Malicious Chrome Extensions Disguised as Productivity Tools Target Enterprise HR and ERP Platforms
cybersecuritymalwareChrome_extensionsdata_theftenterprise_securityHR_platformsERP_systemsphishingauthentication_credentialsincident_response
Malicious Chrome extensions, available on the Chrome Web Store, were impersonating productivity or security tools targeting enterprise HR and ERP platforms. These extensions stole authentication credentials or blocked access to management pages used for responding to security incidents. They mimicked legitimate solutions such as those from Workday, SAP SuccessFactors, or Oracle. Their goal was to exfiltrate sensitive data or disrupt incident response processes. No specific date or number of affected extensions is mentioned.