Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft
Summary
Two Google Chrome extensions have been compromised after their ownership was transferred. Attackers are now using these extensions to distribute malware, inject malicious code, and steal sensitive data from users.
IFF Assessment
FOE
The compromise of popular extensions allows attackers to distribute malware and steal data, directly harming users and defenders.
Defender Context
This incident highlights the risk of supply chain attacks through browser extensions. Defenders should monitor for legitimate applications being repurposed for malicious intent and educate users about the potential dangers of extension ownership changes.