After five years, browser extensions turned malicious, putting countless people at risk.

Benign add-ons can be weaponized with malicious updates after gaining user trust.

A threat actor has published over a hundred malicious extensions that can track and profile Chrome and Microsoft Edge users ...

According to researchers at cybersecurity firm Koi, a China-based hacking syndicate known as ShadyPanda is actively ...

Millions of users have been affected by a spyware campaign that has hijacked popular browser extensions. Here’s how it works and how to stay safe.

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...

And some are still active in the Microsoft Edge store A seven-year malicious browser extension campaign infected 4.3 million ...

ShadyPanda is a dangerous new malware campaign that spent years turning browser extensions into spyware.

Once-trusted Chrome and Edge add-ons have quietly turned into tools for data harvesting, search manipulation, and a ...

The China-based cyber-threat group has been using malicious extensions on the Google Chrome and Microsoft Edge marketplaces ...

A seven-year browser extension campaign has infected 4.3 million Chrome and Edge users. The group responsible, tracked as ...

ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...