Malicious Chrome extensions steal login data by impersonating Workday, NetSuite and SAP SuccessFactors platforms, cybersecurity researchers say.

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

Users of widely used HR and ERP platforms targeted with malicious extensions which were available in the Chrome Web Store ...

Researchers identify 17 additional extensions associated with the DarkSpectre threat actor and its GhostPoster campaign.

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and ...

Many browser extensions that organizations permit employees to use when working with software-as-a-service (SaaS) apps such as Google Workspace and Microsoft 365 have access to high levels of content ...

Chrome is fast, capable, and one of the best browser options when convenience matters. However, it's not the most privacy-focused browser, and relying on Chrome alone isn't enough for online privacy.

A malicious extension impersonating an ad blocker forces repeated browser crashes before pushing victims to run ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. The recent Chrome browser 2FA bypass attacks involved dozens ...

A Christmas Eve phishing attack resulted in an unknown party taking over a Cyberhaven employee's Google Chrome Web Store account and publishing a malicious version of Cyberhaven's Chrome extension.