cybersecurity

5889 readers

29 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks

tweedge

Fake AI Chrome extensions with 300K users steal credentials, emails (www.bleepingcomputer.com)

submitted 17 hours ago by cm0002@mander.xyz to c/cybersecurity

2 comments fedilink hide all child comments

A malicious campaign of 30 Chrome extensions masquerading as AI assistants has infected over 300,000 users, stealing credentials, email content, and browsing data[^1]. The extensions, dubbed "AiFrame" by LayerX researchers, share common infrastructure under the domain tapnetic[.]pro and use iframes to load remote content rather than implementing actual AI functionality[^1].

Popular malicious extensions still available on the Chrome Web Store include:

AI Sidebar (70,000 users)

AI Assistant (60,000 users)

ChatGPT Translate (30,000 users)

AI GPT (20,000 users)

The extensions specifically target Gmail data through content scripts that extract email content, drafts, and thread text. They can also capture voice recordings using Web Speech API and transmit data to remote servers controlled by the operators[^1].

[^1]: BleepingComputer - Fake AI Chrome extensions with 300K users steal credentials, emails

top 2 comments

sorted by: hot top controversial new old

[–] sunnytimes@lemmy.ca 2 points 17 hours ago (1 children)

for the most part if your using Chrome you don't care about your privacy anyway ..

[–] weegee90@lemmy.world 4 points 16 hours ago

Most users don't know, care, or understand why Chrome and Google are bad. There's also a big difference between Google collecting your data and malicious actors stealing your data and using it to rob you or target you for other scams.