Dark Reading

ChatGPT, GenAI Tools Open to 'Man in the Prompt' Browser Attack

An innovative prompt injection attacker can steal your data using nothing but a browser extension. Browser security vendor LayerX published research today dedicated to an attack it discovered that ...
Bleeping Computer

Malicious VSCode extension in Cursor IDE led to $500K crypto theft

A fake extension for the Cursor AI IDE code editor infected devices with remote access tools and infostealers, which, in one case, led to the theft of $500,000 in cryptocurrency from a Russian crypto ...
Bleeping Computer

The Buyer’s Guide to Browser Extension Management

While most enterprises lock down endpoints, harden networks, and scan for vulnerabilities, one of the riskiest vectors often slips through unmonitored: browser extensions. These small, user-installed ...