Malicious Chrome Extensions Campaign Exposes User Data
ATT&CK techniques detected
T1176.001Browser Extensions
98%
"malicious chrome extensions campaign exposes user data a large - scale campaign involving 108 malicious chrome extensions has been uncovered, affecting roughly 20, 000 users. the extensions, spread across categories such as gaming, social media tools and translation utilities, ap…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1176.001Browser Extensions
97%
"include : - 54 extensions collecting google profile data - 45 extensions containing a persistent backdoor triggered at browser start - up - multiple tools injecting scripts or ads into popular platforms like youtube and tiktok - one extension acting as a translation proxy through…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1176Software Extensions
96%
"include : - 54 extensions collecting google profile data - 45 extensions containing a persistent backdoor triggered at browser start - up - multiple tools injecting scripts or ads into popular platforms like youtube and tiktok - one extension acting as a translation proxy through…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1176Software Extensions
79%
"malicious chrome extensions campaign exposes user data a large - scale campaign involving 108 malicious chrome extensions has been uncovered, affecting roughly 20, 000 users. the extensions, spread across categories such as gaming, social media tools and translation utilities, ap…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
108 malicious Chrome extensions steal sessions, Google data, inject ads via single C2 infrastructure