Malicious Chrome Extensions Mimic Legitimate Tools to Steal Data

A campaign on the Google Chrome Web Store is using more than 100 malicious browser extensions imitating legitimate tools such as VPNs, AI assistants, and crypto utilities to steal browser cookies and secretly execute remote scripts. These extensions masquerade as popular services like Fortinet, YouTube, and various VPNs. They are designed to steal sensitive information and allow the execution of remote scripts without the user's authorization.