SquareX Researchers Expose OAuth Attack On Chrome Extensions Days Before Major Breach

A malicious version of Cyberhaven’s browser extension was published on the Chrome Store that allowed the attacker to hijack authenticated sessions and exfiltrate confidential information. The extension was available for download for more than 30 hours before being removed by Cyberhaven.

PALO ALTO, Calif., USA, December 30th, 2024/CyberNewsWire/--SquareX, an industry-first Browser Detection and Response (BDR) solution, leads the way in browser security.

About a week ago, SquareX reported large-scale attacks targeting Chrome Extension developers aimed at taking over the Chrome Extension from the Chrome Store.

On December 25th, 2024, a malicious version of Cyberhaven’s browser extension was published on the Chrome Store that allowed the attacker to hijack authenticated sessions and exfiltrate confidential information.

The malicious extension was available for download for more than 30 hours before being removed by Cyberhaven. The ...