Recent reports indicate that several Chrome extensions have fallen victim to a significant cyber attack, prompting users to update their passwords to enhance their security. Cyberhaven, a cybersecurity firm, issued a warning regarding this incident, which involved hackers exploiting a phishing campaign to gain access to admin accounts and inject malicious code into various widely used extensions. This poses a serious threat to user information.
The attack was identified on December 24 and affected multiple extensions, including Cyberhaven, ParrotTalks, Uvoice, and VPNCity. The primary aim of the attackers is to steal user login credentials from social media and artificial intelligence platforms.
The malware designed to extract sensitive information, such as access tokens, user IDs, cookies, and other crucial account details, is of particular concern for Facebook Ads users. Additionally, the attackers have implemented click listeners to gather information and potentially circumvent two-factor authentication (2FA).
In response to this security breach, Cyberhaven promptly emailed affected users, urging them to change their passwords and any other relevant login details without delay. Within an hour, the malicious version of the extension was removed and replaced with a secure version.
This incident underscores the ongoing risks associated with cybersecurity in today’s digital landscape. Users are advised to exercise increased caution when installing extensions and regularly update their passwords to safeguard their personal information.