Security news aggregator

Latest coverage for Browser Extension

Stay secure online with the latest browser extension updates, reviews, and threat alerts in information security. Protect your data with us.

7 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Browser extensions are small software add-ons that enhance or modify web browser functionality, such as blocking ads, managing passwords, or customizing page content. They operate within the browser environment and often require explicit permissions to access user data, browsing activity, or webpage content. Extensions are typically installed from official browser stores or third-party sources.

From a security perspective, extensions can pose risks if granted excessive permissions or sourced from untrusted developers. Malicious or compromised extensions may intercept sensitive information, inject harmful scripts into web pages, or enable tracking beyond normal browser capabilities. Security practitioners should carefully evaluate extension permissions, restrict installations to trusted sources, and ensure timely updates to mitigate risks related to data leakage, unauthorized access, or persistent browser compromise.

Volume over time

Weekly headline count for the current query.

Showing 7 most recent headlines Filtered view

And some are still active in the Microsoft Edge store A seven-year malicious browser extension campaign infected 4.3 million Google Chrome and Microsoft Edge users with malware, including backdoors and spyware sending people's data to servers in China. And, according to Koi researchers, five of the extensions with more than 4 million installs are still live in the Edge marketplace.…

Threat actor exploited phishing and OAuth abuse to inject malicious code Cybersecurity outfit Sekoia is warning Chrome users of a supply chain attack targeting browser extension developers that has potentially impacted hundreds of thousands of individuals already.…

Country's super strong data rights under magnifying glass after half a dozen complaints filed Remember the Who Targets Me browser extension from privacy activists at Noyb? The group yesterday filed explosive complaints based on log records from the extension that claim six of Germany's political parties broke European data law when they targeted voters on Facebook's adtech platform.…