...et encore.
Depuis début 2024, un acteur malveillant diffuse des extensions Chrome fonctionnelles mais piégées via des faux sites imitant des services populaires (VPN, IA, crypto, etc.).
⬇️
Des sites frauduleux diffusent des extensions qui imitent ou détournent des outils légitimes comme :

🔹 FortiVPN (Fortinet)
🔹 DeepSeek (IA)
🔹 Google Analytics
🔹 Statistiques de sites web

Ces extensions semblent fiables, car elles s'appuient sur des services connus ou crédibles. En réalité, elles :

⚠️ Volent vos données
⚠️ Injectent du code malveillant
⚠️ Espionnent votre navigation
⚠️ Bypassent les protections du navigateur (CSP, sandbox…)

Exemples de faux domaines :
forti-vpn[.]com, sitestats[.]world, deepseek-ai[.]info…

[Liste complète + indicateurs (IOCs)]
👇
https://github.com/DomainTools/SecuritySnacks/blob/main/2025/DualFunction-Malware-Chrome-Extensions

[source]
⬇️
"Hidden Threats of Dual-Function Malware Found in Chrome Extensions"
👇
https://dti.domaintools.com/dual-function-malware-chrome-extensions/

[Dans les news infosec]
⬇️
"Data-stealing Chrome extensions impersonate Fortinet, YouTube, VPNs"
👇
https://www.bleepingcomputer.com/news/security/data-stealing-chrome-extensions-impersonate-fortinet-youtube-vpns/

#CyberVeille #Chrome #Extensions

#BSI WID-SEC-2025-1107: [NEU] [hoch] TYPO3 #Extensions: Mehrere Schwachstellen

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in verschiedenen TYPO3 Extensions ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen und um Cross-Site Scripting Angriffe durchzuführen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1107

Mais uma extensão do gnome que eu acho essencial para o meu uso.

Trata-se de poder mudar de workspace com o scroll do mouse sem precisar apertar o botão "super/windows"

Funciona assim, quando eu quero alterar entre as workspaces eu apenas levo o cursor do mouse até a parte superior e uso o scroll do mouse

Nome da fonte: Panel Workspace Scroll

Link: https://extensions.gnome.org/extension/6523/panel-workspace-scroll/

#linux #gnome #extensions #archlinux

When can Lakers offer extensions to Luka Dončić, Austin Reaves? https://www.rawchili.com/nba/40774/ #and #Austin #Basketball #can #don #extensions #FrontPage #i #LA #LALakers #Lakers #LakersAnalysis #LALakers #LosAngeles #LosAngelesLakers #LosAngeles #LosAngelesLakers #Luka #NBA #offer #Reaves #roll #screen #silver #To #when

✨ Craving curls that stay defined and luscious all day long?
Check out my latest post: https://froodl.com/the-ultimate-curl-routine--keeping-your-extensions-lush-and-defined?reviews 💁🏽‍♀️💦

Whether you’re rocking curly weaves, wigs, or your natural crown, this guide is packed with step-by-step tips to keep your curls juicy, frizz-free, and full of life. 🌸💫

🔁 Reblog if you love a good curl routine! #HairCare #CurlyHair #Extensions #ProtectiveStyles #HairTips #BeautyBlog #NaturalHair

C#14 – Exploring extension members
https://devblogs.microsoft.com/dotnet/csharp-exploring-extension-members/

#microsoft #NET #C #NET_10 #C_14 #Extensions

Есть ли жизнь на GitVerse? Расширения

Я давний пользователь GitHub. Можно сказать, что на моих глазах он вырос из самобытного GIT-хостинга до внушительной экосистемы для разработчиков под патронажем само́й Microsoft, и по факту стал индустриальным стандартом. Со временем я стал задаваться вопросом — можем ли мы в своей стране своими силами создать аналогичную экосистему? В которой нет проблем с платежами, не удаляют репозитории и аккаунты из-за поездки в Крым, где российские компании заказчики не опасаются хостить свои коммерческие проекты. В 2023 году я попробовал GitFlic, но не смог им пользоваться из-за нестабильной работы репозиториев. В 2025 году я решил попробовать GitVerse. Проекту уже больше года, и, скорее всего, он созрел для реального применения. В первую очередь меня интересует, есть ли у GitVerse потенциал стать не просто надёжным хостингом для GIT-репозиториев, а развиться в мощную экосистему, не просто повторить функционал GitHub в масштабе 1:43, а реализовать новое поколение индустриальных стандартов для совместного творчества разработчиков и других IT-специалистов.

https://habr.com/ru/articles/907732/

#сезон_open_source #gitverse #visual_studio #расширения #plugins #extensions #extension #plugin

Alright, why does Firefox have an Extensions drop-down AND an Overflow menu, both of which can hide toolbar buttons so that they don't overcrowd the toolbar? And why can't I take extensions out of the Extensions drop-down while in the Customize Toolbar mode?

