The Hacker News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...

300,000 Chrome users hit by fake AI extensions

Chrome extensions disguised as AI assistants infected over 300,000 users with malware that steals emails, passwords and ...
WinBuzzer

Chrome Gemini Flaw Let Rogue Extensions Hijack AI Panel

A high-severity Chrome vulnerability has allowed malicious extensions to exploit the Gemini panel and gain elevated access to ...

Google Lens Chrome Browser Tool Compromised To Steal Credentials

Chrome users have been warned that an tool claiming to search the screen with Google Lens was, in fact, a credential stealer.
Search Engine Land

Google revives Tag Assistant

Google reversed its decision to deprecate the popular Chrome extension, Tag Assistant, after significant user feedback. This move consolidates Tag Assistant Legacy and Tag Assistant Companion into a ...
Hosted on MSN

Chrome extension disguised as AI assistant expose 10K+ users OpenAI API keys

A Chrome browser extension posing as an artificial intelligence assistant is siphoning OpenAI credentials from more than 10,000 users and sending them to third-party servers. Cybersecurity platform ...
Microsoft

Malicious AI Assistant Extensions Harvest LLM Chat Histories

Malicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek.