Chrome, Cyberhaven

Cyberhaven breach caused by malicious Chrome extension
Dec. 25, 2024, cybersecurity firm Cyberhaven was the target of a large-scale attack. Through their Chrome extension, 400,000 users were
Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign
The recent compromise of Cyberhaven’s Chrome extension appears to be part of a broad campaign that started over a year ago.
Cyberhaven says it was hacked to publish a malicious update to its Chrome extension
The data-loss startup says it was targeted as part of a "wider campaign to target Chrome extension developers." © 2024 TechCrunch. All rights reserved. For personal use only.
Hackers are hijacking Chrome extensions in an attempt to steal your data
Multiple Chrome browser extensions have been hijacked by hackers in recent months to steal data from their users.
New details reveal how hackers hijacked 35 Google Chrome extensions
New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise of at least thirty-five extensions to inject data-stealing code, including those from cybersecurity firm Cyberhaven.
Over 600,000 Chrome users at risk after 16 browser extensions compromised by hackers — what you need to know
As reported by The Hacker News, a dangerous new campaign targeting browser extensions has been spotted online. So far, at least 16 extensions have been compromised, with over 600,000 Chrome users now at risk of exposing their browsing data and account credentials online.
Hackers hijacked legitimate Chrome extensions to try to steal data
Other extensions possibly affected include Internxt VPN, VPNCity, Uvoice, and ParrotTalks, as Bleeping Computer writes. Cyberhaven says hackers pushed an update (version 24.10.4) of its Cyberhaven data loss prevention extension containing the malicious code on Christmas Eve at 8:32PM ET.
Dozens of Chrome Extensions Hacked, Exposing Millions of Users to Data Theft
A new attack campaign has targeted known Chrome browser extensions, leading to at least 35 extensions being compromised and exposing over 2.6 million users to data exposure and credential theft.
Hackers injected malicious code into several Chrome extensions in recent attack
Hackers were reportedly able to modify several Chrome extensions with malicious code this month after gaining access to admin accounts through a phishing campaign. The cybersecurity company Cyberhaven shared in a blog post this weekend that its Chrome extension was compromised on December 24 in an attack that appeared to be “targeting logins to specific social media advertising and AI platforms.
Hackers May Have Compromised Multiple Popular Google Chrome Extensions
A hacker phished a Cyberhaven employee to upload a malicious version of the company's Chrome extension, but it may not be the only victim.
Hackers Launch Supply Chain Attack Against Chrome Extensions
Multiple Chrome browser extensions have been hacked, allowing attackers to steal the data they handle, security experts have warned. Subverted extensions include a
Critical Google Chrome Warning For 2.6 Million As 2FA Hackers Attack
Hackers have targeted Google Chrome users in a frightening 2FA bypass attack with dozens of extensions compromised with ...
Data-loss prevention company Cyberhaven hit by breach, statement says
By Raphael Satter and AJ Vicens Hackers compromised an employee of the data-protection company Cyberhaven and used the worker ...
CSOonline12h
SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach
SquareX, an industry-first Browser Detection and Response (BDR) solution, leads the way in browser security. About a week ago ...
Google Chrome 2FA Bypass Attacks Confirmed—Millions Of Users At Risk
An attack aimed at bypassing two-factor authentication cookies for Google Chrome users has been confirmed—here’s what you ...