This one thing has been bothering me for a while now.

#Firefox #Extensions #Addons

I can't remember who recommended I try the uMatrix browser plugin. It's made by the same people who created uBlock.

If it was you... then thank you.

Now most of the sites I regularly use aren't "broken", it's kind of shocking how many random, tracking scripts many sites have nowadays.

Figuring out which ones are the "functional" scripts is sometimes tricky but the extra work is worth having less creepiness on the web.

FF: https://addons.mozilla.org/en-US/firefox/addon/umatrix/

Chr: https://chromewebstore.google.com/detail/umatrix/ogfcmafjalglgifnmanfmnieipoejdcf

#Extensions

If you’re wondering: yes, we packed it with built-in tools.
Because you shouldn’t have to install 26 third-party extensions just to browse the way you want. 🛠️😄

#Vivaldi #Browser #Extensions #Tech #Apps #Software

#Browser #Extensions are #DANGEROUS
by #nbtv #yt #privacy #security

https://www.youtube.com/watch?v=11P6DdI8HOo

🚨 Devs are losing their minds because Microsoft decided to play a game of hide and seek with C/C++ #extensions in VS Code forks. 🕵️‍♂️ Meanwhile, The Register's website is so secure, it thinks you're a robot just for showing up. 🤖🔒
https://www.theregister.com/2025/04/24/microsoft_vs_code_subtracts_cc_extension/ #DevStruggles #MicrosoftVSCode #CPlusPlus #TheRegister #SecurityIssues #TechNews #HackerNews #ngated

Devs sound alarm after Microsoft subtracts C/C++ extension from VS Code forks

https://www.theregister.com/2025/04/24/microsoft_vs_code_subtracts_cc_extension/

#HackerNews #Devs #C++ #Microsoft #VSCode #Extensions #TechNews #Programming

OpenVSX, which VSCode forks rely on for extensions, down for 24 hours

https://status.open-vsx.org/

#HackerNews #OpenVSX #VSCode #Extensions #Downtime #TechNews #DeveloperCommunity

#Mail #Extensions
https://kb.mailbox.org/en/private/e-mail-article/how-to-use-mail-extensions#organize-e-mails-with-mail-extensions

#Email #Erweiterungen
https://kb.mailbox.org/de/privat/e-mail/wie-man-mail-extensions-verwendet/

@wilms
/cc @mailbox_org

🚩 Chromium 135.x Turns Off Manifest V2 Extensions

It finally happened to me. I allowed my Chromium Web browser to update to version 135.0.7049.42 (Official Build) (64-bit) and it turned off a group of my older Manifest V2 extensions. Fortunately, using the Extensions page, I was able to re-enable them all... but I believe I read at some point in the future, this re-enablement feature will be removed.

#Chrome #Chrome135 #Chromium #Chromium135 #Extensions #Manifest #ManifestV2 #ManifestV3

PostgreSQL Shared Libraries: Solving Python Extension Library Path Issues
Smoothly integrate Python extensions with PostgreSQL Shared Libraries, especially when using NumPy. Properly configuring the `shared_libraries` parameter prevents runtime errors by ensuring your database server can locate necessary libraries. Learn how to manage PostgreSQL Shared Libraries for robust Python extensions! #PostgreSQL #Python #SharedLibraries #NumPy #Database #Extensions
https://tech-champion.com/databas...

Dozens of Chrome extensions contain secret functionality to track users, a security researcher has discovered.

#Chrome #extensions #privacy #cybersecurity

https://cnews.link/network-of-chrome-extensions-contain-secret-code-track-3/

Browser extensions leave enterprises open to attack #CyberSecurity #Browser #Extensions

https://betanews.com/2025/04/15/browser-extensions-leave-enterprises-open-to-attack/