted by 108 dangerous Chrome browser extensions in a coordinated campaign.
Forbes

Google Chrome 2FA Bypass Attacks Confirmed—Millions Of Users At Risk

This Google Chrome browser extension attack compromised authentication cookies. Update, Dec. 31, 2024: This story, originally published Dec. 29 now includes an explanation of how 2FA bypass session ...
Bleeping Computer

Malicious Chrome extensions with 1.7M installs found on Web Store

Almost a dozen malicious extensions with 1.7 million downloads in Google's Chrome Web Store could track users, steal browser activity, and redirect to potentially unsafe web addresses. Most of the add ...
MUO on MSN

Chrome on Android is intentionally worse than Chrome on your computer

Chrome doesn't have extensions on Android. Is it to protect users from poorly optimized extensions or to keep ad-blockers off ...

Security Warning Issued As 100+ Chrome Extensions Get Caught Stealing Data

Security researchers uncovered over 100 data-stealing Chrome extensions, prompting a widespread warning for users to check and remove the malicious add-ons.