Ethical Hacking News
Malicious Chrome extensions have long been a concern for users and cybersecurity experts alike, but recent discoveries have shed light on the sheer scale and sophistication of these threats. With over 287 Chrome extensions identified that exfiltrate browsing history to data brokers, users are at risk of exposing their sensitive information to nefarious actors. Experts warn that users must take immediate action to protect themselves against these emerging threats.
287 Chrome extensions have been identified that exfiltrate browsing history to data brokers. These extensions have collectively installed over 37.4 million times, representing roughly 1% of the global Chrome userbase. AiFrame extension has a remote server-controlled interface that allows it to siphon sensitive data from users' browsing history and email credentials. VK Styles extension silently hijacks VKontakte accounts through Chrome extensions masquerading as VK customization tools. Risk of malicious Chrome extensions is far more severe than previously thought due to the rise of AI-powered malware.
Malicious Chrome extensions have long been a concern for users and cybersecurity experts alike, but recent discoveries have shed light on the sheer scale and sophistication of these threats. The latest wave of malicious extensions has been found to be masquerading as legitimate tools and utilities, with some even capable of exfiltrating sensitive data such as browsing history and email credentials.
According to a report by Q Continuum, a staggering 287 Chrome extensions have been identified that exfiltrate browsing history to data brokers. These extensions have collectively installed over 37.4 million times, representing roughly 1% of the global Chrome userbase. This is alarming news for users who may unwittingly be exposing their sensitive information to nefarious actors.
One such malicious extension, known as "AiFrame," has been found to contain a remote server-controlled interface that allows it to siphon sensitive data from users' browsing history and email credentials. The extension, which claims to provide AI-powered assistance for summarization, chat, writing, and Gmail assistance, is actually using its privileged proxy access to exfiltrate user data.
Another malicious Chrome extension, "VK Styles," has been found to be silently hijacking VKontakte accounts through Chrome extensions masquerading as VK customization tools. The campaign, which has been codenamed "VK Styles," has affected over 500,000 users and is believed to have been launched by a threat actor operating under the GitHub username "2vk."
Researchers at LayerX have warned that these malicious extensions are just the tip of the iceberg when it comes to Chrome extension threats. "The browser add-on ecosystem is riddled with vulnerabilities," said Natalie Zargarov, a researcher at LayerX. "Users need to be vigilant and regularly audit their installed extensions for any signs of malicious behavior or excessive permission requests."
Security experts have long warned about the dangers of unchecked browser extension installation, but recent discoveries suggest that the risks are far more severe than previously thought.
The rise of AI-powered malware has also been on full display in recent months. Researchers at Q Continuum have found a collection of 287 Chrome extensions that exfiltrate browsing history to data brokers. These extensions have collectively installed over 37.4 million times, representing roughly 1% of the global Chrome userbase.
The sheer scale and sophistication of these threats are alarming, and experts are urging users to take immediate action to protect themselves.
In addition to installing only necessary, well-reviewed tools from official stores, users can also take steps to ensure their browsing history is not being exfiltrated. This includes regularly auditing installed extensions for any signs of malicious behavior or excessive permission requests.
Furthermore, using separate browser profiles for sensitive tasks and implementing extension allowlisting to block those that are malicious or non-compliant can help mitigate the risks associated with Chrome extensions.
As the threat landscape continues to evolve, it is clear that users must remain vigilant and proactive in protecting themselves against these emerging threats. By taking steps to secure their browsing history and email credentials, users can significantly reduce their risk of falling victim to malicious Chrome extensions.
Related Information:
https://www.ethicalhackingnews.com/articles/Exposing-the-Dark-Underbelly-of-Chrome-Extensions-A-Threat-Landscape-Revealed-ehn.shtml
Published: Wed Feb 18 15:41:20 2026 by llama3.2 3B Q4_K_M
