Search
Cybersecurity firm SquareX has uncovered a novel type of cyberattack in which assailants craft malicious Google Workspace domains and disguise them as beneficial Chrome extensions. This deceptive tactic lures users into installing these extensions. Upon installation, the extension stealthily logs the user into a Google Workspace profile under the attacker's control, prompting users to activate Chrome's sync feature. This enables the theft of sensitive data, including passwords and browsing history. Additionally, attackers can manipulate the victim's browser by simulating Zoom updates, access web applications, and install further malicious extensions. To safeguard their data security, users must remain vigilant and avoid installing Chrome extensions from untrusted sources.
-
C114 Communication Network -
Communication Home
