Popular AI-powered integrated development environment solutions, such as Cursor, Windsurf, Google Antigravity, and Trae, ...

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing malware that can take screenshots, steal credentials, crypto wallets, and ...

ShadyPanda, a Chinese hacker group operated several legitimate browser extensions for years before weaponizing them to ...

VS Code is one of the most popular open-source (mostly) applications out there, and for good reason: It does everything you ...

Recent exploits are a reminder that when you install an extension, you grant it a lot of power to see where you go online and ...

A long-running malware campaign quietly evolved over several years and turned trusted Chrome and Edge extensions into spyware. A detailed report from Koi Security reveals that the ShadyPanda operation ...

The researchers initially discovered DarkSpectre while investigating ShadyPanda, a campaign based on popular Chrome and Edge extensions that infected over four million devices. Further analysis ...

Browser extensions with more than 8 million installs are harvesting users’ complete and extended AI conversations and selling them for marketing purposes, according to data collected from the Google ...

December 8, 2025 Add as a preferred source on Google Add as a preferred source on Google Malicious extensions do occasionally find their way into the Chrome Web Store (and similar libraries in other ...

Koi's investigation identified eight such extensions available on the Chrome Web Store and Microsoft Edge Add-ons page, collectively surpassing eight million installations. Seven of them carried ...

A popular browser extension that acts as a VPN to protect users' privacy is actually harvesting and facilitating the sale of data from conversations with AI chatbot assistants. While versions previous ...