Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

Chrome extensions disguised as AI assistants infected over 300,000 users with malware that steals emails, passwords and ...

Are you a good bot or a bad bot? More than 30 malicious Chrome extensions installed by at least 260,000 users purport to be helpful AI assistants, but they steal users' API keys, email messages, and ...

Malicious AI browser extensions on Chrome and Edge harvested ChatGPT and DeepSeek chat histories and browsing data, impacting ...

Currently, the Chrome Web Store is full of AI-powered extensions. From tools that summarize meetings to assistants that write your emails, they have become essential for millions of users. However, a ...

Many Chrome extensions start as small developer projects, and once they gain users, are sold on. But what if the new owner turns out to be a bad actor who gains the ability to update software running ...

A Google Chrome Web Store campaign uses over 100 malicious browser extensions that mimic legitimate tools, such as VPNs, AI assistants, and crypto utilities, to steal browser cookies and execute ...

A popular browser extension that acts as a VPN to protect users' privacy is actually harvesting and facilitating the sale of data from conversations with AI chatbot assistants. While versions previous ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As I reported Dec. 29, hackers using compromised Chrome ...