Hackers Turn Chrome Extensions into Digital Trojan Horses
Hackers compromised several popular Chrome extensions, including one by cybersecurity firm Cyberhaven, affecting over 400,000 users. The breach began with a phishing email that allowed attackers to distribute malicious updates designed to steal passwords and session tokens.
Maria Deutscher writes for SiliconANGLE
Hackers have compromised several popular Chrome extensions with hundreds of thousands of users, TechCrunch reported today. One of the affected extensions is developed by Cyberhaven Inc., a venture-backed cybersecurity provider. The company confirmed the incident in a statement.
Cyberhaven has since removed the malware, replaced the extension, and advised users to reset credentials.