Chrome Extensions Mimicking Legitimate Services Discovered; New AWS Root Permissions Method Identified; UK Initiative Aims to Reduce Password Use

Chrome extensions imitating legitimate services have been discovered, allowing attackers to steal sensitive information. These extensions, named "Impersonator Extensions," use phishing techniques to deceive users. Meanwhile, a new method to obtain root permissions in AWS has been identified, exploiting vulnerabilities in IAM policies. In the UK, a government initiative aims to reduce the use of passwords in favor of more secure authentication methods, such as biometrics and security keys.