A recent hacking campaign targeting Chrome browser extensions has compromised several tools, jeopardizing the data of over 600,000 users. Hackers infiltrated these extensions by phishing methods, gaining administrative access and subsequently releasing updated versions embedded with malicious code. This code was designed to steal users' cookies and access tokens. The first publicly known victim was Cyberhaven, a cybersecurity firm, whose browser extension was compromised with code that communicated with command-and-control (C&C) servers to steal user data. To date, multiple extensions have been identified as compromised, including AI Assistant - ChatGPT. Some developers have swiftly recognized the phishing attempts and promptly released clean versions, such as Proxy SwitchyOmega (V3). This incident underscores the importance of addressing security vulnerabilities in browser extensions and underscores the need for developers to fortify their defenses.