On 26 December 2024, the data security company Cyberhaven informed its users about a compromise of their Chrome browser extension. The attacker exploited the extension developer’s permissions, which had been previously gained through a targeted phishing attack, to upload a malicious version of Cyberhaven to the Chrome Web Store.
La publication suivante Targeted supply chain attack against Chrome browser extensions est un article de Sekoia.io Blog.
This article has been indexed from Sekoia.io Blog