Shape-Shifting Browser Extensions Steal Credentials

2025-03-10
Shape-Shifting Browser Extensions Steal Credentials

Researchers at SquareX Labs have uncovered a new class of malicious browser extensions dubbed "polymorphic extensions." These extensions can impersonate legitimate extensions like password managers in real-time, tricking users into revealing sensitive credentials. The attack proceeds in four phases: distribution, reconnaissance, impersonation, and exploitation. Attackers distribute the malicious extension disguised as a useful tool on the Chrome Web Store. Once installed, it identifies target extensions and, upon use, temporarily disables the legitimate version, replacing it with a near-identical fake. Credentials are stolen and the legitimate extension is restored, leaving no obvious trace. Because the attack uses legitimate browser features, there's no easy fix, but SquareX suggests countermeasures like restricting sudden extension icon changes and enhancing permission monitoring.

Read more

Massive Volkswagen Data Breach Exposes Location Data of 800,000 EVs

2024-12-27
Massive Volkswagen Data Breach Exposes Location Data of 800,000 EVs

A massive data breach affecting over 800,000 Volkswagen electric vehicles has exposed sensitive user information, including precise GPS location data and personal contact details. The data, stored on an unsecured Amazon Cloud server, was accessible to anyone with basic technical skills. The breach, discovered by a whistleblower and reported by Der Spiegel, highlights significant security flaws at Volkswagen's software subsidiary, Cariad. While Cariad claims to have quickly addressed the vulnerability and that no unauthorized third-party access occurred, the incident raises serious concerns about data security in the automotive industry and the potential for misuse of exposed location and personal information. The breach impacted both individual users and institutional entities, including police forces.

Read more
Tech automotive