Hackers have broken Chrome browser extensions from various companies

Hackers hack Chrome browser extensions from various companies. The cyberattack was aimed at collecting sensitive data through compromised applications.

Hackers hack Chrome browser extensions from various companies. It was a series of cyberattacks that began in mid-December 2024.

One of the victims is California-based Cyberhaven, which confirmed the breach in a statement to Reuters, the agency reported.

«Cyberhaven can confirm that a malicious cyberattack occurred on Christmas Eve that affected our Chrome extension», — the statement said.

The company cites public comments from cybersecurity experts who suggest the attack is part of a broader campaign targeting Chrome extension developers at various companies. Cyberhaven added: «We are actively cooperating with federal law enforcement».

Browser extensions are commonly used by Internet users to customize their browsing experience, such as automatically applying coupons on shopping sites. In Cyberhaven's case, the Chrome extension was used to help the company monitor and protect customer data transmitted through web applications.

Jaime Blasco, co-founder of Nudge Security in Austin, Texas, said he had discovered several other Chrome extensions that had been compromised in a similar way to Cyberhaven's. At least one of them was attacked in mid-December. Blasko noted that other affected extensions included those related to artificial intelligence and virtual private networks (VPNs). He suggested that this was an attempt to collect sensitive data using as many compromised extensions as possible.

«I'm pretty sure this wasn't specifically targeting Cyberhaven. If I had to guess, I'd say it was random», — Blasko said.

The U.S. cybersecurity agency CISA has referred inquiries to the companies involved. A request for comment from Alphabet, which makes the Chrome browser, went unanswered.