Malicious Chrome Web Store extensions exfiltrating ChatGPT and DeepSeek conversations
Malware Activity
Summary
Hide ▲
Show ▼
Malicious Chrome extensions were used to exfiltrate ChatGPT and DeepSeek conversations from active browser sessions, alongside Chrome tab URLs and other browsing context, to attacker-controlled C2 servers. Researchers said the add-ons collected prompts and answers by monitoring tabs and using API interception or DOM scraping, then sent the data out on a recurring schedule. The campaign relied on legitimate-looking listings and impersonated a trusted AITOPIA extension, making the abuse harder to spot. The scale of the issue is significant because the extensions were tied to 900,000+ users and remained available at disclosure time, creating exposure for sensitive prompts, customer data, and internal web activity.
Related Happenings
Chrome Web Store malicious extensions coordinated campaign using shared C2
Campaign
First: 14.04.2026 23:33
Last: 14.04.2026 23:33
Sources 1
About this happening:
A coordinated **Chrome Web Store** extension operation is stealing **Google OAuth2 Bearer tokens**, deploying **backdoors**, and running **ad fraud** across more than **100 malici...
Chrome Web Store malicious extensions coordinated campaign using shared C2
CampaignAbout this happening: A coordinated **Chrome Web Store** extension operation is stealing **Google OAuth2 Bearer tokens**, deploying **backdoors**, and running **ad fraud** across more than **100 malici...
108 Malicious Chrome extension campaign
Campaign
First: 14.04.2026 14:30
Last: 14.04.2026 14:30
Sources 1
About this happening:
A **large-scale campaign** of **108 malicious Chrome extensions** exposed roughly **20,000 users** to **session hijacking** and data theft through a shared **C2 infrastructure**.
108 Malicious Chrome extension campaign
CampaignAbout this happening: A **large-scale campaign** of **108 malicious Chrome extensions** exposed roughly **20,000 users** to **session hijacking** and data theft through a shared **C2 infrastructure**.
108 Malicious Google Chrome extensions sharing a C2 backend
Malware Activity
First: 14.04.2026 11:35
Last: 14.04.2026 11:35
Sources 1
About this happening:
**108 malicious Google Chrome extensions** were found to use the same **C2 infrastructure** to steal credentials, sessions, and browsing data while injecting ads and arbitrary Jav...
108 Malicious Google Chrome extensions sharing a C2 backend
Malware ActivityAbout this happening: **108 malicious Google Chrome extensions** were found to use the same **C2 infrastructure** to steal credentials, sessions, and browsing data while injecting ads and arbitrary Jav...
GlassWorm multi-stage data-theft malware evolution
Malware Activity
First: 25.03.2026 16:26
Last: 25.03.2026 16:26
Sources 1
About this happening:
The **GlassWorm** malware family has evolved into a **multi-stage** payload chain that steals browser data and crypto-wallet information, increasing risk for **Windows** and **mac...
GlassWorm multi-stage data-theft malware evolution
Malware ActivityAbout this happening: The **GlassWorm** malware family has evolved into a **multi-stage** payload chain that steals browser data and crypto-wallet information, increasing risk for **Windows** and **mac...
Legitimate-looking Chrome extension prompt-poaching campaign
Campaign
First: 25.03.2026 13:00
Last: 25.03.2026 13:00
Sources 1
How related:
“Expel explained in a blog post, published on March 24, that it had observed “several dozen” incidents in the past month of so-called “prompt poaching” by legitimate-looking extensions.”
About this happening:
A recurring **Chrome extension** campaign is stealing **AI conversations** from users, exposing prompts, answers, and other sensitive content to attacker-controlled servers. The a...
Legitimate-looking Chrome extension prompt-poaching campaign
CampaignHow related: “Expel explained in a blog post, published on March 24, that it had observed “several dozen” incidents in the past month of so-called “prompt poaching” by legitimate-looking extensions.”
About this happening: A recurring **Chrome extension** campaign is stealing **AI conversations** from users, exposing prompts, answers, and other sensitive content to attacker-controlled servers. The a...
Timeline
-
06.01.2026 19:21 3 articles · 4mo ago
Malicious Chrome extensions exposed
Initial DisclosureResearchers disclosed two malicious Chrome Web Store extensions, Chat GPT for Chrome with GPT-5, Claude Sonnet & DeepSeek AI and AI Sidebar with Deepseek, ChatGPT, Claude, and more., that impersonated a legitimate AITOPIA add-on and exfiltrated ChatGPT and DeepSeek conversations plus Chrome tab URLs to attacker-controlled C2 servers every 30 minutes. The extensions were still available for download at the time of disclosure, and one had already been stripped of its Featured badge.
Show sources
- Two Chrome Extensions Caught Stealing ChatGPT and DeepSeek Chats from 900,000 Users — thehackernews.com — 06.01.2026 19:21
- Two Chrome Extensions Caught Stealing ChatGPT and DeepSeek Chats from 900,000 Users — thehackernews.com — 06.01.2026 19:21
- Experts Sound Alarm Over “Prompt Poaching” Browser Extensions — www.infosecurity-magazine.com — 25.03.2026 13:00