An extension I used almost every day was bought by a new owner and loaded up with spyware. It happened in 2024, but Google only removed it this week.

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

Seemingly out of nowhere, the “Save image as Type” Chrome extension was marked for removal, with Google warning users ...

Are you a good bot or a bad bot? More than 30 malicious Chrome extensions installed by at least 260,000 users purport to be helpful AI assistants, but they steal users' API keys, email messages, and ...

Currently, the Chrome Web Store is full of AI-powered extensions. From tools that summarize meetings to assistants that write your emails, they have become essential for millions of users. However, a ...

A Google Chrome Web Store campaign uses over 100 malicious browser extensions that mimic legitimate tools, such as VPNs, AI assistants, and crypto utilities, to steal browser cookies and execute ...

Malicious AI browser extensions on Chrome and Edge harvested ChatGPT and DeepSeek chat histories and browsing data, impacting ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As I reported Dec. 29, hackers using compromised Chrome ...

Many Chrome extensions start as small developer projects, and once they gain users, are sold on. But what if the new owner turns out to be a bad actor who gains the ability to update software running ...