Millions at Risk! Hackers Take Over Popular Chrome Extensions

FRESNO, California – Cody Sarhan, Communications Specialist

In a significant cybersecurity incident, hackers have compromised at least 35 Google Chrome extensions, potentially affecting over 2.6 million users. This breach underscores the evolving tactics of cybercriminals and highlights the importance of vigilant cybersecurity practices.

The attack began with a sophisticated phishing campaign targeting Chrome extension developers, this fishing campaign has been running since as far back as Mach of last year, according to Bleeping Computer.  The phishing email, which is made to appear as if it comes from Google, claims that the extension is in violation of Chrome Web Store policies and is at risk of being removed.  

Learn more: How Xobee can help protect your business from scammers

What This Means For You

A comprehensive list of affected extensions has been published, and users are advised to review and remove any compromised extensions promptly.  The compromised extensions span various functionalities, including AI assistants, VPN services, and productivity tools. Notable examples include:

• AI Assistant – ChatGPT and Gemini for Chrome
• Bard AI Chat Extension
• GPT 4 Summary with OpenAI
• VPNCity
• Internxt VPN

Potential Risks to Users

The malicious code embedded in these extensions was designed to steal sensitive information, including browser cookies, authentication tokens, and personal data. This data could be used to hijack user accounts, bypass two-factor authentication, and access confidential information. Notably, the attackers targeted Facebook business accounts, aiming to exploit advertising platforms for financial gain.

Recommended Actions for Users

To mitigate the risks associated with this breach, users should take the following steps:

1. Review Installed Extensions: Access your browser’s extension manager to identify and remove any of the compromised extensions.
2. Change Passwords: After removing malicious extensions, update passwords for accounts that may have been affected, especially those related to social media and financial services.
3. Enable Two-Factor Authentication (2FA): Implement 2FA on all accounts that offer this feature to add an extra layer of security.
4. Stay Informed: Regularly monitor official channels and trusted news sources for updates on security incidents and follow recommended best practices.

Xobee: Keeping You Protected

To help safeguard your business from cyber threats like these, Xobee offers comprehensive cybersecurity and email protection services designed to keep your data and accounts secure. Our advanced virus and spam filtering solutions help prevent phishing emails before they ever reach your inbox.

Don’t wait for the next attack to target your business. Contact Xobee Networks today to learn how our cybersecurity solutions can help protect your systems, secure your email, and keep your data out of the hands of cybercriminals.

Xobee Networks now has engineers servicing clients within Fresno, Clovis, Madera, San Jose, Sacramento, San Francisco & the Bay Area, Los Angeles, Santa Monica, Las Vegas, Bakersfield, San Diego, San Luis Obispo, Anaheim, Palm Springs, and more.