The malicious extension, available as version 24.10.4, was available for 31 hours, from December 25 at 1:32 AM UTC to Dec 26 ...

The attack, which began on Christmas Eve, exploited a vulnerability in the Chrome Web Store's developer authentication system ...

The recent compromise of Cyberhaven’s Chrome extension appears to be part of a broad campaign that started over a year ago.

The data-loss startup says it was targeted as part of a "wider campaign to target Chrome extension developers." ...

Cookies stored in Chrome let hackers bypass the 2FA requirement, as the browser showed users to already be authenticated. Yes ...

Cyberhaven and other Chrome extensions were compromised in a supply chain attack targeting Facebook advertising users.

Hackers have targeted Google Chrome users in a frightening 2FA bypass attack—a full list of impacted extensions has now been ...

Dec. 25, 2024, cybersecurity firm Cyberhaven was the target of a large-scale attack. Through their Chrome extension, 400,000 ...

New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise ...

Hackers have compromised several different companies' Chrome browser extensions in a series of intrusions dating back to ...

A BleepingComputer investigation found the same code was injected into at least 35 Google Chrome extensions, which are being ...

At least five Chrome extensions were compromised in a coordinated attack where a threat actor injected code that steals ...