108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users
Summary
Researchers have identified 108 malicious Google Chrome extensions designed to steal data from Google and Telegram accounts. These extensions communicate with a shared command-and-control infrastructure, aiming to collect user data and inject ads and malicious JavaScript into visited web pages.
IFF Assessment
This represents a significant threat to user data and browser security as malicious extensions can compromise sensitive information and enable further attacks.
Defender Context
This discovery highlights the persistent threat of malicious browser extensions. Defenders should educate users about the risks associated with installing extensions from unverified sources and consider implementing browser extension management policies to control which extensions are allowed on corporate devices. Monitoring for suspicious extension behavior and known malicious extension indicators is crucial.