Chrome extension Archives

Hidden in Plain Sight: How we followed one malicious extension to uncover a multi-extension…

Kabilan S | October 26, 2025 | Browser Security, browser-detection, Chrome extension, Cybersecurity, malicious extension

Hidden in Plain Sight: How we followed one malicious extension to uncover a multi-extension campaignShort read for everyone: we found a malicious Chrome extension that stole login data from a crypto trading ...

SquareX Labs - Medium

Passkeys Pwned: Turning WebAuth Against Itself

SquareX | August 20, 2025 | Browser Security, Chrome extension, Cybersecurity, defcon, passkey

Passkeys Pwned: Turning WebAuthn Against ItselfFor years, passwords have been the default way we prove our identity online. However, they have also been at the center of countless breaches as a result of ...

SquareX Labs - Medium

The Hidden Dangers of Browser Extensions: Where Google’s MV3 Still Fall Short

Audrey Adeline | November 24, 2024 | Chrome extension, Cybersecurity, data, google, technology

A recent Forbes article by Davey Winder discussed a brilliant publication by Stanford researchers Sheryl Hsu, Manda Tran and Aurore Fass. It was discovered nearly 350 million Chrome extensions installed had privacy ...

SquareX Labs - Medium

Google Hates Ad Blockers: Manifest V3 Push Starts Today

We warned you. As of June 3, Google is following through on its threat to kill ad blockers. Privacy-focused Chrome extensions are living on borrowed time; developers must upgrade to the less ...

Security Boulevard

Google to Force-Block Ad Blockers — Time to Get Firefox?

Richi Jennings | November 17, 2023 | ad blockers, ad-blocker, ad-blocking, adblock, adblockers, adblocking, adblocks, adtech, Advertising and AdTech, Chrome, Chrome extension, chrome extensions, google, Manifest V3, SB Blogwatch, uBlock Origin

Manifest V3: Destiny. Huge advertising monopoly flexes muscles: “Manifest V2” extensions to be nuked, but “V3” cripples ad blockers ...

Security Boulevard

Chrome Extensions Warning — Millions of Users Infected

Richi Jennings | June 5, 2023 | Chrome, Chrome extension, chrome extensions, chrome store malware, Chrome Web Store, google, Malware, Privacy, SB Blogwatch

Malware Déjà Vu: Perhaps as many as 87 million victims—maybe more ...

Security Boulevard

Chrome Web Store FAIL: 300+ More Scam Browser Extensions

Richi Jennings | August 6, 2020 | Chrome extension, , google, SB Blogwatch

A researcher has found yet more malware in Google’s store. Something’s obviously not working ...

Security Boulevard

49 crypto-wallet pickpocketing browser extensions booted from the Chrome web store

Graham Cluley | April 16, 2020 | browser extension, Chrome extension, chrome store, chrome store malware, Industry News, malicious extension

Hackers have been using Google Ads to target unsuspecting cryptocurrency investors into installing malicious browser extensions, with the aim of stealing passphrases and private keys and draining funds from their wallets. Harry ...

HOTforSecurity

OAuth, XSS, Google WhiteSource Log4j Deepfence threat report

New Service Scans Chrome Extensions for Vulnerabilities and Privacy Risks

Lucian Constantin | February 26, 2019 | Adobe Reader, BadPDF, Chrome extension, credentials leak, CRXcavator, CVE 2019-7089, extension scanner, malicious extension, NTLM hash, PDF callback, security assessment, XML Form Architecture

Over the past few years, hackers have increasingly abused Google Chrome extensions to steal people’s data, inject rogue ads into websites or hijack CPU power to mine cryptocurrency. Now, a new online ...

Security Boulevard

Automatic 4K/HD for Youtube extension pulled from Chrome Store for pop-up ad abuse

Graham Cluley | February 11, 2019 | ad-blocker, Chrome extension, Industry News, pop-up ads

A popular browser extension has been removed by Google from the Chrome Web Store after it started spamming users with irritating pop-up advertisements. The “Automatic 4K/HD for Youtube” extension, used by over ...

HOTforSecurity

Chrome extension

Hidden in Plain Sight: How we followed one malicious extension to uncover a multi-extension…

Passkeys Pwned: Turning WebAuth Against Itself

The Hidden Dangers of Browser Extensions: Where Google’s MV3 Still Fall Short

Google Hates Ad Blockers: Manifest V3 Push Starts Today

Google to Force-Block Ad Blockers — Time to Get Firefox?

Chrome Extensions Warning — Millions of Users Infected

Chrome Web Store FAIL: 300+ More Scam Browser Extensions

49 crypto-wallet pickpocketing browser extensions booted from the Chrome web store

New Service Scans Chrome Extensions for Vulnerabilities and Privacy Risks

Automatic 4K/HD for Youtube extension pulled from Chrome Store for pop-up ad abuse

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On