News: 0175775805

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Hackers Hijack a Wide Range of Companies' Chrome Extensions (reuters.com)

(Friday December 27, 2024 @05:42PM (msmash) from the security-woes dept.)


Hackers have [1]compromised several different companies' Chrome browser extensions in a series of intrusions dating back to mid-December, according to one of the victims and experts who have examined the campaign. From a report:

> Among the victims was the California-based Cyberhaven, a data protection company that confirmed the breach in a statement to Reuters on Friday. "Cyberhaven can confirm that a malicious cyberattack occurred on Christmas Eve, affecting our Chrome extension," the statement said.

>

> It cited public comments from cybersecurity experts. These comments, said Cyberhaven, suggested that the attack was "part of a wider campaign to target Chrome extension developers across a wide range of companies." Cyberhaven added: "We are actively cooperating with federal law enforcement." The geographical extent of the hacks was not immediately clear.



[1] https://www.reuters.com/technology/cybersecurity/data-loss-prevention-company-cyberhaven-hit-by-breach-statement-says-2024-12-27/


Hijacking adblockers will be next (Score:3)

by xack ( 5304745 )

With all the amount code modifications that they do, there will be a huge incentive to inject a rogue rule into the filter list, and perform arbitrary code execution with it. Especially since malware ads appear on illegal or hacked sites. Combine this with the fact that people are using less popular browsers with less security reviews because of Chrome now using Manifest v3, this will be a minefield of vulnerabilities to come.

Solution (Score:2)

by rossdee ( 243626 )

Don't use Chrome

Re: (Score:2)

by ls671 ( 1122017 )

Not that I use Chrome that much, only for sites which only work well with it but your comment seems a little off-topic. Third party extensions can introduce vulnerabilities into any piece of software,

Re: (Score:1)

by Seven Spirals ( 4924941 )

I'd love that solution. I'm a big user of browsers like Firefox, Otter, Dillo, eLinks, etc.. but Chrome is the new IE6. It's the default target for web "developers" these days and apparently whatever bullshit they do in Chrome cannot work in Firefox, too (or at least it often fails). It's going to be hard to avoid if you work in IT. My solution is to run it as sandboxed as possible on an account that doesn't have access to my main PC home directory. I personally run it via VNC on a system I frequently snaps

Good (Score:3)

by quonset ( 4839537 )

Anything to kill that spyware is a good thing. The enemy of my enemy and all that.

The full impact of parenthood doesn't hit you until you multiply the
number of your kids by thirty-two teeth.