Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.

News > Attacks & Threats > 260K+ Chrome Users Duped by Fake AI Browser Extensions

260K+ Chrome Users Duped by Fake AI Browser Extensions

30 copycat apps tricked users, and Google itself, into thinking they're legitimate AI tools.

30 copycat apps tricked users, and Google itself, into thinking they're legitimate AI tools.

The Chrome Web Store has been infested with dozens of malicious browser extensions claiming to provide AI assistant functionality but that secretly are siphoning off personal information from victims.

Researchers at LayerX identified 30 Google Chrome extensions that are carbon copies of one another, but for some superficial differences in how they're branded. Many of them are quite popular, with tens of thousands of downloads apiece. They all masquerade as AI assistants — and they do a pretty good job of pretending — but secretly steal email content, browser content, and anything else the user willingly feeds them. More here

Similar Stories

A cryptomining incident highlights how AI gateways can provide access to AI models, cloud infrastructure, and identity and access management (IAM) data. More...

Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks. More...

Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...

An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...

Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks… More...

Have your say

 

News Categories

A cryptomining incident highlights how AI gateways can provide access to AI models, cloud infrastructure, and identity and access management (IAM) data. More...

Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks. More...

Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...

An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...

Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks… More...

image

Contact Us

Security Interest Group Switzerland
c/o Bridge Head AG
Sulzbergstrasse 34
5430 Wettingen
Switzerland

Follow Us

This website is powered by
ToucanTech