Make Microsoft’s CEO cry by installing Chrome’s ‘Microslop’ extension

This Chrome extension, which works fine on Microsoft Edge, replaces "Microsoft" with "Microslop" all over the web.

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
The Hacker News

DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide

The threat actor behind two malicious browser extension campaigns, ShadyPanda and GhostPoster, has been attributed to a third attack campaign codenamed DarkSpectre that has impacted 2.2 million users ...
Bleeping Computer

Trust Wallet says 2,596 wallets drained in $7 million crypto theft attack

Trust Wallet says attackers who compromised its browser extension right before Christmas have drained approximately $7 million from nearly 3,000 cryptocurrency wallet addresses. The cryptocurrency ...
The Hacker News

Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites

Cybersecurity researchers have discovered two malicious Google Chrome extensions with the same name and published by the same developer that come with capabilities to intercept traffic and capture ...
AOL

Are You Using Extension Cords the Wrong Way? Experts Reveal the Hidden Risks

The convenience of extension cords can't be ignored. Does the cord on that new nightstand lamp not quite reach the bedroom outlet? Naturally, you reach for an extension cord. The same goes when it ...