Trump Claims Iran Sought Ceasefire as Middle East War Escalates 
Golden Dome Missile Defense: Anduril and Palantir Join Forces on Trump's $185B Space Shield 
U.S. Warplane Shot Down by Iran Amid Escalating Middle East Conflict 
Rubio Directs U.S. Diplomats to Use X and Military Psyops to Counter Foreign Propaganda 
Australia's Trade Surplus Surges in February on Gold Export Boom 
Trump's FY2027 Budget: Major Defense Boost and Domestic Spending Cuts 
Reflection AI Eyes $25 Billion Valuation in Massive $2.5 Billion Funding Round 
MATCH Act Targets ASML and Chinese Chipmakers in New U.S. Export Crackdown 
South Korea's Inflation Rises Modestly in March Amid Oil Price Pressures 
U.S. Job Market Braces for Slow Recovery Amid Middle East Tensions and Economic Uncertainty 
Gulf War Ceasefire Hopes Weigh on Dollar Ahead of Trump Address 
Cybersecurity Stocks Tumble After Anthropic's Claude Mythos AI Leak Sparks Market Fears 
RBI Clamps Down on Rupee NDF Activity, Banks Face Steeper Losses 
Trump Threatens Escalation Against Iran, Warns of Infrastructure Strikes 
SpaceX IPO Filing Expected This Week as Valuation Could Surpass $75 Billion 
Gold Prices Drop as Trump Escalates Iran Threats, Oil Surges 
Trump's Iran War Speech Sparks Market Anxiety Over Extended Conflict 
In an alarming cybersecurity breach, hackers compromised Chrome extensions of multiple companies, including Cyberhaven, to access sensitive data. The attack, ongoing since December, highlights vulnerabilities in browser extensions.
Hackers Target Chrome Extensions in December Campaign
According to Investing.com, an expert who has studied the campaign and one of the victims reported that hackers have been compromising the Chrome browser extensions of multiple companies since the middle of December.
The data protection business Cyberhaven, located in California, was one of the victims. Cyberhaven acknowledged the hack to Reuters on Friday.
"Cyberhaven can confirm that a malicious cyberattack occurred on Christmas Eve, affecting our Chrome extension," according to the announcement. Public remarks made by cybersecurity professionals were referenced. An investigation by Cyberhaven revealed that these remarks hinted at an assault that was "part of a wider campaign to target Chrome extension developers across a wide range of companies."
Cyberhaven Responds to Federal Investigations
According to Cyberhaven, "We are actively cooperating with federal law enforcement."
It was unclear at the moment how widespread the hacks were.
A common use case for browser extensions is the ability to automate the application of coupons to online shopping sites, among other customization options. For Cyberhaven, the Chrome plugin meant easier data monitoring and security across all of their clients' online apps.
Experts Link Hacks to Sensitive Data Theft
One of Nudge Security's cofounders, Jaime Blasco of Austin, Texas, claimed to have uncovered multiple more Chrome extensions compromised in a similar fashion to Cyberhaven's. In the middle of December, it seemed like at least one had been struck.
According to Blasco, extensions associated with virtual private networks and artificial intelligence were among the others that were impacted. According to him, that pointed to a malicious attempt to steal sensitive information by exploiting as many vulnerable extensions as feasible.
"I'm almost certain this is not targeted to Cyberhaven," added Blasco. "If I had to guess, this was just random."
Questions were directed to the companies implicated by the U.S. cyber watchdog CISA. Alphabet, the maker of the Chrome browser, did not immediately respond to a message requesting comment.
