Intelligence & Analytics July 28, 2023

The rise of malicious Chrome extensions targeting Latin America

9 min read - This post was made possible through the research contributions provided by Amir Gendler and Michael  Gal. In its latest research, IBM Security Lab has observed a noticeable increase in campaigns related to malicious Chrome extensions, targeting  Latin America with a…

April 9, 2019

Phishing Campaign Makes Use of SingleFile Browser Extension Tool to Obfuscate Malicious Activity

2 min read - In a recent phishing campaign, fraudsters used a legitimate browser extension tool called SingleFile to obfuscate their attacks and remain undetected.

January 28, 2019

Razy Trojan Installs Malicious Browser Extensions to Steal Cryptocurrency

2 min read - Security researchers observed the Razy Trojan installing malicious extensions across multiple web browsers to steal cryptocurrency.

February 13, 2018

Thousands of Websites Load Cryptocurrency Miner After Cybercriminals Compromise Third-Party Library

2 min read - Cybercriminals altered Texthelp's Browsealoud web screen reader to install a cryptocurrency miner on many high-profile websites, including government sites in the U.S. and U.K.

December 28, 2017

Opera Offers First Built-In Cryptojacking Protection Tool

2 min read - The beta version of Opera 50 is the first major browser to offer a built-in mechanism that blocks cryptojacking, a new form of malware that leverages a victim's CPU to mine cryptocurrency.

November 10, 2016

WoT Privacy Breach: Trust Tanks as Browser Add-On Caught Selling User Data

2 min read - The WoT privacy breach highlights the commonplace nature of third-party data selling and frequent failure to read the fine print in user agreements.

April 5, 2016

Firefox Extensions Can Be Reused as Attack Vectors

2 min read - Two researchers recently described how Firefox extensions can be leveraged for malicious purposes without triggering Mozilla security warnings.

January 5, 2016

AVG Chrome Extension Takes Things Too Far With Poor APIs

2 min read - Subpar APIs in one of AVG's Chrome extensions could wind up exposing user browsing history or even turn the extension into a vessel for malware.