LayerX discovered 16 extensions in the Chrome Web Store and Microsoft Edge Add-ons marketplace that steal users’ ChatGPT ...

GlassWorm malware is expanding to open source platforms, targeting macOS users with infostealers.

Users of widely used HR and ERP platforms targeted with malicious extensions which were available in the Chrome Web Store ...

Research shows that even simple Chrome extensions can quietly invade user privacy, with some hijacking clipboards, ...

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems.

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Whatever web browser you use, the universal truth is that ...

The offending extensions do not deploy traditional malware or attempt to exploit flaws in ChatGPT itself. Instead, they hook ...

"Stanley" malware kit-as-a-service costs up to US$6000. A suspected Russian malware-as-a-service operation has been selling a ...

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

This list will probably grow over time, since of course there are a lot of ways to tackle security and privacy. As a rule, we’re going to focus on the most broadly applicable extensions — something ...