Malicious Chrome Extension Targets Apple App Store Connect Developers

A malicious Chrome extension (ID: mimplmibgdodhkjnclacjofjbgmhogce) was discovered targeting Apple App Store Connect developers via a fake ASO service at boostkey[.]app. The operation charges developers $150 in cryptocurrency and guides them through an onboarding process to extract their App Store Connect session cookies (myacinfo and itctx). The extension’s ID is hardcoded in the platform’s source code, confirming the same actor created both. The attackers also require developers to provide a proxy through their own IP to evade Apple’s anomaly detection.