A series of cyberattacks has compromised multiple Chrome browser extensions, affecting several companies, including California-based data protection firm Cyberhaven. The breaches, which date back to mid-December, have raised concerns about the security of browser extensions and the potential for widespread data theft.
Cyberhaven confirmed the breach in a statement to Reuters, revealing that its Chrome extension was compromised on Christmas Eve. The company cited public comments from cybersecurity experts, suggesting that the attack was part of a broader campaign targeting Chrome extension developers across multiple companies. Cyberhaven is cooperating with federal law enforcement to investigate the incident.
The geographical extent of the hacks is currently unknown, but experts believe that the attacks may have affected multiple companies and extensions. Browser extensions are popular among internet users, who use them to customize their browsing experiences, apply coupons, and monitor data security.
Jaime Blasco, cofounder of Nudge Security, has identified several other Chrome extensions that have been compromised in a similar manner. At least one extension was hit in mid-December, and others appear to have been affected more recently. The compromised extensions include those related to artificial intelligence and virtual private networks, suggesting an opportunistic effort to collect sensitive data using multiple compromised extensions.
The breaches raise concerns about the security of browser extensions and the potential for widespread data theft. With multiple extensions compromised, users may be at risk of having their sensitive data intercepted or stolen. The incident highlights the importance of robust security measures and regular monitoring to detect and prevent such breaches.
The investigation into the breaches is ongoing, with Cyberhaven and other affected companies cooperating with law enforcement to identify the perpetrators and mitigate the damage. As the situation unfolds, users are advised to exercise caution when using browser extensions and to monitor their online activity for any suspicious behavior.