According to researchers at cybersecurity firm Koi, a China-based hacking syndicate known as ShadyPanda is actively conducting at least two malware campaigns by weaponizing browser extensions ...

A threat group dubbed ShadyPanda exploited traditional extension processes in browser marketplaces by uploading legitimate extensions and then quietly weaponization them with malicious updates, ...

Millions of users have been affected by a spyware campaign that has hijacked popular browser extensions. Here’s how it works and how to stay safe.

A teenage cybercriminal posts a smug screenshot to mock a sextortion scammer… and accidentally hands over the keys to his ...

A long running malware operation that has evolved over several years has been turning browser extensions in Chrome and Edge ...

The China-based cyber-threat group has been using malicious extensions on the Google Chrome and Microsoft Edge marketplaces ...

Once-trusted Chrome and Edge add-ons have quietly turned into tools for data harvesting, search manipulation, and a ...

A seven-year browser extension campaign has infected 4.3 million Chrome and Edge users. The group responsible, tracked as ...

The list of extensions is quite extensive. There are 125 of them for Edge, and 20 for Chrome. Google has reportedly already ...

A threat actor has published over a hundred malicious extensions that can track and profile Chrome and Microsoft Edge users ...

ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...

A Fortinet FortiWeb path traversal vulnerability is being actively exploited to create new administrative users on exposed devices without requiring authentication. The issue is fixed in FortiWeb ...