Hackers took over some Chrome extensions

Forum

Hackers took over some Chrome extensions

By admin, Aralık 28, 2024



See Full Size


A series of recent cyber attacks Google Chrome He targeted his extensions. According to reports, hackers managed to take over at least five Chrome extensions in an attack that injected code that stole sensitive information from users. According to experts, the attacks were at least extends until mid-December. Affected victims include data protection company Cyberhaven There is also.

Cyberhaven confirmed on Christmas Eve that its extensions were hacked. In a statement to Reuters, Cyberhaven said that this attack was part of a broader campaign targeting Chrome extension developers. The company also added that it is cooperating with federal law enforcement and working to shed light on the incident.

Attacks were random

Cyberhaven’s customers include Snowflake, Motorola, Canon, Reddit, AmeriHealth, Cooley, IVP, Navan, DBS, Upstart and Kirkland & Ellis. Cyberhaven was using the Chrome extension to monitor and secure data flow in its customers’ web-based applications. While it was determined that the attackers had installed a new modified version of the Cyberhaven extension, the company confirmed that this malicious version was removed and the reliable version was uploaded to the Chrome store. The company recommended that its users should renew their passwords.

Jaime Blasco, one of the founders of Austin, Texas-based Nudge Security, also owns Cyberhaven. with artificial intelligence and virtual private networks (VPN) relevant extensions He stated that he also determined that it was seized in the same way. Blasco stated that he thought the attacks were random and said: “I’m almost certain this isn’t aimed at Cyberhaven. “If I had to guess, it’s something random.” he said. It was stated that the attackers aimed to collect as much sensitive data as possible. It was reported that Internxt VPN, VPNCity, Uvoice and ParrotTalks were among the extensions detected in the first place.

On the other hand, the geographical scope of the attack is not yet fully clear. But considering that browser extensions provide important functionality for both individual users and companies, such attacks pose a major threat. While the US Cybersecurity and Infrastructure Security Agency (CISA) directed questions about the incident to companies, there is no statement yet from Alphabet, the developer of the Chrome browser.














Download DH iOS App









Etiketler: , ,