A series of intrusions has compromised multiple companies’ Chrome browser extensions, with experts attributing the attacks to a targeted campaign. The attacks began in mid-December and affected several different companies, including Cyberhaven, a data protection company. Cyberhaven’s extension was used to monitor and secure client data, while others were related to artificial intelligence and virtual private networks. Experts believe that hackers are using compromised extensions to vacuum up sensitive data, with some speculating that the attacks may be opportunistic rather than targeted. The companies involved have confirmed the breaches, and authorities are investigating the incidents.
Source: https://www.reuters.com/technology/cybersecurity/data-loss-prevention-company-cyberhaven-hit-by-breach-statement-says-2024-12-27