Chrome extensions spoofing Workday and NetSuite are tricking victims

Here's what to look out for ...

Credential-stealing Chrome extensions target enterprise HR platforms

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...
The Hacker News

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts

Five fake Chrome extensions impersonate Workday and NetSuite to steal cookies, block admin controls, and hijack sessions for ...

Malicious Chrome extensions caught stealing sensitive data

Chrome extensions called 'Phantom Shuttle' stole user data for years before Google removed them from the Chrome Web Store after researchers exposed the malicious tools.
The HR Digest

Beware! Malicious Chrome Extensions Are Now Targeting HR Platform Users

Cybersecurity firm Socket recently uncovered multiple malicious Chrome extensions targeted at enterprise HR and ERP platform users.
The Hacker News

CrashFix Chrome Extension Delivers ModeloRAT Using ClickFix-Style Browser Crash Lures

Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ...

These Popular Chrome Extensions Are Stealing Your AI Chats

Two Chrome extensions are impersonating an add-on that allows users to have conversations with ChatGPT and DeepSeek while on ...
SecurityWeek

Chrome Extensions With 900,000 Downloads Caught Stealing AI Chats

Two malicious Chrome extensions with over 900,000 downloads were exfiltrating browser data and conversations with ChatGPT and ...