300,000 Chrome users hit by fake AI extensions

Chrome extensions disguised as AI assistants infected over 300,000 users with malware that steals emails, passwords and ...

Google Alerts Users to Serious Chrome Bugs With Takeover Risk

Google released a Chrome security update patching three high-severity vulnerabilities, including memory flaws that could ...
InfoWorld

Abandoned project linking Java, JavaScript makes a comeback

The Detroit project envisioned using JavaScript as an extension language for Java applications. Now it’s being revived with ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Tech Times

Hidden Claude Desktop Extension Flaw Could Let Hackers Seize Your PC

Security researchers warn that Claude Desktop Extensions may allow zero-click prompt injection attacks, potentially leading to remote code execution and full system compromise.
Mashable

Simplify your AI workflow with this one powerful Chrome extension

The following content is brought to you by Mashable partners. If you buy a product featured here, we may earn an affiliate commission or other compensation. TL;DR: Make AI even more efficient with ...
9to5google

Android’s full desktop interface leaks: New status bar, Chrome Extensions, more [Video]

A Google bug report on the Chromium Issue Tracker today has inadvertently leaked the Android desktop interface for the first time. The bug report published today about Chrome Incognito tabs was ...
Digital Trends

Research reveals how these simple Chrome extensions are hawking your privacy

Some of the most harmless-looking Chrome extensions are doing far more than they promise, and new research shows just how easily everyday tools can turn into privacy risks. Security researchers warn ...
Bleeping Computer

New malware service guarantees phishing extensions on Chrome web store

A new malware-as-a-service (MaaS) called 'Stanley' promises malicious Chrome extensions that can clear Google's review process and publish them to the Chrome Web Store. Researchers at end-to-end data ...
Fast Company

5 Chrome dashboard extensions to make your start page more useful

The “New Tab” page in Chrome is the digital equivalent of a blank stare. A white void. Nothing, and plenty of it. Why are we settling for this? Your browser’s ...
CSOonline

Five Chrome extensions caught hijacking enterprise sessions

Malicious Chrome extensions posing as productivity tools were found stealing session tokens, blocking security controls, and enabling account takeover across popular enterprise HR and ERP platforms. A ...