Dark Reading

260K+ Chrome Users Duped by Fake AI Browser Extensions

The Chrome Web Store has been infested with dozens of malicious browser extensions claiming to provide AI assistant functionality but that secretly are siphoning off personal information from victims.

Fake AI Extensions for Chrome Endanger 260.000 Users

IT researchers have traced numerous Chrome extensions back to a campaign that jeopardizes the information of 260.000 users.

Leaky Chrome extensions with 37M installs caught shipping your browsing history

Hundreds of popular add‑ons used encrypted, URL‑sized payloads to send search queries, referrers, and timestamps to outside servers, in some cases tied to data brokers and unknown operators.

30 Malicious AI Chrome Extensions Expose Data Of 300,000 Users

Despite ongoing efforts by Google to tighten security, malicious browser extensions continue to find their way onto the Chrome Web Store — and into users’ ...
eWeek

Google Chrome Launches WebMCP in Early Preview for AI Agent Interactions

Google’s Chrome team previews WebMCP, a proposed web standard that lets websites expose structured tools for AI agents ...

Google patches a critical Chrome vulnerability already being exploited in the wild

Google patches a critical Chrome vulnerability already under attack by hackers. Users should update their browsers ...
SecurityWeek

Google Patches First Actively Exploited Chrome Zero-Day of 2026

Google released an emergency Chrome update on Friday to patch a zero-day vulnerability that has been exploited in the wild.
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.
Techzine Europe

Google patches first Chrome zero-day of 2026

Google has released emergency updates for a critical Chrome vulnerability that is being actively exploited in zero-day attacks. The vulnerability received ...