Malicious Browser Extensions
Malicious browser extensions masquerading as legitimate tools across Chrome, Firefox, Edge, and Opera. Deployment vectors, evasion techniques, and marketplace bypass methods.
-
Chrome extensions turned malicious after ownership transfer, pushing code injection and fake updates
Two Chrome extensions, QuickLens and ShotBird, turned malicious after ownership changes, enabling attackers to inject arbitrary code, strip security headers, display fake Chrome update prompts, and steal sensitive data from…
·
·
2–3 minutes -
DarkSpectre Browser Extension Campaigns Expose 8.8 Million Users to Corporate Espionage
DarkSpectre is a Chinese threat actor operating three browser extension campaigns infecting 8.8 million users across Chrome, Edge, and Firefox. ShadyPanda (5.6M users) executes mass surveillance and affiliate fraud. GhostPoster…
·
·
5–8 minutes
