Cybercriminals Are Now Targeting Chrome Web Store Extensions To Access Users’ Personal Data: Reports

Main Image
  • Like
  • Comment
  • Share

While cases of Digital Arrest Scams are on the rise in India, another trend has begun globally. Apparently, cybercriminals are now targeting Chrome extension developers to gain access to a large number of users’ information. Most recently, a renowned company’s extension was compromised, and it wasn’t the only extension that bad actors targeted.

Also Read: Fraudsters Impersonating Investment Firm Duped Kerala Man of Rs. 4.05 Crore

What Happened With Cyberhaven’s Chrome Extension?

According to a report by Reuters, cybercriminals have started to target Chrome browser extensions to steal people’s information. According to Cyberhaven’s CEO (a data protection solutions company), a malicious cyberattack took place on the company’s Chrome extension on Christmas Eve.

Giving more details on what happened, the company states how a phishing attack compromised an employee’s credentials to access the Chrome Web Store. Then, the bad actors used the credentials to float a malicious version of Cyberhaven’s Chrome extension. The affected version of the extension is 24.10.4.

With this, the Chrome-based browsers that auto-download the update were affected. As mentioned in the blog, “the malicious code could have exfiltrated cookies and authenticated sessions for certain targeted websites.” More importantly, the attackers tried logging in to specific social media advertising platforms.

The company has taken all the countermeasures, including notifying all the affected users and removing the malicious version of the extension. Moreover, this was part of a larger campaign that targeted Chrome extension developers.

Also Read: E-Challan Scams: What You Need to Know to Stay Safe

Some Other Popular Chrome Extensions Are Also Under Attack

The co-founder of Nudge Security, Jaime Blasco, also told Reuters about spotting a couple of other Chrome Web Store extensions with malicious code. These include Internxt VPN, VPNCity, Uvoice, and ParrotTalks. Collectively, these extensions have about 140,000 users, which is a considerable number.

According to a more recent report by The Hacker News, a total of 16 hacked Chrome extensions have exposed over 600,000 users’ data to theft. As mentioned in the report, the bad actors used a phishing email, which claimed to be from the Google Chrome Web Store Developer’s support team.

The email mentioned how the extension would be removed from the Web Store if the developers didn’t act immediately. Further, the email requested the recipients to click on a link that asked for permission to make changes to the extension.

Also Read: Bollywood Actor Aftab Shivdasani Loses ₹1.5 Lakh in KYC Scam: 8 Tips to Stay Safe

Why Are Hackers Targeting Chrome Extensions Anyway?

Moreover, these are just a few extensions that experienced the same issue all at the same time. For those catching up, Chrome extensions often have access to sensitive information, such as browsing history, cookies, credentials, personal data like name, email address, and, in some cases, financial data.

Amid such a scenario, avid users of Google Chrome extensions should check whether the ones they use have reported any hacking incidents. If they have, users should remove the extensions, change the credentials that the extension had access to, and wait for the developers to release a safe version.

You can follow Smartprix on TwitterFacebookInstagram, and Google News. Visit smartprix.com for the most recent newsreviews, and tech guides

Shikhar MehrotraShikhar Mehrotra
Shikhar Mehrotra is a seasoned technology writer and reviewer with over five years of experience covering consumer tech across India and global markets. At Smartprix, he has authored more than 1,700 articles, including news stories, features, comparisons, and product reviews spanning automobiles, smartphones, chipsets, wearables, laptops, home appliances, and operating systems. Shikhar has reviewed flagship devices such as the iPhone 16, Galaxy S25+, and Sennheiser HD 505 Open-Ear headphones. He also contributes regularly to Smartprix’s growing automotive section.

With a deep understanding of both iOS and Android ecosystems, Shikhar specializes in daily tech news, how-to explainers, product comparisons, and in-depth reviews. His DSLR photography in product reviews is recognized as among the best on the team.

Before joining Smartprix, Shikhar wrote for leading publications including Forbes Advisor India, Republic World, and ScreenRant. He holds a Bachelor of Arts in Journalism and Mass Communication from Amity University, Lucknow.

Related Articles

ImageNissan Teases Tekton Ahead Of July 9 Release: A New Rival To Creta, Sierra, & Seltos

Nissan India has teased the Tekton compact SUV ahead of its official launch next month, on July 9, 2026, marking its second launch of the year after the Gravite MPV. It is the brand’s attempt to re-enter the hot mid-size SUV market since the Terrano left the Indian market in May 2020.  Also Read: Citroen …

ImagePersonal Data of Over 81 Crore Indians Allegedly Leaked and Sold on Dark Web: Report

In a troubling revelation, it has been reported that the personal data of over 81 crore Indian citizens has been allegedly leaked and put up for sale on the dark web. The data in question pertains to COVID-19 test records and was reportedly stored by the Indian Council of Medical Research (ICMR). The breach came …

ImageGoogle Pulled the Plug On its Chrome Apps From the Chrome Web Store

True to its word, Google shut down its Apps service form the Chrome Web Store on all platforms except Chrome OS as was promised a year ago. The user of Windows, Linux and Mac will not be able to access or install any apps from the store. The Web Store will only have options for Extensions and …

ImageOnePlus halts OxygenOS 16 Rollout After Users Report Random Reboot Issues

OnePlus has temporarily stopped rolling out OxygenOS 16 following reports of unexpected reboots and boot loops from users. Both the 16.0.7.XXX and 16.0.5.XXX builds have been pulled, as OnePlus engineers investigate the root cause and work toward a stable fix. While OnePlus says only a small percentage of devices are affected, the company will keep …

ImageSamsung’s Galaxy Watch Ultra 2 Could Finally Get A Cheaper Wi-Fi/Bluetooth Variant

Until now, the Galaxy Watch Ultra (review) has been available in a cellular version, letting users access call/messaging and cellular data services on demand. However, like the rest of the smartwatch industry, shipping the Ultra with LTE connectivity must be adding to its retail price, making it much less accessible for people with smaller budgets.…

Discuss

Be the first to leave a comment.