Topic: user deception

Sort by: Relevance | Date
  • Malicious Chrome Extensions Steal HR Platform Credentials
    January 18, 2026
    80%

    Malicious Chrome Extensions Steal HR Platform Credentials

    Malicious Chrome extensions disguised as legitimate tools were discovered stealing login credentials and sabotaging security functions on major enterprise HR and ERP platforms. The extensions enabled persistent account access through continuous cookie theft and actively blocked critical security ...

    Read More »
  • New Facebook Login Scam Uses Sneaky Browser-in-Browser Trick
    January 13, 2026
    80%

    New Facebook Login Scam Uses Sneaky Browser-in-Browser Trick

    A sophisticated phishing campaign uses a deceptive "browser-in-the-browser" (BitB) technique to create fake, convincing login windows within a victim's browser, targeting Facebook users to steal credentials for fraud. Attackers lure victims with phishing emails posing as legal notices or security...

    Read More »
  • Chrome Extensions Caught Hijacking Affiliate Links and ChatGPT Logins
    February 1, 2026
    45%

    Chrome Extensions Caught Hijacking Affiliate Links and ChatGPT Logins

    Malicious extensions on the Chrome Web Store are hijacking e-commerce affiliate commissions and stealing sensitive data, including ChatGPT authentication tokens, by exploiting browser permissions. These extensions, such as "Amazon Ads Blocker," often combine deceptive features, violate store poli...

    Read More »

Related Topics

security research (2) credential theft (2) malicious extensions (2) session hijacking (1) affiliate fraud (1) cybersecurity research (1) malware-as-a-service (1) ransomware risk (1)