30+ Chrome extensions disguised as AI chatbots steal users' API keys, emails, other sensitive data
Summary
Over 30 malicious Chrome extensions, masquerading as AI chatbots and installed by at least 260,000 users, are stealing sensitive data like API keys and email messages. Many of these extensions were still available in the Chrome Web Store at the time of reporting.
IFF Assessment
FOE
Malicious Chrome extensions are actively stealing user data, posing a direct threat to individuals and organizations.
Severity
8.8
High
(AI Estimated)
Defender Context
This highlights the risk of browser extension-based attacks. Defenders should educate users about the importance of verifying extensions before installation, implement browser extension policies, and monitor for unusual network activity indicative of data exfiltration. Supply chain attacks through browser extensions are an increasing trend.