At least five Chrome extensions have been compromised in a coordinated attack, enabling a threat actor to steal sensitive user information. [more]
Malicious Visual Studio Code extensions were discovered on the VSCode marketplace, and they download heavily obfuscated PowerShell payloads to target developers and cryptocurrency projects in supply chain attacks. [more]
Google has announced it will soon allow organizations to create their own curated "Enterprise Web Store" of company-sanctioned browser extensions for Chrome and ChromeOS, aimed at improving productivity, security, and management for businesses. [more]
Google's Chrome Web Store is now warning that the uBlock Origin ad blocker and other extensions may soon be blocked as part of the company's deprecation of the Manifest V2 extension specification. [more]
Microsoft is testing a new feature in the Edge browser called the "extension performance detector," which warns you when browser extensions cause performance issues on web pages you visit. [more]
Starting today, some Chrome users will receive a warning that older browser extensions will soon stop working, writes The Register website. [more]
With Manifest V3, Google wants to make extensions safer by prioritizing privacy, but was initially criticized for the impact to ad blockers. The Chrome team has since added new features in response and is ready to disable old Manifest V2 extensions in 2024. [more]