Some more info here. https://www.bleepingcomputer.com/ne...hrome-extension-hijacked-to-steal-users-data/
Seriousy this is crazy stuff, I wonder why nobody is outraged about this. How on earth can extensions steal cookies and authenticated sessions? When will browser developers tackle this problem? Or perhaps it will be solved by the upcoming MV3?
See also Extension Total: Cyberhaven Incident https://www.extensiontotal.com/cyberhaven-incident-live They have a long list! It was last updated on 11:08 UTC January 1st, 2025 Read there more.
Yes I saw it. And the weirdest thing is, that it's still not possible to disable auto-updating of extensions in Chromium based browsers. This would have actually stopped this attack. I do believe this is possible in Firefox.
