A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Millions installed 'productivity' Chrome extensions that became malware after acquisition. Here's how browser extensions became enterprise security's weakest link.

Security researchers demonstrated that any browser extension can secretly install malware by modifying downloaded files without requiring additional permissions or triggering warnings.

Browser extensions promise convenience. Many offer simple tools like new tab pages, translators or video helpers. Researchers, however, uncovered a long-running malware operation that abused that ...

Chrome and Edge users warned about NexShield browser extension scam that causes crashes and tricks users into installing malware through fake security fix commands.

A Chrome extension marketed as a convenient trading tool has been secretly siphoning SOL from users' swaps since last June, injecting hidden fees into every transaction while masquerading as a ...

Chrome extensions disguised as AI assistants infected over 300,000 users with malware that steals emails, passwords and browsing data, LayerX researchers discovered.

Chrome extensions are supposed to make your browser more useful, but they've quietly become one of the easiest ways for attackers to spy on what you do online. Security researchers recently uncovered ...

Security researchers have discovered a new malware for macOS, which can be used to attack over 100 browser extensions that may be installed on the target Mac. Apple tries hard to make macOS and its ...