Hackers hijacked multiple Chrome extensions by inserting malicious code aimed at stealing user data, including authentication credentials for Facebook Ads and AI platform accounts.
Cyberhaven identified the breach after a phishing attack targeted one of its employees, leading to malicious code being pushed to users on Christmas Eve.
The cyberattack affected popular extensions like Internxt VPN and VPNCity, which collectively boast tens of thousands of users, raising concerns over user privacy and security.
Cyberhaven acted quickly to remedy the situation, sending notifications to users and releasing a fix less than an hour after becoming aware of the hack.
Collection
[
|
...
]