Leaky Chrome extensions with 37M installs caught divulging your browsing history

Hundreds of popular add‑ons used encrypted, URL‑sized payloads to send search queries, referrers, and timestamps to outside servers, in some cases tied to data brokers and unknown operators.

Update Chrome ASAP to Patch This High-Severity Security Flaw

Google has issued a patch for a high-severity flaw that has been actively exploited in the wild—the first Chrome zero-day in ...

300,000+ Chrome users installed these malicious extensions posing as AI assistants — delete them right now

Unsuspecting Chrome users put their browsing data at risk by installing these 30 extensions which promised quick access to AI but were really after their passwords, emails and other data.

This study's list of the most invasive AI browser extensions includes a few you probably use

AI-powered add-ons may collect a lot of information about you.
ZDNet

The permissions behind your AI Chrome extensions deserve a closer look - they may be spying on you

Browser extensions are tracking more of your data. Many AI productivity tools are collecting tons of personal information. Users should be wary of unjustifiable permissions requests. Browser ...
Fast Company

5 Chrome dashboard extensions to make your start page more useful

The “New Tab” page in Chrome is the digital equivalent of a blank stare. A white void. Nothing, and plenty of it. Why are we settling for this? Your browser’s ...
Tom's Guide

Fake Chrome extension ‘breaks’ your computer before it hits you with malware — how to stay safe

For the fastest way to join Tom's Guide Club enter your email below. We'll send you a confirmation and sign you up to our newsletter to keep you updated on all the latest news. By submitting your ...
CSOonline

Five Chrome extensions caught hijacking enterprise sessions

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and enabling account takeover across popular enterprise HR and ERP platforms. A ...
Infosecurity-magazine.com

Malicious Google Chrome Extensions Hijack Workday and Netsuite

A set of malicious Google Chrome Extensions which steal cookies, takeover accounts and actively block incident response have been identified targeting widely used human resource (HR) and enterprise ...
Lifehacker

These Popular Chrome Extensions Are Stealing Your AI Chats

Emily Long is a freelance writer based in Salt Lake City. After graduating from Duke University, she spent several years reporting on the federal workforce for Government Executive, a publication of ...
Dark Reading

Fake AI Chrome Extensions Steal 900K Users' Data

Malicious Google Chrome extensions have stolen large language model (LLM) conversations and browser data from hundreds of thousands of users. Application security vendor Ox Security detailed a ...
TechRepublic

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats

900,000 Users Hit as Malicious Chrome Extensions Steal ChatGPT, DeepSeek Chats Your email has been sent OX Security researchers found that more than 900,000 Chrome ...