YouTube Agrees to Follow Australia’s New Under-16 Social Media Ban 
Baidu Cuts Jobs as AI Competition and Ad Revenue Slump Intensify 
Germany’s Economic Recovery Slows as Trade Tensions and Rising Costs Weigh on Growth 
Asian Currencies Edge Higher as Markets Look to Fed Rate Cut; Rupee Steadies Near Record Lows 
Dollar Weakens Ahead of Expected Federal Reserve Rate Cut 
Oil Prices Rise as Ukraine Targets Russian Energy Infrastructure 
Intel Boosts Malaysia Operations with Additional RM860 Million Investment 
BOJ Governor Ueda Highlights Uncertainty Over Future Interest Rate Hikes 
China’s Services Sector Posts Slowest Growth in Five Months as Demand Softens 
TSMC Accuses Former Executive of Leaking Trade Secrets as Taiwan Prosecutors Launch Investigation 
Asian Currencies Steady as Rupee Hits Record Low Amid Fed Rate Cut Bets 
EU Prepares Antitrust Probe Into Meta’s AI Integration on WhatsApp 
European Oil & Gas Stocks Face 2026 With Cautious Outlook Amid Valuation Pressure 
Morgan Stanley Boosts Nvidia and Broadcom Targets as AI Demand Surges 
European Stocks Rise as Markets Await Key U.S. Inflation Data 
Apple Leads Singles’ Day Smartphone Sales as iPhone 17 Demand Surges 
In an alarming cybersecurity breach, hackers compromised Chrome extensions of multiple companies, including Cyberhaven, to access sensitive data. The attack, ongoing since December, highlights vulnerabilities in browser extensions.
Hackers Target Chrome Extensions in December Campaign
According to Investing.com, an expert who has studied the campaign and one of the victims reported that hackers have been compromising the Chrome browser extensions of multiple companies since the middle of December.
The data protection business Cyberhaven, located in California, was one of the victims. Cyberhaven acknowledged the hack to Reuters on Friday.
"Cyberhaven can confirm that a malicious cyberattack occurred on Christmas Eve, affecting our Chrome extension," according to the announcement. Public remarks made by cybersecurity professionals were referenced. An investigation by Cyberhaven revealed that these remarks hinted at an assault that was "part of a wider campaign to target Chrome extension developers across a wide range of companies."
Cyberhaven Responds to Federal Investigations
According to Cyberhaven, "We are actively cooperating with federal law enforcement."
It was unclear at the moment how widespread the hacks were.
A common use case for browser extensions is the ability to automate the application of coupons to online shopping sites, among other customization options. For Cyberhaven, the Chrome plugin meant easier data monitoring and security across all of their clients' online apps.
Experts Link Hacks to Sensitive Data Theft
One of Nudge Security's cofounders, Jaime Blasco of Austin, Texas, claimed to have uncovered multiple more Chrome extensions compromised in a similar fashion to Cyberhaven's. In the middle of December, it seemed like at least one had been struck.
According to Blasco, extensions associated with virtual private networks and artificial intelligence were among the others that were impacted. According to him, that pointed to a malicious attempt to steal sensitive information by exploiting as many vulnerable extensions as feasible.
"I'm almost certain this is not targeted to Cyberhaven," added Blasco. "If I had to guess, this was just random."
Questions were directed to the companies implicated by the U.S. cyber watchdog CISA. Alphabet, the maker of the Chrome browser, did not immediately respond to a message requesting comment.
