16 Malicious Chrome Extensions as ChatGPT Enhancements Steals ChatGPT Logins

[Parkinsond]

Content source

https://cybersecuritynews.com/16-malicious-chrome-extensions-as-chatgpt-enhancements/

Researchers have uncovered a significant security threat targeting ChatGPT users through deceptive browser extensions.

A coordinated campaign involving 16 malicious Chrome extensions has been discovered, all designed to appear as legitimate productivity tools and ChatGPT enhancement applications.

These malware extensions are actively stealing ChatGPT session authentication tokens, granting attackers complete access to victims’ accounts and conversations.

16 Malicious Chrome Extensions as ChatGPT Enhancements Steals ChatGPT Logins

Researchers found 16 fake Chrome extensions posing as ChatGPT tools that steal session tokens, giving attackers full access to user accounts.

cybersecuritynews.com

 

[Wrecker4923]

Nice. Featured extension. Dev responding to users. Has Reddit sub.

Caution flags: few ratings, recent website, website domain (.com) and email domain (.top) don't match.

 

[Parkinsond]

Caution flags: few ratings, recent website, website domain (.com) and email domain (.top) don't match.

I'm exta cautious; if not world-wide known extension such as uBO and dark reader, I would not dare to use.
Planning to stop using extensions at all in near future after Edge dropping support for uBO.

 

[Wrecker4923]

I can understand why. I myself use plenty of extensions. I do use a restricted profile for important accounts.

 

[Parkinsond]

I can understand why. I myself use plenty of extensions. I do use a restricted profile for important accounts.

Fortunately I use Keepass, so no need for extension; Brave has its own adblocker, and dark reader can be replaced by dark webpage flag, although its color inversion is annoying.