New Polymorphic browser attack alert: Malicious extensions mimic legitimate ones with pixel-perfect clones, disabling the real add-ons to steal credentials from Chrome, Edge & others!

The malicious extensions clone the look and behavior of legitimate add-ons, including icons and workflows, and even temporarily disable the real extensions—tricking users into handing over sensitive credentials. Remind your team to only install extensions from trusted sources, monitor browser activity, and review permissions often.

Read the details: https://thehackernews.com/2025/03/researchers-expose-new-polymorphic.html

#Cybersecurity #CISO #infosec #DFIR #ITsecurity #Chrome #Phishing #Malware #Infosec #CredentialTheft #Chromium #ZeroDay #PolymorphicAttack