Security researchers discovered 108 malicious Chrome extensions involved in a coordinated data-stealing campaign. The extensions, disguised as utilities, Telegram clients, and browser tools, harvested Google account information, OAuth tokens, and Telegram session data. Some extensions also created backdoors and injected malicious scripts into user browsers. Researchers found the extensions were linked to a shared command-and-control infrastructure and published under multiple identities to avoid detection. The extensions were installed on thousands of devices, raising concerns about browser security and the risks posed by third-party extensions.
Security researchers discovered 108 malicious Chrome extensions involved in a coordinated data-stealing campaign. The extensions, disguised as utilities, Telegram clients, and browser tools, harvested Google account information, OAuth tokens, and Telegram session data. Some extensions also created backdoors and injected malicious scripts into user browsers. Researchers found the extensions were linked to a shared command-and-control infrastructure and published under multiple identities to avoid detection. The extensions were installed on thousands of devices, raising concerns about browser security and the risks posed by third-party extensions.