Koi Security

Entity category: organization

Artificial Intelligence

AMOS Infostealer Targets macOS via Popular AI App

February 14, 2026
Laptop screen displays a keyhole with a key inside, pixelated and glowing purple.

The cybercrime economy is increasingly fueled by sophisticated infostealer malware like AMOS, which harvests and sells stolen credentials, financial data,…

Read More »
BigTech Companies

GhostPoster Malware Infects 840,000 Browser Extensions

January 18, 2026
Person in hooded jacket holds glowing red cube in futuristic city.

The GhostPoster malware campaign has compromised over 840,000 browser extensions across Chrome, Firefox, and Edge, using them to steal data…

Read More »
Artificial Intelligence

Popular Chrome Extension Exposed for Siphoning Millions of AI Chat Histories

December 17, 2025
Urban VPN Proxy screenshot showing code to send messages to various AI chatbots.

A popular Chrome extension, Urban VPN Proxy, secretly harvested all user prompts and AI chatbot responses from platforms like ChatGPT…

Read More »
BigTech Companies

Beware Malicious VS Code Extensions Stealing Data

December 10, 2025
Hands typing on a laptop displaying Visual Studio Code logo and interface.

Malicious extensions named Bitcoin Black and Codo AI were discovered on the VS Code marketplace, using social engineering and functional…

Read More »
BigTech Companies

Dangerous VSCode Extensions Steal Crypto on OpenVSX

October 21, 2025
A stylized, cartoonish skull with large eyes and wires attached to stacked boxes.

Malicious extensions in the VSCode ecosystem, such as C++ Playground and HTTP Format, have been downloaded thousands of times and…

Read More »
BigTech Companies

Trusted Chrome VPN Caught Spying on Users

August 20, 2025
Google Chrome app on smartphone screen.

A trusted Chrome VPN extension, FreeVPN.One, was revealed to be spyware that secretly harvested user data, including screenshots of browsing…

Read More »
Cybersecurity

150 Crypto-Draining Extensions Found in Firefox Add-On Store

August 8, 2025
Firefox logo: an orange fox wrapped around a blue orb, surrounded by a radiant starburst on a dark background.

A widespread crypto-draining scheme called 'GreedyBear' targeted Firefox users via 150 malicious browser extensions, stealing $1 million by impersonating wallets…

Read More »
Cybersecurity

Critical Zero-Day Threat for Cursor & Windsurf Users Exposed

July 13, 2025
Cursor, Windsurf, Firebase Studio, and Gitpod app logos displayed on a cracked, dark surface. Each logo has a cracked texture.

A zero-day vulnerability in AI coding tools (e.g., Cursor, Windsurf) exposed developers to machine hijacking via compromised extensions, with attackers…

Read More »