Fake AI Chrome Extensions Steal 900K Users' Data - Dark Reading | Security

Malicious Google Chrome extensions, posing as legitimate AI tools, exfiltrated sensitive user data including Large Language Model (LLM) conversations and extensive browsing history to a command-and-control (C2) server. This operation impacted nearly 900,000 users, resulting in the theft of proprietary code, business strategies, confidential research, and credentials for potential corporate espionage or identity theft.